pen_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x7c4775f4, 0x2) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x3) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="ab553fec94248c32e27d04000000288a", 0xfffffde4) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) ioctl$BLKRAGET(r1, 0x1263, &(0x7f0000000140)) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f0000000080)) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:51 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_user\x00', 0x0, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000540)=ANY=[], 0x0) mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000300)='/dev/loop#\x00', 0x252, 0x82) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(0xffffffffffffffff, 0x800442d4, &(0x7f0000000880)) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000640)={0x0, 0x91, "b2a4cf52bc0192c1daa92de41a369a3fd0e665389e9e92d6fc23a7fc8343b1e0c0572f9f6492be6368b66d1484bb70af81a871d123adf600bf86d5d264480316a80198c170f18885a3fcbdf4e8bf201e9e972c66a2c28de631d53c8e283d87c81cafc70ceeec09798edfa56c8c61ef4ecc59497cadef102f3727e36cc95fafdf2bb6770c9280e1ad658b2e16ab417bf705"}, &(0x7f0000000700)=0x99) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000002c0)={r2, 0x7fffffff, 0x20}, 0x8) r3 = memfd_create(&(0x7f0000000940)="6367726f7570320075b536e08f97e10c4289e296462f3c8fc6a418228027bf4d75931e238b41cf8f3382aa05000000000000006499eb1d8a79eb28af17a1fe04e518dc54cb5ba03c1fa171ad0793877f9c398f83fbc0e556c394380409a41193e21592a5089b4fd2170000000000000000000000", 0x1) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806) sendmsg(r3, &(0x7f0000000dc0)={&(0x7f00000004c0)=@pppoe={0x18, 0x0, {0x3, @local, 'yam0\x00'}}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000700)}], 0x1, &(0x7f0000000e00)=ANY=[], 0x0, 0x840}, 0x0) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000800)={r2}, 0x10) setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000100)={0x7, 0x1ff, 0x6, 0x0, 0x3, 0xbf3, 0x5, 0xfffffffffffffffe, 0x1, 0x3, 0xc2fb}, 0xb) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r3) r4 = memfd_create(&(0x7f0000000380)="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", 0x0) openat$cgroup_int(r3, &(0x7f0000000740)='hugetlb.2MB.max_usage_in_bytes\x00', 0x2, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000600)='/dev/rtc0\x00', 0x100000542, 0x0) ioctl$sock_inet_SIOCGIFADDR(r3, 0x8915, &(0x7f0000000780)={'rose0\x00', {0x2, 0x4e20, @local}}) ioctl$KDSETKEYCODE(r4, 0x4b4d, &(0x7f0000000240)) ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000540)=0x0) sched_rr_get_interval(r5, &(0x7f0000000580)) sendfile(r1, r1, &(0x7f0000000000)=0x39044, 0x2000005) 00:12:51 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x2000000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:51 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) sendmsg$kcm(r0, &(0x7f0000000880)={&(0x7f0000000080)=@in6={0xa, 0x4e24, 0x7, @loopback, 0xc057}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000180)="20b0dc594334940602d867700a6989063b4c40db4374727d612b8e2e9dba9c5f85c697b533c5a4313489ef01cebfc2fcecb2132f6cd39688ec1cf8cb7a8c6bfc08fde2539c2e1d50b436a2d20a949fd97077012f5d", 0x55}, {&(0x7f0000000200)="8eba740b5f06f62728da0cb984ea4cc8bedd06195b019b1a5a7e034cd45f64fdf1e1a97b0053af337c2d2c8674bb92394a2df4cddcca478436da18b457b63de6bde7ddac360983a1d9a81e721b2bac", 0x4f}, {&(0x7f0000000280)="8bc5215828fa506e676f7f6273e478b2074bca94f80adbe04f93b160b46ddb0e6243f8af093bbc21e623dda9d6c65cce654d06e165d06e0dec4d3f14fe2b8aca78cecd56f44e8375e38dd2", 0x4b}, {&(0x7f0000000300)="e1fba495d8a1a8a63e96f2e97afb9bfeef77fae60e3f5af369d6d79843c53c212c4553276476b52f3189939b0f5521e9421becc7d2ec8f691c7f84134ce75bbc5578e2a454c33fbe8ec122434e2be4c561bc06", 0x53}, {&(0x7f0000000380)="cae8dadd653b034ba65eaf3a2c68337b5adb62bc5cff79f4e034e2d8844ca54374b25bbe74c49b835f780e40bb8727b9da245485a718b1d8a6174f6cf6eebb7eeb77c944864c23ba5aca3764bad77ec4a78e584c163687c14513cd907f741257236cb24a8589a853027001c3e953e5bb43dcf83d31d89e9fc5849a6a4ddb378b09a1a5b69a11f33bc606d2317c29bad47e417cca3db2d3ffc48c3bcbfaade74ec9178db3b20074b5f7dcdbc791ee6b14036e0b3c56aebb8f1bc4131d59c4dbf53d44d64dc2b2d9", 0xc7}, {&(0x7f0000000480)="021a21a2ccf10ac733a1410ac3558024d892fd467d4ec0abc363f34352686801179a5876ab5650e8bd3d11c4ec6198beba6811650a19ffa999824c0c31e5233bc3c81c25ff3f1cea98b636a9709851a93616aa36d1bc819527a3979f73ec7241", 0x60}, {&(0x7f0000000100)="220641a3fa78", 0x6}, {&(0x7f0000000500)="8a3fb59302fe418a47eab5c7d768b514ec476093334737707a277af374ab97227b400b0e00d936c56b1e9e1805597b74c72811d4ce429bde7a087f4b47bf040a73f41bc04d08dc455580d69e5afb8a0638029cb66543e54d2fe6be85ced23c0fcd86741033c7fe59f40259b41b947e956911e58273197830b76af0a2c0ab25ce2c20e4ad27678db347930e54dd73abd6112f7494761b682358d300192425e173128d1e976e645d", 0xa7}, {&(0x7f00000005c0)="2cc7e819c41fb49a1bdcf33ee00427e31f2eb8afb132575194f2cb906925cda0a5d35da1cae4fc90b579ba5efee906b2bf3d3f8c6cc708cde312b2beaf2b655a3286c16f4f796facb97eee8a3d0ead86ecb31fbb3ea6f494d5b45d4c37d90f95abc07afc07c08fe5fc0a0ce4a2964d86a94388f9ab043fd00dc14f3a3b2637450f54d1dae79a6e219eba482c416940c5f901d46159f469a85df3ac528e4122efbadb09bb84a08ed26c2a01089004fe30a52b2302143bdede1aeb225c32a0cc1b5d87c9541e5fc92750ac75ee9e7d1e9b90b10132cb06", 0xd6}], 0x9, &(0x7f0000000780)=[{0x40, 0x10d, 0x7cd4, "90e67010bb726f8a6f07910f4b4a75d6b30efec4f69fae6175a5cfbf36d5aed993f1c9ea8e18edd017a99126cc98"}, {0xc0, 0x1ff, 0x6, "25e84f2d70b95d7ed539d10eb00fb45086731855c8971322d9df44f7958b013e4578c52de52dd4607b1c70216527037a13ceefd09211ecd0bb5d6e32af1612fe910f5c95ed4fb5c3e22f5f7e69fd8bc1f32128a4b6731d49adaf4c2f42c6d406dce9630cd0896c5f3b65542fa80b07835732c0cbd5d1f3631326c25b20a46b01cce0dbeabd63b3749483c6e933cf7d630ee043666f284292d7eeb3f77c93d91600833e714d335accadc8460fd2336177"}], 0x100, 0x1}, 0x1) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000040)=0x1001100, 0x4) connect$netlink(r0, &(0x7f0000000000)=@unspec, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000900), 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000000000017010000040000000900000000000000180000000000000017010000040000000080000000000000680000000000000017010000020000104d0000005511f34528ca021c15834d118d1951e41225866de743770bce035b23eac7b8c744821a4685333e0fbc36a904fb9b70201ea2324393bb58073adc46cdfc54d84710c5694825ec23bb8a61b6e7ac00000000000000180000000000000017010000030000000100000000000000"], 0xb0}], 0x1, 0x0) 00:12:51 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x40202, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00000000c0)={0x0, 0xfff, 0x0, &(0x7f0000000040)=0x9a61}) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) r3 = gettid() getpriority(0x1, r3) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:51 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e20, @broadcast}}, 0x2, 0x8, 0x4, 0x6, 0xdd}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={r2, 0x5}, &(0x7f0000000240)=0x8) ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000080)=0x7fff) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:12:51 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x40030000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:51 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x208000}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:52 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8, 0x100) getsockopt$inet6_tcp_int(r1, 0x6, 0x16, &(0x7f0000000040), &(0x7f00000000c0)=0x4) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) fstat(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETGROUP(r1, 0x400454ce, r3) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:52 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x25dfdbfb, 0x300000}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x25dfdbff, 0x280040}, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:52 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e20, @broadcast}}, 0x2, 0x8, 0x4, 0x6, 0xdd}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={r3, 0x5}, &(0x7f0000000240)=0x8) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 00:12:52 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_user\x00', 0x0, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000540)=ANY=[], 0x0) mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000300)='/dev/loop#\x00', 0x252, 0x82) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(0xffffffffffffffff, 0x800442d4, &(0x7f0000000880)) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000640)={0x0, 0x91, "b2a4cf52bc0192c1daa92de41a369a3fd0e665389e9e92d6fc23a7fc8343b1e0c0572f9f6492be6368b66d1484bb70af81a871d123adf600bf86d5d264480316a80198c170f18885a3fcbdf4e8bf201e9e972c66a2c28de631d53c8e283d87c81cafc70ceeec09798edfa56c8c61ef4ecc59497cadef102f3727e36cc95fafdf2bb6770c9280e1ad658b2e16ab417bf705"}, &(0x7f0000000700)=0x99) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000002c0)={r2, 0x7fffffff, 0x20}, 0x8) r3 = memfd_create(&(0x7f0000000940)="6367726f7570320075b536e08f97e10c4289e296462f3c8fc6a418228027bf4d75931e238b41cf8f3382aa05000000000000006499eb1d8a79eb28af17a1fe04e518dc54cb5ba03c1fa171ad0793877f9c398f83fbc0e556c394380409a41193e21592a5089b4fd2170000000000000000000000", 0x1) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806) sendmsg(r3, &(0x7f0000000dc0)={&(0x7f00000004c0)=@pppoe={0x18, 0x0, {0x3, @local, 'yam0\x00'}}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000700)}], 0x1, &(0x7f0000000e00)=ANY=[], 0x0, 0x840}, 0x0) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000800)={r2}, 0x10) setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000100)={0x7, 0x1ff, 0x6, 0x0, 0x3, 0xbf3, 0x5, 0xfffffffffffffffe, 0x1, 0x3, 0xc2fb}, 0xb) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r3) r4 = memfd_create(&(0x7f0000000380)="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", 0x0) openat$cgroup_int(r3, &(0x7f0000000740)='hugetlb.2MB.max_usage_in_bytes\x00', 0x2, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000600)='/dev/rtc0\x00', 0x100000542, 0x0) ioctl$sock_inet_SIOCGIFADDR(r3, 0x8915, &(0x7f0000000780)={'rose0\x00', {0x2, 0x4e20, @local}}) ioctl$KDSETKEYCODE(r4, 0x4b4d, &(0x7f0000000240)) ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000540)=0x0) sched_rr_get_interval(r5, &(0x7f0000000580)) sendfile(r1, r1, &(0x7f0000000000)=0x39044, 0x2000005) 00:12:52 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x10000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:52 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xdb, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:52 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e20, @broadcast}}, 0x2, 0x8, 0x4, 0x6, 0xdd}, &(0x7f00000000c0)=0x98) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 00:12:52 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xfffffffffffffc4e) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:52 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.stat\x00', 0x0, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r3 = dup2(r2, r2) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r3, 0xc08c5334, &(0x7f00000000c0)={0x0, 0x18, 0x4, 'queue1\x00', 0x63fd}) 00:12:52 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setpriority(0x0, 0x0, 0x100000001) 00:12:52 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x500000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:52 executing program 1: syz_open_dev$binder(&(0x7f00000000c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cgroup.controllers\x00', 0x0, 0x0) setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000240)=0x7, 0x4) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x240200, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r3, 0x600, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1ff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40000) fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, 0x0}) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000001c0)=r4) r5 = memfd_create(&(0x7f0000000140)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) memfd_create(&(0x7f0000000000)=']#vboxnet0system[{\x00', 0x0) capset(&(0x7f00001e8ff8)={0x19980330}, &(0x7f0000031000)) fallocate(r5, 0x6100000000000000, 0x0, 0x80ce63) 00:12:52 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000380)='aead\x00'}, 0x30) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000400)=0x0) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000440)='/dev/null\x00', 0x2, 0x0) kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000480)={r4, r1, 0x2}) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$random(0xffffffffffffff9c, &(0x7f0000000300)='/dev/urandom\x00', 0x0, 0x0) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getrandom(&(0x7f0000000180)=""/40, 0xffffffffffffff59, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000340)={0x0, r0, 0x0, 0x1, &(0x7f0000000280)='\x00', 0xffffffffffffffff}, 0x30) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x81, 0x1, 0x81, 0x0, 0x0, 0x1, 0x20868, 0x0, 0x10000, 0x3, 0x3, 0x78, 0xfff, 0x7fff, 0x58, 0x80, 0x0, 0x7, 0x2, 0x6, 0x0, 0x7fffffff, 0x3f, 0x7, 0xd3b7, 0x7, 0x7ff, 0x7, 0x2, 0x44c, 0x7b7, 0x0, 0x4, 0x0, 0x4b, 0x400000000000, 0x0, 0x20, 0x3, @perf_config_ext={0x1, 0x5c}, 0x21, 0x9, 0x0, 0x5, 0x80000001, 0x8, 0x6}, r7, 0x5, r6, 0x1) ioctl$RNDADDTOENTCNT(r5, 0x40045201, &(0x7f0000000240)=0x1f) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x20}, 0xc) request_key(&(0x7f00000002c0)='asymmetric\x00', &(0x7f0000000300), &(0x7f0000000000)='asymmetric\x00', 0x0) setsockopt$inet6_int(r4, 0x29, 0xa, &(0x7f0000000500)=0x8, 0x4) syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000010000/0x3000)=nil, 0x3000, 0x0, 0x100000000020011, 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:52 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x5, 0x6b8, [0x20000180, 0x0, 0x0, 0x20000518, 0x200005f0], 0x0, &(0x7f0000000080), &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x2, [{{{0xd, 0x2c, 0xe8b5, 'ip6gretap0\x00', 'ip6_vti0\x00', 'veth1\x00', 'bcsf0\x00', @link_local, [0xff, 0xff, 0x0, 0x0, 0xff, 0xff], @empty, [0x0, 0x0, 0xff, 0xff, 0xff], 0x198, 0x1d0, 0x208, [@comment={'comment\x00', 0x100}]}, [@arpreply={'arpreply\x00', 0x10, {{@remote}}}]}, @snat={'snat\x00', 0x10, {{@dev={[], 0x10}, 0xfffffffffffffffc}}}}, {{{0x11, 0x15, 0x88f8, 'veth0\x00', 'vcan0\x00', 'rose0\x00', 'lo\x00', @random="5f7fcbc18c8d", [0xff, 0xff, 0xff, 0xff, 0xff], @random="2c8dd9bd547c", [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0x128, 0x128, 0x160, [@ip6={'ip6\x00', 0x50, {{@loopback, @remote, [0xffffff00, 0xffffffff, 0xff, 0xffffff00], [0xff, 0xff, 0xffffffff, 0xffffffff], 0x200, 0xff, 0xa, 0x41, 0x4e21, 0x4e23, 0x4e22, 0x4e24}}}, @time={'time\x00', 0x18, {{0x0, 0x2, 0xb577, 0x128ee, 0x131, 0xdca, 0x3}}}]}}, @arpreply={'arpreply\x00', 0x10, {{@dev={[], 0x12}, 0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x2, 0x0, 0x1, [{{{0x5, 0x0, 0x0, 'veth0_to_team\x00', 'bcsh0\x00', 'bond_slave_0\x00', 'veth0\x00', @broadcast, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], @empty, [0xff, 0x0, 0xff, 0x0, 0xff], 0x70, 0x70, 0xa8}}, @arpreply={'arpreply\x00', 0x10, {{@local, 0xfffffffffffffffe}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x2, [{{{0x13, 0x7b, 0xf9ff, 'ip_vti0\x00', 'ip6gre0\x00', 'syz_tun\x00', 'irlan0\x00', @remote, [0x0, 0xff, 0x0, 0x0, 0x0, 0xff], @local, [0x0, 0x0, 0xff, 0xff, 0x0, 0xff], 0x100, 0x138, 0x170, [@limit={'limit\x00', 0x20, {{0x5, 0x5, 0x3a5a, 0x4, 0x7, 0x458}}}, @limit={'limit\x00', 0x20, {{0x81, 0x2, 0x401, 0x8, 0x3ff, 0x81}}}]}, [@snat={'snat\x00', 0x10, {{@empty, 0xffffffffffffffff}}}]}, @snat={'snat\x00', 0x10, {{@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0xffffffffffffffff}}}}, {{{0x7, 0x8, 0x6558, 'erspan0\x00', 'team_slave_1\x00', 'tunl0\x00', 'yam0\x00', @random="725969f37c20", [0x0, 0x0, 0xff], @broadcast, [0xff, 0x0, 0xff, 0x0, 0xff, 0xff], 0x70, 0x70, 0xa8}}, @snat={'snat\x00', 0x10, {{@local, 0xfffffffffffffffc}}}}]}]}, 0x730) 00:12:52 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x100000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:52 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:12:52 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001840), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) keyctl$dh_compute(0x17, &(0x7f0000000040), &(0x7f0000001b00)=""/205, 0xcd, 0x0) socketpair$inet6_sctp(0xa, 0x5, 0x84, &(0x7f0000001300)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000001340)={0x80000000}, 0x4) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0) keyctl$instantiate(0xc, 0x0, &(0x7f0000001480)=ANY=[@ANYBLOB="fbff000020203005003030303030004febc00963766445cd2f9a91f4635e117e346f16142331a6cb55e7df1aa02e205502f1818cf6e14134510f881ff2e88776a487326e823924f3c84b42f8aa81d59df511b1067ebd9ba0ecc0f5d15eba8990ddb6982e9a5aa23896720737da5afe104509ab0d984a3a"], 0x1, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000240)=0xe70) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000001c00)="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") syz_open_pts(0xffffffffffffffff, 0x0) r2 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x8000, 0x2) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000140)={0x0, 0x800}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r3, 0x1}, 0x8) close(r1) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r4, 0x84, 0x4, &(0x7f0000000080), &(0x7f00000000c0)=0x4) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f00000015c0), 0x8) 00:12:53 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) r1 = fcntl$dupfd(r0, 0x406, r0) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x8) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) getsockname$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000000080)=0x1c) 00:12:53 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x60000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:53 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:12:53 executing program 1: r0 = socket$inet6(0xa, 0x10004, 0x9) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000040)) r1 = open(&(0x7f0000000000)='./file0\x00', 0x40000, 0x62) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000080)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000100)={0x0, @in6, 0x0, 0x0, 0x0, 0xfa, 0x20}, 0x98) 00:12:53 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000023c0)=[@op={0x18, 0x117, 0x3, 0x1}, @iv={0x0, 0x117, 0x2, 0x0, "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"}], 0xfffffffffffffd3c, 0x2}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:53 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/current\x00', 0x2, 0x0) write$apparmor_current(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="7065726d70726f66696c65203a222f2f656d307070703176626f786e6574302d75736572003decfa1170129a4b8c90996e4011dbdc3c89592016fc4bb3c42886be1861c15500967a121ddf891300b9befa52e74afe3806f6d238d644de489581e95739ffb39d888109954608000000000000008226f077e1"], 0xd) 00:12:53 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) timer_create(0x1, &(0x7f0000000040)={0x0, 0xe, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000080)=0x0) clock_gettime(0x0, &(0x7f00000001c0)) timer_settime(r1, 0x100, &(0x7f0000000180)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000100)) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:53 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80800, 0x10) add_key(&(0x7f0000000140)='user\x00', &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x61, &(0x7f00000000c0)={'filter\x00', 0x4}, 0x68) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f0000000040)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e22, @multicast1}], 0x20) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:53 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x900, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:53 executing program 1: r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x2, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f0000000380)={0x7, 0x8, 0xfa00, {r2, 0x8}}, 0x10) write$RDMA_USER_CM_CMD_CONNECT(r1, &(0x7f0000000180)={0x6, 0xfffffffffffffe47, 0xfa00, {{0x1f5, 0x4, "3f86d748cb29fd650dc42cb48f806e02400099efccbca5ceb8f3efd53c8d4ad9b0125e64832a747dadef4113909b6f38b380c7e092a0ad6b1177b4e8e399bd79c992bd9ee74bcac599f5a89feccc35dbfbed990cb423eb44d3b03b66c185b83844957a863c5eef9ad0a2305bdb19f9e3826bea43eb11f9000d27122707270f402ecaa2b1e4dcbfde1cc2d0f3a205f9bd5561026361719a73c4f4a4e08a3a4745eb219112f61f9a689a778aa6cfd463746d8c8d964c25d9a8d610fe812703d471f089939a363d3b6eb69ffbd90e77f49c8e418caf76d8c18e5b27c45930ca40b0c9b29d4fe92df030f07eb78078a2e7f7533f62e81d2839c9eff78298c6da6f3f", 0xf3, 0x0, 0x9, 0x7ff, 0x14, 0x8000000000000000, 0x9}, r2}}, 0x120) fcntl$setsig(0xffffffffffffffff, 0xa, 0x1b) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r3, 0x80045300, &(0x7f00000000c0)) dup3(r0, r1, 0x80000) 00:12:53 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:53 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x200000005) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) r1 = add_key(&(0x7f0000000000)='encrypted\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="6ce7638e5788239e1d74fb7acac4fce6de1b4a4910be592ebb9f1007", 0x1c, 0xfffffffffffffffd) keyctl$setperm(0x5, r1, 0xffffffd) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000180)={0x0, 0x487a, 0x1, 0x80000000, 0x9, 0x20, 0x1c2f97d6, 0x2, {0x0, @in={{0x2, 0x4e21, @local}}, 0x1000, 0x5d, 0x8, 0xffffffffffffffcd, 0x100000000}}, &(0x7f00000000c0)=0xb0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000240)={r2, 0xc5, "5125bdcd6d6d13c8c6eb57ed2c6e2c2213d8e680ef8d6c7269bbacdc0b80218766c124b69705b0f7ab60c48aa5aa29892aa5e6860730af03526dc0d81db6b406ba541eea77dcf9ba86e05973d4920bfc4d51e46b3e8d5b123830ebd6d1589d0a2bc97eddf838c3ac6915c00d76f6aafd98be125afbe2b49b9dbe64def29549dcd18dae987f8a157daa8993430635f0ebf88889d55e48b00ed23404b508a21f8d9192f067125d9f62e4e5101bd40ca9ef6480acc39679578171d232f6725ddda5b82a05634d"}, &(0x7f0000000100)=0xcd) 00:12:53 executing program 1: r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x2, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f0000000380)={0x7, 0x8, 0xfa00, {r2, 0x8}}, 0x10) write$RDMA_USER_CM_CMD_CONNECT(r1, &(0x7f0000000180)={0x6, 0xfffffffffffffe47, 0xfa00, {{0x1f5, 0x4, "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", 0xf3, 0x0, 0x9, 0x7ff, 0x14, 0x8000000000000000, 0x9}, r2}}, 0x120) fcntl$setsig(0xffffffffffffffff, 0xa, 0x1b) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r3, 0x80045300, &(0x7f00000000c0)) dup3(r0, r1, 0x80000) 00:12:53 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) connect$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, {0x8, 0x9, 0x80, 0x100, 0x0, 0x7ff}, 0x4}, 0xa) accept$packet(r0, 0x0, &(0x7f0000000000)) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x6, 0x9, 0x2, 0x7, 0x25, 0x100000000, 0x3, 0x2, 0x0}, &(0x7f0000000100)=0x20) r2 = openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x200000, 0x4) ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, &(0x7f0000000240)={0x4, 0x1c, 0x1b5, 0x20000000000000, "85720ddbe7e70b74af3f3f5929d84d668ad8fd848d8e0f361963e69f864f6359"}) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000180)={r1, 0x8}, &(0x7f00000001c0)=0x8) connect$netlink(r0, &(0x7f00000000c0)=@proc={0x10, 0x0, 0x1}, 0xffffffffffffffc5) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 359.098585] encrypted_key: insufficient parameters specified [ 359.118195] encrypted_key: insufficient parameters specified 00:12:53 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:54 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xa000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:54 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x8, 0x18040) fstat(r0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000580)={{{@in=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in=@loopback}}, &(0x7f0000000480)=0xe8) sendmsg$nl_xfrm(r2, &(0x7f00000006c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80008000}, 0xc, &(0x7f0000000680)={&(0x7f0000000c40)=@getsadinfo={0x520, 0x23, 0x2, 0x70bd2b, 0x25dfdbfc, 0x0, [@sa={0xe4, 0x6, {{@in=@remote, @in6=@remote, 0x4e24, 0x5, 0x4e24, 0xfffffffffffffffd, 0xa, 0x20, 0x20, 0x0, 0x0, r3}, {@in=@remote, 0x4d3, 0xff}, @in=@loopback, {0x9, 0xb201, 0x0, 0xe83c, 0x4, 0xd1, 0x6, 0x100}, {0x3, 0x3, 0x7, 0xa3}, {0x5, 0x57a2540d, 0x531}, 0x70bd2b, 0x3502, 0x2, 0x4, 0xdda5, 0x20}}, @sa={0xe4, 0x6, {{@in6=@mcast2, @in=@remote, 0x4e23, 0x4, 0x4e20, 0x0, 0xa, 0x80, 0xa0, 0x62, 0x0, r4}, {@in=@rand_addr=0x2, 0x4d4}, @in=@dev={0xac, 0x14, 0x14, 0x14}, {0x61189500, 0x9, 0x8, 0x100000000, 0xeee2, 0x1, 0x4, 0x4}, {0x3f, 0x1, 0x100, 0x8}, {0x8, 0x7ff, 0x1}, 0x70bd2b, 0x0, 0xa, 0x0, 0x700000000, 0x8}}, @replay_esn_val={0x20, 0x17, {0x1, 0x70bd28, 0x70bd2a, 0x70bd28, 0x70bd26, 0x80000000, [0x0]}}, @policy_type={0xc, 0x10, {0x1}}, @algo_aead={0x104, 0x12, {{'aegis128l-aesni\x00'}, 0x5b8, 0xa0, "959a5068333b5b46703deebb4d35eb30fd9aba1af7d5b33691b2f63188b19a20adb413b36ffdf24c33ab84abe8a0e2e995c711099bbdbd06ba6b846c01bb3008a657710df69b0ad5e39daffacd7f67c002f82b3a1daf72d294c5efcd400a0f200aaa0a14bfefb3b735bbaab8932b2a3f4a7e30eca364ea9265f87f663c44b15d9ba456d135a8b42967e4638d2d67fe60516b62b0ef39240d26e1d45aaf72822c4ea5d810c6174a4cac7a1f6698bf9157e5745b69326ce2"}}, @replay_val={0x10, 0xa, {0x70bd25, 0x70bd2b}}, @tmpl={0x204, 0x5, [{{@in=@remote, 0x4d2, 0x33}, 0x0, @in=@multicast1, 0x3504, 0x2, 0x3, 0x100000000, 0xee7, 0x7, 0x5}, {{@in=@broadcast, 0x4d2, 0x6c}, 0x0, @in=@loopback, 0x3505, 0x0, 0x3, 0x1000, 0x5, 0x7, 0x3}, {{@in, 0x4d2}, 0x2, @in6=@loopback, 0x3503, 0x7, 0x0, 0xfffffffffffffffd, 0x2, 0x3, 0x1ff}, {{@in6=@local, 0x4d4, 0x3c}, 0xa, @in=@remote, 0x3507, 0x0, 0x0, 0x14aa, 0x8, 0x7, 0x2efcef8b}, {{@in=@local, 0x4d5}, 0xa, @in=@rand_addr=0x7, 0x0, 0x0, 0x0, 0x6, 0x800000000, 0x100000001, 0x80}, {{@in=@loopback, 0x4d6, 0x3f}, 0xa, @in=@dev={0xac, 0x14, 0x14, 0x16}, 0x3503, 0x2, 0x3, 0x7, 0xbd, 0x3, 0x5961}, {{@in=@dev={0xac, 0x14, 0x14, 0xb}, 0x4d6, 0x3f}, 0x2, @in6=@mcast2, 0x0, 0x3, 0x3, 0xffffffff, 0x1, 0xffffffff, 0x101}, {{@in6=@dev={0xfe, 0x80, [], 0xc}, 0x4d4, 0x3c}, 0xa, @in=@broadcast, 0x0, 0x4, 0x3, 0xfffffffffffffff7, 0x7, 0x6, 0x80000000}]}]}, 0x520}, 0x1, 0x0, 0x0, 0x4}, 0x800) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @rand_addr, @loopback}, &(0x7f0000000040)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@ipv4, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}}}, &(0x7f00000000c0)=0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@dev={0xfe, 0x80, [], 0x13}, @in6, 0x4e21, 0x7fc0, 0x4e24, 0x1f, 0xa, 0x80, 0x20, 0x2b, r5, r6}, {0x47d08f10, 0x9, 0x7, 0x7, 0x6, 0xba1, 0x101, 0x4}, {0x401, 0x5, 0x3, 0x9}, 0xf34, 0x6e6bb6, 0x2, 0x1, 0x2}, {{@in6=@local, 0x4d3, 0x3c}, 0x2, @in=@rand_addr=0x101, 0x3504, 0x2, 0x3, 0x6, 0x1, 0x7ff, 0x3}}, 0xe8) 00:12:54 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000380)='aead\x00'}, 0x30) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000400)=0x0) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000440)='/dev/null\x00', 0x2, 0x0) kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000480)={r4, r1, 0x2}) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$random(0xffffffffffffff9c, &(0x7f0000000300)='/dev/urandom\x00', 0x0, 0x0) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getrandom(&(0x7f0000000180)=""/40, 0xffffffffffffff59, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000340)={0x0, r0, 0x0, 0x1, &(0x7f0000000280)='\x00', 0xffffffffffffffff}, 0x30) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x81, 0x1, 0x81, 0x0, 0x0, 0x1, 0x20868, 0x0, 0x10000, 0x3, 0x3, 0x78, 0xfff, 0x7fff, 0x58, 0x80, 0x0, 0x7, 0x2, 0x6, 0x0, 0x7fffffff, 0x3f, 0x7, 0xd3b7, 0x7, 0x7ff, 0x7, 0x2, 0x44c, 0x7b7, 0x0, 0x4, 0x0, 0x4b, 0x400000000000, 0x0, 0x20, 0x3, @perf_config_ext={0x1, 0x5c}, 0x21, 0x9, 0x0, 0x5, 0x80000001, 0x8, 0x6}, r7, 0x5, r6, 0x1) ioctl$RNDADDTOENTCNT(r5, 0x40045201, &(0x7f0000000240)=0x1f) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x20}, 0xc) request_key(&(0x7f00000002c0)='asymmetric\x00', &(0x7f0000000300), &(0x7f0000000000)='asymmetric\x00', 0x0) setsockopt$inet6_int(r4, 0x29, 0xa, &(0x7f0000000500)=0x8, 0x4) syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000010000/0x3000)=nil, 0x3000, 0x0, 0x100000000020011, 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:54 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x2000, 0x0) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000080)=0x5) r1 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r1, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r1, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x8, 0x2040) ioctl$TIOCMBIS(r2, 0x5416, &(0x7f0000000100)=0x9) 00:12:54 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = dup3(r0, r0, 0x80000) openat$zero(0xffffffffffffff9c, &(0x7f0000000280)='/dev/zero\x00', 0x28002, 0x0) perf_event_open$cgroup(&(0x7f0000000100)={0x1, 0x70, 0x40, 0xeed5, 0xffffffff80000001, 0x400, 0x0, 0x1000, 0x8020, 0x1, 0x1, 0x0, 0x3, 0x7cc, 0x1ff, 0x6, 0x9, 0xfffffffffffffff8, 0x3, 0x7, 0x9, 0x100000000, 0x7, 0x6, 0xae4, 0x1, 0x7f96, 0x15837bce, 0x5, 0x0, 0x4, 0x3, 0x81, 0x3f, 0x1, 0x1fd0, 0x8, 0x0, 0x0, 0xfffffffffffffffe, 0x4, @perf_bp={&(0x7f00000000c0), 0x4}, 0x28000, 0x1f, 0x5, 0x4, 0x7, 0x5, 0x7}, r1, 0x5, 0xffffffffffffff9c, 0x8) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) sysinfo(&(0x7f0000000000)=""/126) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:54 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") fcntl$setflags(r0, 0x2, 0x1) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:54 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:54 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xfe80, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:54 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x5, 0x80) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000100)={0x401, 0x6, 0x0, 0x4, 0x2, 0x7}) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x22c0, 0x0) write$smack_current(r2, &(0x7f0000000080)="2e2e5e73797374656d3a6d696d655f747970659d7573657200", 0x19) setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000180)=0x3, 0x4) 00:12:54 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x7) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:12:54 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x10, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:54 executing program 3: bind$netlink(0xffffffffffffffff, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(0xffffffffffffffff, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) socket$packet(0x11, 0x2, 0x300) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/exec\x00', 0x2, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:54 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x1, 0x1) ioctl$EVIOCRMFF(r2, 0x40044581, &(0x7f0000000040)=0x80000001) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:54 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) unshare(0x24020400) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x204080, 0x0) getsockopt$XDP_MMAP_OFFSETS(r0, 0x11b, 0x1, &(0x7f0000000080), &(0x7f0000000100)=0x60) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children/]\x00') mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1) 00:12:54 executing program 2: socket$inet6(0xa, 0x6, 0x7) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:54 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x700000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:55 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x200, 0x1) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0xee6a, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) mkdir(&(0x7f00000002c0)='./file0/file0\x00', 0x2000000) mount(&(0x7f0000000980)=ANY=[@ANYBLOB="52c916c4f3f71a4ce30cf8be3a8d54328eb5dd30050000001c2ac33ffa47ec44bea3a931b6b3662b060778ce0622a62600b9e2835432a679957ebb419cb426811807696ee0ef7df047874889c7fd1a1d5689"], &(0x7f000000aff8)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f0000000000)) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x8000, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000340)='./file0\x00') unlink(&(0x7f00000001c0)='./file0/file0\x00') symlink(&(0x7f0000000800)='./file0/file0\x00', &(0x7f00000007c0)='./file0\x00') r3 = openat(r2, &(0x7f0000000640)='./file0/file0/../file0\x00', 0x0, 0x18) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000840)={&(0x7f0000000080)='./file0/file0/../file0\x00', r2}, 0x10) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f00000008c0), 0xffffffffffffffff) lstat(&(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000680)) readlink(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f0000000740)={0x5, 0x70, 0x0, 0x3ff, 0x0, 0xdf, 0x0, 0x50000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x101, 0x40000000004, 0x1, 0x0, 0x800000, 0x6, 0x4, 0x0, 0x1, 0xfffffffffffffe00, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x1, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000700)}, 0x5020, 0xffff, 0x7, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x4, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000180), 0xffffffffffffffff) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0x4008550c, &(0x7f0000000000)) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={0x0, 0x7}, &(0x7f0000000380)=0x8) getpid() gettid() ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000000c0)) 00:12:55 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0)=0x0) ptrace(0x11, r2) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000080)=0x2) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:55 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x4000, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x8c}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000100)={0x3fce, 0x7fff, 0x8, 0x20, 0xfffffffffffffc00, 0x7, 0xf94, 0x2, r3}, &(0x7f0000000140)=0x20) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:55 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xdc05000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:55 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x200, 0x1) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0xee6a, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) mkdir(&(0x7f00000002c0)='./file0/file0\x00', 0x2000000) mount(&(0x7f0000000980)=ANY=[@ANYBLOB="52c916c4f3f71a4ce30cf8be3a8d54328eb5dd30050000001c2ac33ffa47ec44bea3a931b6b3662b060778ce0622a62600b9e2835432a679957ebb419cb426811807696ee0ef7df047874889c7fd1a1d5689"], &(0x7f000000aff8)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f0000000000)) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x8000, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000340)='./file0\x00') unlink(&(0x7f00000001c0)='./file0/file0\x00') symlink(&(0x7f0000000800)='./file0/file0\x00', &(0x7f00000007c0)='./file0\x00') r3 = openat(r2, &(0x7f0000000640)='./file0/file0/../file0\x00', 0x0, 0x18) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000840)={&(0x7f0000000080)='./file0/file0/../file0\x00', r2}, 0x10) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f00000008c0), 0xffffffffffffffff) lstat(&(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000680)) readlink(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f0000000740)={0x5, 0x70, 0x0, 0x3ff, 0x0, 0xdf, 0x0, 0x50000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x101, 0x40000000004, 0x1, 0x0, 0x800000, 0x6, 0x4, 0x0, 0x1, 0xfffffffffffffe00, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x1, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000700)}, 0x5020, 0xffff, 0x7, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x4, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000180), 0xffffffffffffffff) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0x4008550c, &(0x7f0000000000)) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={0x0, 0x7}, &(0x7f0000000380)=0x8) getpid() gettid() ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000000c0)) 00:12:55 executing program 3: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x8800, 0x0) signalfd(r0, &(0x7f0000000080)={0xfffffffffffffffb}, 0x8) r1 = socket(0x8000000000010, 0x80803, 0x0) sendmmsg$alg(r0, &(0x7f00000015c0)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000180)="06c64fc967d87de329c0fcaeeba23d96d29e7d1e500579ac5557473ec328d99935ea415108b3ea61bdd3cb868e90bcf9993a4b654bcf3d553d8ce472c7bd8f28989f025129d9f625d3139a261c1fd8789add16339f7400c09b2dc1a10720a1ea1a9cfa9b19062f142eeefb81bc64ef4d5fc6edd1851589e72be9e6448df753bcff7638c55ee633cba8c3c03475f19c58dbe34378b5c8d68faa5e288e8d5097e0973e8941dd8678f474876766684eadea045a45519d11220b7c541e65bc4a214b1286f633dedf4e8f195a85071215efed0d6c2b11ee0ddae6330fb7ce4b29fd4f0f12e6a2782f1b", 0xe7}, {&(0x7f0000000280)="3f3fa07caacbea345063357d6bae1748006ab45b98037a763e2188eeaeee56afe10b0467f191bf532ddaa1655c0b7138f61611d141c4e636f73d8a4e46c750d5194c2e02b0657bfd1dbadc8348d611561fb5632840e9f2908d8cdacb0c9752635197f49ea8816bb816764e603f20a82a7ccb9180fb0498db88648246660aff647a26eba46b74fe293ad7f3f9e65706dfb13440d0974a9dc5343803304303caacedfee223f2fabf9f22a6b521516b291561ed564e1773d2", 0xb7}, {&(0x7f0000000340)="7c3e3ac5d6e7adcb4ea4db6dbc14e68f5a965546373eac205ee4c6b217e073870ca04f2b3842afd692fb797307b97cb198cfd0a37aabac229bb6ce4f2bc59c3f7e8a9e183f87f0e97e40411c998a5b5a1b9747906e378f6ed58a1219f194a70afc03c0d188b882c9154f474ac7af2551d2c57a67cd767d0124596757318e4b91fd38753a94e2fdc9cd331bbf3dcbe42dcf83f91f937e6c59fba8d57cf893b63b2cf087b32009a07a7174c6a41f8ea66f5fe03ab003ae28792f5b85ae48bb817d4ecb4368e0a4d8676dcf16cea315f9d96afcf2bb6247a23e4fc43da15e407a438bdd5aa32bd1653fc5fdc93084e82a80084185818faf1fb5", 0xf8}], 0x3, &(0x7f0000000440)=[@iv={0xd8, 0x117, 0x2, 0xc2, "f04b7fac47257ec33b7d0c2ec6b251e980746c7dfed6f39789b4ebf08ef50ab7b0ff9589ab843432c069844d31267804b1f89d95887b151f873dcde6b778e9407eda97cb9a79663adf2214370ea9336e3d51075519497668157d3a1621d95b23cc38e0948cbb17d59ef8bc8375177437e6451c1e0f3d26a71d3f14369a59d0bde30430215594c2537d8f17134674c45c9f399fd71ea84a4cb149f2ca832ad1236e5c5dea7bfdd7d3be0dd6a673c0b149f7ebb8989f9efc217355d50978411a5eb02e"}, @op={0x18}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x10001}], 0x120, 0x80}, {0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)="ea39af94fc049b528328b1c342917c93d140002ab89e7cfa57c7d3b36bfa4a86c86805e7bbc11275044b15d8d8e4e147145364f2b843b0383eabbfccef50fb8ecdfe07335e8dda4e03bad387fe3a6ebd745857648c1e458ea3f87be0b264e66701391c97ceebad3db528e0985228021e6960c0e177170be634fbe936c48ec82836712cabe1f60867ba8f421bf031243364211583deed41b226cf36dac3fac4f6fcdc83368cf7e7bff2e66c4a4880d57db03b8daaa2124c6e7bd300", 0xbb}, {&(0x7f0000000100)="6e761846e6637139609c1ec33def5e303a36308933e71cb52c7d89f3a47be93566419497e9c065555953f3ef796927577fea89a41c533ff140af83f4d8759c06", 0x40}, {&(0x7f0000000640)="8547781ed34c07935a57e56c989ea0881e546fd1c7e9c9210722d057c1fed68f7a167c234c55b727474e86d4749bc4f73d2ea9064a6781d5e586c6db860c5a7670d9123b73c42d860aef27ad942963fc9c14d5d77487b3b8ffac8eea45dcac0d3995f8c3cc99881981531f0b83c9262cfe024d1cb7162e45f7ae61280148b7dadaac4c7a39085766e0430eb587ca46346537defccb767dd3378e180e88bad81e54b00a8e959e4047af7bbb0ff6ba2d7b4a0da9ae91a9e05c886ee75f6707124b97f20593e2912606476e792b0a20918a50558f97df77b2a374dd8666c6", 0xdd}, {&(0x7f0000000740)="46aa0c423f81655e1d7f6092bfd35ffe180c00359d3b9f7011feb790ce75befec03f7624fdd445dfa5496d37f0846dfef0cbbb3c7b7386a66a790030b94ae79352a17f40f53645260c821fa72b7f0bac36edd62e6c444070bfe7ed82f5e8f09a01b66fc465fa96dfe3b31726c03f393a", 0x70}, {&(0x7f00000007c0)="14b009e71031e2a5c8844f139cac3111da72c70adc69c3ef2066d9aeec0d", 0x1e}, {&(0x7f0000000800)="3fc7f04fed34be1a5609928e31e5be0e2e2d1b795bcf86460a485d0b3ecd658f2a71470325ad325eb01697443c99966cd6197a37a7bf8c527c462f3076b93d29d3234239c38f2d1ff55dbc6797e1dc945bce5f093d20c110618571730c78691d9fc8c622ef7e3208f3325602b6fb3786a0473141e690ceb78af9aada86ca88fa84f2a73494f8435b56b6cf3b814e99f81d5c2e85dc5b46", 0x97}], 0x6, &(0x7f0000000940)=[@assoc={0x18, 0x117, 0x4, 0x4}], 0x18, 0x800}, {0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000980)="ada6669db3e4543df59d17924ae45ad7306bef7a70c73abe34", 0x19}, {&(0x7f00000009c0)="39ca876c540e6c13a296f6532b87c0382fea290e4501df7194b754f56105147d8ab759501d03a61dbe810e7bf260b89c4268174f3e6625d732f01b03d9c33be812fe3a1ab01e3c6928028a879becf7ee389e730833b51b01cfbcdbec0876af03000021ab0c5364bfcde45008d95458f851f24c5ac6871413345911700bf38ad279e436a9d22f285369c66e7d0ac25b3dc38ce39bb0e81b8aba6ae4fd93ab8a1456b79f49c359195f4c2058f3a325f72ea765fe33bad23967bc3a95f703fd1d", 0xbf}, {&(0x7f0000000a80)="fe9f56726318ff8a90581e99c53a57af4f073a15843119482afc2aa2fdb9b6f4c4baad3f7898bdec91fec31b97729788599523cd37f0ee0974eb1d6c4fbb06276ac19e762360c11bd37dfdb6d2d1ddb92b1a2c276e6b2baf962bf1672630492ea1b9ddbac0de32d32d79f3354bf422d3249040a270a50e8a3d4bf765e75f07bb694708884db82ad4705cf80f0961f5941de2462f29e99f16d9b8f3df2c68ae1f8cf6fd1ba6b502862ca051020c8ee6b417476b4c8c9f552a0364b9e23c6929349814df169bb0bf656aebe3d2fe663c3d", 0xd0}, {&(0x7f0000000b80)="acdd1560cd1505bdd2b3ab2af74bfdf1", 0x10}, {&(0x7f0000000bc0)="bc9f28f32bc1c60370253ee5530bb6259d1985e81e146dfa5455985de4d0697ea355d002ce1c7754c2285d511c9ca2948eb8c8ba2b41dbfefde6dd6efc98d2ecc9fb25bf58f90107f6d7b5d51c33b1eca43656af9e8ce1ba6216ba628956243aa7ea41fa8b649d91a197f5224c9721fde68ca4ce01f05d0665d5fd8671e2f7a9ec79498f484e95ac0ca574d91f29e0ba6a9cb4b6e95f8664d48cedd237a640248962c732e90ef7314361", 0xaa}], 0x5, &(0x7f0000000d00)=[@iv={0xd8, 0x117, 0x2, 0xbe, "7f6492a4c96bcf422c7d0172f1b243cc7f956a053fb4175c53d72ed1f8dd8d3a6c577c8da6668097463f04354b126a4a2164a6f5c5717f7ed24083d67b04edcea1db6844af1eba1064775884744c150618ea54b1f1b5c0ec4a9e007eb30cbc4b67988c3169dbc4c60391d14a38b7cb8409ee225e3d770dbeeda0af5fe5f8e39ed7b4c6dbf658eff139f8d2308045ef0b5afd36d27d877f9e8be1828d5718228c56aef9b96ae20d57be9620782e3693fd0cfd2af9d595bb892061497534c3"}, @assoc={0x18, 0x117, 0x4, 0x4}, @op={0x18}, @assoc={0x18, 0x117, 0x4, 0x401}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0x40, 0x117, 0x2, 0x2a, "b4b6b5dd379cf61410f11676743146074ba0d160221998c19ea7fc9b78d280d21eec2e22109f6f972e2e"}, @op={0x18}], 0x190, 0x20000000}, {0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000ec0)="d559c4d953e2905b9b3cadfc58972d995f", 0x11}, {&(0x7f0000000f00)="15c15b6c66e4618af5900b8bb9bcbf0e9ad06fc3f15aa26b6ad044d7bcb778d55eb09d5aacd086393b888b5ec8bc18a211376153b880b0a5825a9eb39e36b51df2a348911e1d6e0cd794fe9959c2bfd19338dd337569ab7b1ad93d97c55720af0d52dc4179e136f385b58f7581a8a30441a0a9adf4be2b2e0d4ee3dc", 0x7c}], 0x2, 0x0, 0x0, 0x4}, {0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000fc0)="33a996d6df7348d2c3de2c7fa1257a30e67d7dfc7b7384e55b311792e6480e428f0fdeb8bf2d459e416136453fb0616ffd", 0x31}], 0x1, &(0x7f0000001040)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x5}, @iv={0xa8, 0x117, 0x2, 0x93, "23dacf6ee2dd0c17d6cf6d324dfe2355a67c55ca8466d4fdab3904b33b3534a790ab67c3a93e186ff7d9483cca6b954ed06fc932d33f507e22e380b8a2a283f9de091090080ae9c5a50aaa0112f107ffceaf346c73265bc351bacf49562e2f583c08eb17e041da9c9199ac52dd14e8cdd63b8361863c7c34b601cd23fbad2da7f44b51f76bb54b87f7e3fca97b71463aa88ddc"}, @assoc={0x18, 0x117, 0x4, 0xc5}, @assoc={0x18, 0x117, 0x4, 0x6ce}, @assoc={0x18, 0x117, 0x4, 0x4}], 0x120, 0x800}, {0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000001180)="765c3094634f4a7f6d8550c8680523a38691c330f265733b2d21f4a8651d7e4897549280041e2a77b8b00a003ef7ea0f4f47b42b4f6a651f3af124c01b017caf8e17a426293c1816fc2035085061373902ef7197d8439e3b0f22af9883e250091d217bf3f1fb398c05d040b27b8a0c9443ced4b3e9c891", 0x77}], 0x1, &(0x7f0000001240)=[@assoc={0x18, 0x117, 0x4, 0x2}, @assoc={0x18, 0x117, 0x4, 0x4}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x101}, @iv={0xc0, 0x117, 0x2, 0xaa, "aa6d595760307bff24a1fa215f39d650b24db2c36721e848f60a1a22f63c233ba168435d5169dc7782460f3e288130d2765036c20bffe710dd26608f5ec4119d09d0f805c5d48eab6f66e7ca0ce36349e10a0666d645344698e6a3c9e7bde4d19d56781abbc427e10779e5d735f35ec41f4731ef0001bbf8517bf15bb7ced9094819aba6fd24456266a78265de75b213c6d42955dd95eeec42c3efbdb096e38069ea7205e98cdf7a8370"}, @iv={0x88, 0x117, 0x2, 0x72, "16339da152f402651d8d25cfcd405ab7a6ce2ac67c8f4487e5ccd0f2281c0e3d02c6e1cc2d7926e8916a4eb6d027b82d2a4b7099f9080810b753ba0e1ae0244a4706c25dce1a1355ac6263af86da62baaa14607f0872edfd1e839d62b62babea4645cd6fd309ed7b3affe9e102ad12f72fa7"}, @op={0x18}, @iv={0xf8, 0x117, 0x2, 0xe4, "76b3cd5cdf18ce3040d776d69ceaedfcd0a021c15e7e3601c96c9de1e585927ac81ae41d77deb14244ca3fac53f1e4cee51fb4794fad6f168d655cd3110535867aa0babf42661ba28c2e27cc85d057c4b03fc248548268cea0b0a23330ffc53b851d7f8df82512b89bfc05f546529a48753ccd1bf20a5cc2725c8e371a64fd6a71158071da3ddf8fda978d18d5f2550ddce18afbf56f758a64f49555ca6a5e95b1f075194dade0076e3730ea1f16d54a15bf356563493032ab2cff4b75107b7b126e6ce047e068382a8a6883085750c5e3a224733a1a156e0821c3da7ea92bfad28c9fc7"}, @iv={0x98, 0x117, 0x2, 0x83, "efb364c1b64175dd6eb55be100f13bce9adfc8b0bfdc270ef72df1e41a8eb3e237e12294aa45b4d73e975f7b5ebfdd104efe0013d16c1a07b26af6443e3c5931268391afcaedb120f899406d3fd4ac1e3becef389803b3225fcd09c0af9aafe7466740b30f9679261dcf70abd5e239a23edd2d966b29d639333b3286d1877c0398a116"}], 0x350, 0x801}], 0x6, 0x1) bind$netlink(r1, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r1, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:55 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 360.864116] cgroup: fork rejected by pids controller in /syz1 00:12:55 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = fcntl$dupfd(r1, 0x406, r0) getsockopt$inet_dccp_buf(r2, 0x21, 0xc0, &(0x7f00000002c0)=""/215, &(0x7f00000003c0)=0xd7) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280)='/dev/hwrng\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000100)={0x72bf0e22243f9d8b, 0x70, 0x800, 0xffffffff, 0x2, 0x9b, 0x0, 0x2, 0x0, 0x4, 0x1, 0x4000000000, 0x6, 0x200, 0x3, 0x3, 0x6, 0x6, 0x65d, 0xffffffff00000001, 0x6, 0x7fffffff, 0xffff, 0x0, 0x81, 0x1, 0x101, 0x6, 0x3, 0x1, 0x0, 0x5, 0xb78, 0x6000000, 0x7, 0x8000000000000000, 0xffffffffffff0001, 0x9, 0x0, 0x2, 0x4, @perf_bp={&(0x7f00000000c0), 0x3}, 0x5200, 0x10000, 0x3, 0x0, 0x80, 0x7, 0x40}, r2, 0x4, r3, 0xe) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000400)={0x100000001, 0x8, 0x9f, 0x4, 0x101, 0x0, 0x9, 0x1, 0x0, 0xfff, 0x80000001, 0x3ab}) ioctl$BLKGETSIZE64(r2, 0x80081272, &(0x7f0000000440)) r4 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x81, 0x8000) ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000040)) 00:12:55 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xa00, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:55 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x1, 0x800}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) listen(r0, 0x3aca3858) sysfs$3(0x3) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:55 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 00:12:55 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x200, 0x1) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0xee6a, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) mkdir(&(0x7f00000002c0)='./file0/file0\x00', 0x2000000) mount(&(0x7f0000000980)=ANY=[@ANYBLOB="52c916c4f3f71a4ce30cf8be3a8d54328eb5dd30050000001c2ac33ffa47ec44bea3a931b6b3662b060778ce0622a62600b9e2835432a679957ebb419cb426811807696ee0ef7df047874889c7fd1a1d5689"], &(0x7f000000aff8)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f0000000000)) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x8000, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000340)='./file0\x00') unlink(&(0x7f00000001c0)='./file0/file0\x00') symlink(&(0x7f0000000800)='./file0/file0\x00', &(0x7f00000007c0)='./file0\x00') r3 = openat(r2, &(0x7f0000000640)='./file0/file0/../file0\x00', 0x0, 0x18) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000840)={&(0x7f0000000080)='./file0/file0/../file0\x00', r2}, 0x10) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f00000008c0), 0xffffffffffffffff) lstat(&(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000680)) readlink(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f0000000740)={0x5, 0x70, 0x0, 0x3ff, 0x0, 0xdf, 0x0, 0x50000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x101, 0x40000000004, 0x1, 0x0, 0x800000, 0x6, 0x4, 0x0, 0x1, 0xfffffffffffffe00, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x1, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000700)}, 0x5020, 0xffff, 0x7, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x4, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000180), 0xffffffffffffffff) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0x4008550c, &(0x7f0000000000)) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={0x0, 0x7}, &(0x7f0000000380)=0x8) getpid() gettid() ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000000c0)) 00:12:55 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 00:12:56 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:56 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) accept$nfc_llcp(r0, &(0x7f0000000040), &(0x7f00000000c0)=0x60) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) 00:12:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:56 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x7ffff000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:56 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x200, 0x1) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0xee6a, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) mkdir(&(0x7f00000002c0)='./file0/file0\x00', 0x2000000) mount(&(0x7f0000000980)=ANY=[@ANYBLOB="52c916c4f3f71a4ce30cf8be3a8d54328eb5dd30050000001c2ac33ffa47ec44bea3a931b6b3662b060778ce0622a62600b9e2835432a679957ebb419cb426811807696ee0ef7df047874889c7fd1a1d5689"], &(0x7f000000aff8)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f0000000000)) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x8000, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000340)='./file0\x00') unlink(&(0x7f00000001c0)='./file0/file0\x00') symlink(&(0x7f0000000800)='./file0/file0\x00', &(0x7f00000007c0)='./file0\x00') r3 = openat(r2, &(0x7f0000000640)='./file0/file0/../file0\x00', 0x0, 0x18) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000840)={&(0x7f0000000080)='./file0/file0/../file0\x00', r2}, 0x10) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f00000008c0), 0xffffffffffffffff) lstat(&(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000680)) readlink(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f0000000740)={0x5, 0x70, 0x0, 0x3ff, 0x0, 0xdf, 0x0, 0x50000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x101, 0x40000000004, 0x1, 0x0, 0x800000, 0x6, 0x4, 0x0, 0x1, 0xfffffffffffffe00, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x1, 0x5, 0xfff, 0x4, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000700)}, 0x5020, 0xffff, 0x7, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x4, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000180), 0xffffffffffffffff) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0x4008550c, &(0x7f0000000000)) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={0x0, 0x7}, &(0x7f0000000380)=0x8) getpid() gettid() ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000000c0)) 00:12:56 executing program 3: r0 = socket(0x8000000000010, 0xfd7b7cb99d1a408b, 0x100000) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:56 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000004300)={0x39, 0x9, 0x2, 0x401, 0x4, 0x200}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000004280)={0x1, &(0x7f0000004240)=[{0x9, 0x9, 0x1, 0x4}]}, 0x10) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = syz_open_dev$usb(&(0x7f0000003f80)='/dev/bus/usb/00#/00#\x00', 0x4, 0x101000) connect$unix(r2, &(0x7f0000003fc0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) recvmsg(r1, &(0x7f0000000000)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0x4e}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000042c0)={0xf000}) setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f0000004180)={@llc={0x1a, 0x30b, 0x3, 0x100000000, 0xcaf8, 0x3f}, {&(0x7f0000004040)=""/211, 0xd3}, &(0x7f0000004140), 0x8}, 0xa0) recvmmsg(r1, &(0x7f0000003e00)=[{{&(0x7f0000000080)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000100)=""/74, 0x4a}, {&(0x7f0000000280)=""/234, 0xea}, {&(0x7f0000000380)=""/23, 0x17}, {&(0x7f00000003c0)=""/45, 0x2d}, {&(0x7f0000000500)=""/217, 0xd9}], 0x5, &(0x7f0000000600)=""/102, 0x66, 0x80000001}}, {{&(0x7f0000000680)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000000b40)=[{&(0x7f00000007c0)=""/218, 0xda}, {&(0x7f00000008c0)=""/211, 0xd3}, {&(0x7f0000000480)=""/4, 0x4}, {&(0x7f00000009c0)=""/113, 0x71}, {&(0x7f0000000a40)=""/168, 0xa8}, {&(0x7f0000000c00)=""/145, 0x91}, {&(0x7f0000000700)=""/39, 0x27}, {&(0x7f0000000cc0)=""/239, 0xef}], 0x8, &(0x7f0000000dc0)=""/3, 0x3, 0x1}, 0x1d13}, {{0x0, 0x0, &(0x7f0000002480)=[{&(0x7f0000000e00)=""/89, 0x59}, {&(0x7f0000000e80)=""/148, 0x94}, {&(0x7f0000000f40)=""/165, 0xa5}, {&(0x7f0000001000)=""/221, 0xdd}, {&(0x7f0000001100)=""/200, 0xc8}, {&(0x7f0000001200)=""/219, 0xdb}, {&(0x7f00000023c0)=""/147, 0x93}, {&(0x7f0000001300)=""/67, 0x43}], 0x8, &(0x7f0000002500)=""/170, 0xaa}, 0xef6}, {{&(0x7f00000025c0)=@sco, 0x80, &(0x7f00000039c0)=[{&(0x7f0000002640)=""/163, 0xa3}, {&(0x7f0000002700)=""/153, 0x99}, {&(0x7f00000027c0)=""/50, 0x32}, {&(0x7f0000002800)=""/177, 0xb1}, {&(0x7f00000028c0)=""/94, 0x5e}, {&(0x7f0000002940)=""/24, 0x18}, {&(0x7f0000002980)=""/4, 0x4}, {&(0x7f00000029c0)=""/4096, 0x1000}], 0x8, &(0x7f0000003a40)=""/155, 0x9b, 0x100000000}, 0x100}, {{&(0x7f0000003b00)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000003d80)=[{&(0x7f0000003b80)=""/213, 0xd5}, {&(0x7f0000003c80)=""/205, 0xcd}], 0x2, &(0x7f0000003dc0)=""/15, 0xf, 0x4800000000}, 0x5}], 0x5, 0x140, &(0x7f0000003f40)={0x0, 0x989680}) 00:12:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:56 executing program 3: openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x80, 0x0) r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0x0, 0x0) write$P9_RUNLINKAT(r1, &(0x7f0000000100)={0x7, 0x4d, 0x2}, 0x7) r2 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x6, 0x80) write$eventfd(r2, &(0x7f0000000080)=0x1, 0x8) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:56 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xffffffffa0008000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:56 executing program 1: preadv(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/148, 0x386}], 0x1000024b, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/sockstat\x00') ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000380)) getpeername$packet(r0, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1, 0x7, &(0x7f0000000200)=ANY=[@ANYBLOB="180000003f000000000000000700000018000000630e0000000000003c000000181a0000", @ANYRES32=r0, @ANYBLOB="00000000000000109500000000000000"], &(0x7f00000002c0)='syzkaller\x00', 0x3, 0x4a, &(0x7f0000000300)=""/74, 0x40f00, 0x1, [], r1, 0xf}, 0x48) preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000080)=""/220, 0xdc}, {&(0x7f0000000180)=""/116, 0x74}, {&(0x7f0000000200)}, {&(0x7f0000000240)=""/33, 0x21}], 0x4, 0x48) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x2, 0x0) 00:12:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:57 executing program 5: socket$inet6_udp(0xa, 0x2, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r0, 0xae78, &(0x7f0000000380)=0x4) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000005c0)) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab5500288a0000000000000000000000", 0x4c) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000340)={r0, &(0x7f0000000240)="34394db4bce25bb401679e7767f1470e2981441c04871cb0bf340b32c2a6cffac39a60ccd7c0953e92a0f4550e25f2b76270cb4c6a095e408d57dddec142d737145aa545ca3a489f0747deb9c8ed63a96ba896c563f97b1f16297df581e21f8f240e8b98a1c6f3a8f649ddbf3c9e42df1a9438b4968c7c33d3317d8dba61cf2ab90e3bd5f50df061ce1a5f224ddb11fd8517638cd6459ed9743233f5210f4d26d4376b5f543611348f54f7b04e6f0c9ee96944a93a95584af72167fb9c0633d57a08d62a0a3c31ab4bfdc5f35a3d5af858bd2be0556a4790782106535eb7025db5a03445c7f2b32e5fd29974", &(0x7f0000000140)=""/28}, 0x18) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS(r0, 0x80605414, &(0x7f00000003c0)=""/121) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) mmap$xdp(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x9, 0x80010, r0, 0x100000000) ioctl$RTC_ALM_READ(r0, 0x80247008, &(0x7f0000000200)) ioctl$KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000600)={0x5, 0x0, [{}, {}, {}, {}, {}]}) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000440)={0x0, 0x204, 0xd7ad, 0x200, 0x0}, &(0x7f0000000480)=0x10) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000500)={r3, @in={{0x2, 0x4e21, @remote}}}, 0x84) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00), 0x0, &(0x7f00000000c0)=""/45, 0xfffffffffffffe20, 0x2000000000000}, 0x0) 00:12:57 executing program 3: r0 = socket(0x4, 0x4080803, 0x80000002) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:57 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xffffff8d, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:57 executing program 1: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000000)="0a5cc8070031afa8b40a08d5bd805d55438ca8ca2fb3b088626fc887ca8cdaf34f4b3dfc7281f3a8267ad879e68792") openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x8000002, 0x68002) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r1, 0x0, 0x42, &(0x7f00000002c0)={'ah\x00'}, &(0x7f0000000340)=0x1e) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000007c0)=0x800000000000002, 0x4) epoll_create(0x1) write$FUSE_POLL(r1, &(0x7f00000000c0)={0xfffffe51, 0x1, 0xfffffffffffffffe, {0x400}}, 0x18) pwrite64(r1, &(0x7f0000000540)="3f277f944ddeecfc55cbf59cc689972f88165ff974e5e054146317729bab5525e315f204dce1933f10dca767929994eb25c8f5181c0b1c04b1b268595345aa51a77d8af130f955f9841bf8b09618207b0d8b8eed2c5efbd2397432bffd8b7036da4854ea202609e74f6db413eb9c6f13e9c774b1dd4ff18e7a5a904cdc97d44a5be832c041c3659ea4972b5adb5f98b72e925bd0dde42751fb4c4b329ec340b03a1a7e93110686c14210c166ca70f2804e103be29b5e59ce2afe5adc8c378a3308aa3d14d3770484c77e93abcc1fce5409d6c533f64798c5b4", 0xd9, 0x0) bind$inet(r2, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10) r3 = mq_open(&(0x7f0000000080)='bdev\x00', 0x41, 0xc4, &(0x7f00000000c0)={0x3f, 0x6, 0x94, 0xffffffff, 0x3, 0x10000, 0x1, 0x7}) mq_timedsend(r3, &(0x7f0000000000)="e1bd6cd0afde34321df09a6d21a196923c8789fbec2ea693ba8964b3fe243e2d42cdc1b9eef3721daa36ba559839d6", 0x2f, 0x6, &(0x7f0000000040)={0x1000000000, 0x989680}) mq_timedsend(r3, &(0x7f0000000100)="73b3cafec3dbd277099115feb843043bcd21914a3dd770451ca1844af1702112de1c7734850769393d14c839755a14d817df51fee3f9c0eb552a2c2ed1587ddc4541f459edf88ac4aeb604daa86338ecf4a9ac6ff010cf7c5811", 0x5a, 0x5, &(0x7f00000001c0)) mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0) ioctl$int_in(r2, 0x5421, &(0x7f0000000900)=0x6) ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f0000000940)={"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"}) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f0000000500)={0xc, 0x8, 0xfa00, {&(0x7f0000000380)}}, 0x10) socket$vsock_dgram(0x28, 0x2, 0x0) sendto$inet(r2, &(0x7f0000000a00), 0x73c5d3417c1b93e7, 0x0, &(0x7f000069affb)={0x2, 0x4e20, @loopback}, 0x10) setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000240)={{0x88, @rand_addr=0x8, 0x4e23, 0x2, 'sh\x00', 0x21, 0x0, 0x29}, {@loopback, 0x4e23, 0x0, 0x17, 0x3, 0x101}}, 0x44) sendto$inet(r2, &(0x7f00004b3fff), 0x0, 0x0, &(0x7f00002b4000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000680)=ANY=[@ANYBLOB="8300000016d45041858856dc4d387b5a5208037801ce1d2edf1564df32f4d8561b6d867f3f42c418daa5f6019bdbb35760a6112546ce45da07121f92afae57b9dfcc7d37fcd421ac92ae3ed5573aa5754d2d924c041a07b30600eeccef6b27454e341dbaa774142f89d945a7b4175dbb7ff3bd5ec5d80e2b2a4ff6ed579285fda4d53f81ddf40e35a39a6a66b2d55468b1e19bffc8de4785c2fc6bd2303ce4348d668910e04b0a2e2bc418861e18081835f36e37248ad6f262665169e4593367fa282e0502c0641a6b5dd944770d731ab6da35d1bafc8abfa88f2713cac42f17bbb9e27240369e17fcb3f27bf84a51d684f52385f6d7dbd493c866d80000000000000000000000000000"], &(0x7f0000000180)=0x1) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000300)={0x0, 0x7, 0x8}, 0x8) openat$cgroup_subtree(r1, &(0x7f0000000880)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000800)=0x1) 00:12:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:57 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:57 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={r0}) setsockopt$inet_tcp_int(r2, 0x6, 0x3, &(0x7f0000000040)=0x1a13, 0x4) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:57 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000040)={0x7, &(0x7f0000000000)=[{0x7f, 0x5, 0x7}, {0x8, 0x5, 0x8, 0x4}, {0x4, 0x5, 0x800000000000, 0x3}, {0x0, 0x7, 0x2, 0x72f}, {0x7, 0x4, 0x2, 0x7f}, {0xc18, 0x80000000, 0x9}, {0x7fff, 0x7fff, 0xa1f5, 0x1}]}) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:57 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x6000000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:57 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x101002, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f0000000240)=""/246) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000040)=0x600210) r2 = memfd_create(&(0x7f0000000080)="73970ddb08df8c656c667b7070703070707031236d643573756d00", 0x0) pwritev(r2, &(0x7f0000f50f90)=[{&(0x7f0000000100)="a8", 0x1}], 0x1, 0x81003) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r2, &(0x7f00000ddff8), 0x102002700) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:57 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x3f00, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:57 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0) ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f0000000040)=""/16) sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x34003}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x14, 0x28, 0x829, 0x0, 0x0, {0x3}}, 0x14}}, 0x0) 00:12:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:57 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xb300000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:57 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x840000000015, 0x805, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x6, 0x200}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'team_slave_0\x00', 0x200}) 00:12:57 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000180)}], 0x1, 0x0) 00:12:58 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0x4e}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:58 executing program 3: r0 = syz_open_dev$adsp(&(0x7f0000000300)='/dev/adsp#\x00', 0x9, 0x400800) ioctl$KVM_DEASSIGN_PCI_DEVICE(r0, 0x4040ae72, &(0x7f0000000340)={0xd0b, 0x8001, 0x1, 0x1, 0x4}) r1 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r1, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x800, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000240)={0xffffffffffffffff}, 0x2, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r2, &(0x7f00000002c0)={0xb, 0x10, 0xfa00, {&(0x7f0000000180), r3}}, 0x18) connect$netlink(r1, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f0000000040)=""/106, &(0x7f00000000c0)=0x6a) 00:12:58 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xff020000a0000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:58 executing program 1: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001300)='/dev/uhid\x00', 0x1004000002802, 0x0) write$UHID_CREATE2(r0, &(0x7f0000001140)={0xb, 'syz0\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}, 0x119) write$UHID_CREATE2(r0, &(0x7f0000000180)={0xb, 'syz0\x00', 'syz1\x00', 'syz0\x00', 0x8c, 0x7, 0x22f, 0x7f, 0x3, 0x347f, "0dbb334de7e0f9fe21842587354b6722f23a45cef0adb6c4470e09f7a402428631c1e4a0f7190052baba917faf7bde68cff74542036560740f054f680417e6c9fb58ff95b5273ed2919325ebc5f535c4d60e543b0773022795b46466a0dfac652b77c5f91556ec6ce9f952f7b58696a5e4a0d99233ebda498db956bf6ba2d01604ddd6f4cff05009532529c1"}, 0x1a4) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x80, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f00000000c0)={{0x5, 0x10000}, 'port0\x00', 0xa, 0xc0410, 0x5, 0x40, 0x4, 0x6, 0x2, 0x0, 0x2}) write$UHID_INPUT2(r0, &(0x7f0000000080)={0xe}, 0x6) 00:12:58 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = openat$cgroup_ro(r0, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000040)={0x1, 0x0, 0x10001, 0x1ff}) ioctl$DRM_IOCTL_AGP_FREE(r1, 0x40206435, &(0x7f00000000c0)={0x1, r2, 0x1, 0x9}) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:58 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) r1 = fcntl$dupfd(r0, 0x406, r0) ioctl$RTC_PIE_ON(r1, 0x7005) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) fcntl$setlease(r0, 0x400, 0x1) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 363.647921] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz1 00:12:58 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="71e67affcdf031a5a2080000001c26b3", 0x10) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000080)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="fc187ed9af988e114f322345b9ad3b6fc71694e7477acbc900eea05306261eef11", 0x21}], 0x1, &(0x7f00000001c0)}], 0x1, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x400000, 0x0) recvmmsg(r1, &(0x7f0000000140)=[{{0x0, 0x0, &(0x7f0000000100)}}, {{&(0x7f0000000200)=@sco, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000340)=""/12, 0xc}, {&(0x7f0000000580)=""/80, 0x50}], 0x2}}], 0x2, 0x0, 0x0) 00:12:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:58 executing program 3: r0 = socket(0x8000000000010, 0x6, 0x0) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000040)={'lo\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xe}}}) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 00:12:58 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xb3000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:58 executing program 1: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0xffffffffffffffff, 0xff8c) 00:12:59 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20000, 0x0) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000040)=0x5, 0x4) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) socket$inet_smc(0x2b, 0x1, 0x0) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:59 executing program 3: r0 = socket(0x8000000000010, 0x80803, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x3, 0x1) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000080)) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f00000001c0)={0x0, 0x15, "738810853c3d2df19c1347f42bf14a59fdba88fdf4"}, &(0x7f0000000200)=0x1d) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000240)={r2, 0xfffffffffffffffc, 0x5, [0x10848bbd, 0x0, 0x0, 0x0, 0x1]}, &(0x7f0000000280)=0x12) bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) connect$netlink(r0, &(0x7f0000000000)=@proc={0x10, 0x0, 0x1}, 0xc) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="54f676e76f53b639a1287c6a90df5a6fc4e691392e0aa3d6cc906c72b7e4c6b84be74bae6a992c59833ca8ffe9d478a2f831641cd30bef60fad1cc91a666f2ea608156abd3e1ff812398beaaf148cf62e9181dc56b60c3fe877173207a1a1ec1238250ff0e0a633a98c087ff060444bc193e0358004ae951"}], 0x0, &(0x7f0000000100)}], 0x49249249249251b, 0x2000000000000000) 00:12:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:59 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x4, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:59 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234488dd25d766070") r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r1, &(0x7f0000002000)=@ethernet, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f000000ffd8)={'vcan0\x00', 0x0}) r3 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r3, &(0x7f0000010ff0), 0x10) recvmmsg(r3, &(0x7f0000006000)=[{{&(0x7f00000001c0)=@ax25, 0x80, &(0x7f0000000140)=[{&(0x7f0000000040)=""/222, 0xde}], 0x1, &(0x7f0000002f00)=""/149, 0x81}}], 0x8, 0x0, &(0x7f0000006280)={0x77359400}) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000180)={0x6}, 0x1) sendmsg$can_bcm(r1, &(0x7f0000000000)={&(0x7f0000007ff0)={0x1d, r2}, 0x10, &(0x7f0000002ff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="010000000300000000000000ec0000008405c904a99373cf11b753221c906635482f000000000000009c401628729587e556477ca54c459747ef88f4bffca265221c1c3b96ce8fd2d11382cdc7fa27feaf3d2a827b2c8699f8361a646c9247cbb1a92879aaff998651e5040f8eb0f65170edf7415da7010f864f323aaf84e8f77b", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x7530, @ANYBLOB="000000000100000000000000000000008e15adecfc04aba1"], 0x48}}, 0x0) 00:12:59 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) pipe(&(0x7f0000000040)={0xffffffffffffffff}) connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x2, @local, 'bcsh0\x00'}}, 0x1e) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)={&(0x7f0000000100)='\x00', 0x0, 0x18}, 0x10) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000000)={'team_slave_0\x00', {0x2, 0x4e20, @broadcast}}) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:12:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:12:59 executing program 3: accept4(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x5, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000080), 0x0, 0x1}], 0x810430, &(0x7f0000000240)={[{@usebackuproot='usebackuproot'}, {@space_cache='space_cache'}, {@noflushoncommit='noflushoncommit'}, {@max_inline={'max_inline', 0x3d, [0x78]}}, {@inode_cache='inode_cache'}, {@flushoncommit='flushoncommit'}], [{@func={'func', 0x3d, 'FILE_MMAP'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@smackfstransmute={'smackfstransmute'}}, {@fsmagic={'fsmagic', 0x3d, 0x8}}, {@hash='hash'}, {@appraise='appraise'}, {@subj_role={'subj_role', 0x3d, '(J'}}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0x5, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x2c) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000200)) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000000), &(0x7f0000000600), 0xffffffffffffffff}, 0x20) 00:12:59 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xb300, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:12:59 executing program 3: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff) ioctl$RNDZAPENTCNT(r0, 0x5204, &(0x7f0000000000)=0x9) syz_mount_image$msdos(&(0x7f00000000c0)='msdos\x00', &(0x7f0000000080)='./file0\x00', 0x9, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000000040)) [ 364.694500] IPVS: ftp: loaded support on port[0] = 21 00:12:59 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xdb00, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 364.784428] FAT-fs (loop3): bogus number of reserved sectors [ 364.797291] FAT-fs (loop3): Can't find a valid FAT filesystem 00:12:59 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x2000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 364.840691] FAT-fs (loop3): bogus number of reserved sectors [ 364.862645] FAT-fs (loop3): Can't find a valid FAT filesystem 00:13:00 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xf83, 0x4000) ioctl$DRM_IOCTL_MARK_BUFS(r2, 0x40206417, &(0x7f0000000040)={0x7, 0x3000, 0x8, 0xffffffff, 0x1d, 0x8001}) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x101, 0x20}, &(0x7f0000000100)=0xc) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000140)={r3, 0x0, 0x9}, 0x8) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000280)=""/28, &(0x7f00000002c0)=0x1c) 00:13:00 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) semctl$GETALL(0x0, 0x0, 0xd, &(0x7f0000000240)=""/4096) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x4a000) setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f00000000c0)=0x10000, 0x4) sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x14, 0x1c, 0xfffffffffffffffd, 0x0, 0xfffffff0, {0x1}}, 0x14}}, 0x0) 00:13:00 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xe00, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 366.016153] bridge0: port 1(bridge_slave_0) entered blocking state [ 366.022898] bridge0: port 1(bridge_slave_0) entered disabled state [ 366.029834] device bridge_slave_0 entered promiscuous mode [ 366.049012] IPVS: stopping master sync thread 10500 ... [ 366.054706] device bridge_slave_1 left promiscuous mode [ 366.060229] bridge0: port 2(bridge_slave_1) entered disabled state [ 366.089308] device bridge_slave_0 left promiscuous mode [ 366.094842] bridge0: port 1(bridge_slave_0) entered disabled state [ 366.848356] team0 (unregistering): Port device team_slave_1 removed [ 366.858034] team0 (unregistering): Port device team_slave_0 removed [ 366.866655] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 366.891019] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 366.942957] bond0 (unregistering): Released all slaves [ 366.992155] bridge0: port 2(bridge_slave_1) entered blocking state [ 366.998516] bridge0: port 2(bridge_slave_1) entered disabled state [ 367.005441] device bridge_slave_1 entered promiscuous mode [ 367.028497] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 367.053607] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 367.114762] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 367.140814] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 367.287229] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 367.294547] team0: Port device team_slave_0 added [ 367.327645] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 367.334873] team0: Port device team_slave_1 added [ 367.364506] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 367.399054] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 367.432884] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 367.440372] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 367.455096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 367.484010] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 367.491131] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 367.500059] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 367.724901] bridge0: port 2(bridge_slave_1) entered blocking state [ 367.731427] bridge0: port 2(bridge_slave_1) entered forwarding state [ 367.737971] bridge0: port 1(bridge_slave_0) entered blocking state [ 367.744337] bridge0: port 1(bridge_slave_0) entered forwarding state [ 367.751497] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 368.029225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 368.441582] 8021q: adding VLAN 0 to HW filter on device bond0 [ 368.512459] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 368.580456] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 368.586584] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 368.594524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 368.665829] 8021q: adding VLAN 0 to HW filter on device team0 00:13:04 executing program 1: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$msdos(&(0x7f0000000340)='msdos\x00', &(0x7f0000000280)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f00000002c0)=ANY=[]) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000880)={0x0, 0x0, 0x101}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000980)={0x0, r2}) r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) fchdir(r3) r4 = open(&(0x7f0000000200)='./bus\x00', 0x42042, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0xa0000, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000540)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000680)={&(0x7f00000004c0), 0xc, &(0x7f0000000580)={&(0x7f0000000600)={0x48, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100000001}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x14b3}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x40800) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x40000, 0x0) write$binfmt_aout(r4, &(0x7f0000000580)=ANY=[], 0x97) fcntl$notify(r3, 0x402, 0x8) syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00') sendfile(r4, r4, &(0x7f00000000c0), 0x8080ffffff10) ioctl$LOOP_GET_STATUS(r5, 0x4c03, &(0x7f00000008c0)) syz_genetlink_get_family_id$ipvs(&(0x7f0000000500)='IPVS\x00') pwritev(r4, &(0x7f0000000380)=[{&(0x7f0000000300)="765bac7828191357a2469814836e63186b", 0x11}], 0x1, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) bind$bt_sco(r0, &(0x7f00000000c0)={0x1f, {0x80000001, 0x0, 0x6, 0x8000, 0x1, 0x400}}, 0x8) write(r1, &(0x7f00000001c0), 0xfffffef3) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x20013, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x60000008}) r6 = syz_genetlink_get_family_id$nbd(&(0x7f0000000180)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f00000005c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2080000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x5c, r6, 0x900, 0x70bd28, 0x25dfdbfe, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc}, @NBD_ATTR_SERVER_FLAGS={0xc}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x8804) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 00:13:04 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x8dffffff00000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:04 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x400080) ioctl$RTC_WIE_ON(r2, 0x700f) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:04 executing program 3: unshare(0x400) r0 = eventfd2(0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000002540)={0xffffffff80000005}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x80800, 0x0) ioctl$BLKRESETZONE(r2, 0x40101283, &(0x7f0000000040)={0xfffffffffffffffd, 0x8000}) epoll_wait(r1, &(0x7f0000002500)=[{}], 0x1, 0xfffffffffffffffe) 00:13:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:04 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x404000, 0x0) accept$unix(r1, 0x0, &(0x7f00000008c0)) r2 = geteuid() r3 = getgid() getresuid(&(0x7f0000000140)=0x0, &(0x7f0000000280)=0x0, &(0x7f00000002c0)=0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000900)={{&(0x7f0000ffb000/0x2000)=nil, 0x2000}, 0x2}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000300)={{{@in=@broadcast, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000400)=0xe8) mount$fuseblk(&(0x7f0000000040)='/dev/loop0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fuseblk\x00', 0x820, &(0x7f0000000500)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xe000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x400}}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0x53a}}], [{@uid_gt={'uid>', r6}}, {@uid_eq={'uid', 0x3d, r7}}]}}) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ab553fec94248c32e27d04000000288a", 0xfffffffffffffd65) r8 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r8, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r8, &(0x7f00000006c0)=ANY=[@ANYRESHEX=r5, @ANYRESOCT=r6, @ANYRES32=r7, @ANYPTR64=&(0x7f0000000680)=ANY=[@ANYRESDEC=r1, @ANYPTR64=&(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES64=r6, @ANYRESOCT=r8], @ANYPTR=&(0x7f0000000480)=ANY=[@ANYRES32=r7, @ANYRES16=r8, @ANYPTR, @ANYRES64, @ANYRESHEX=r0, @ANYPTR, @ANYPTR64], @ANYRES16=r3, @ANYPTR64=&(0x7f0000000600)=ANY=[@ANYRES64=r8, @ANYPTR, @ANYRESOCT, @ANYPTR, @ANYRESDEC=r1, @ANYRES32, @ANYPTR, @ANYRESDEC=r4], @ANYRES16=0x0, @ANYPTR=&(0x7f00000007c0)=ANY=[@ANYBLOB="edc7e7038755ee3081e74a94347aafc9f6410e0e72a95f4697bb3af39f793667d64050950adcf6da1fa53385630ffeaf67210c24fd89cb82d85787b56ccec18e3c32f03f7cbd9797f6562143eaea3937ffdbe9914d901b9be15abc789e68446d123ca5b642f3258f81ce72dd401830f667544803fac6eb2ad9ed33484d7db345ea0a3610bf0a7effeacfb39d60edf473d27bc9173df675caa53a3f5922d8c721acd2276f03dc394d340f471a647c01938638713ecc68243dad7c3100a0f156950cbd3279912b9547f5a14577ac692770caaf73870b4aad97cd18d8fd6112b249c00c3c5e9889396ecd009dce4532", @ANYRES32]], @ANYRESHEX=r6, @ANYPTR, @ANYRESDEC=r3, @ANYRESOCT=r8], 0x7a) recvmsg(r8, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$NBD_SET_SIZE(r0, 0xab02, 0x0) 00:13:04 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x33d, &(0x7f0000000000), 0x0, 0x4005}, 0x0) r2 = dup2(r1, r0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={0x0, r2, 0x1, 0x2}, 0x14) mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='rootfs\x00', 0x100000, &(0x7f0000000100)='vmnet0\\-\x00') write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0x3}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:04 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x600000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:04 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0, 0x0) recvmsg$kcm(r1, &(0x7f0000000a40)={&(0x7f0000000440)=@xdp, 0x80, &(0x7f0000000980)=[{&(0x7f0000000500)=""/202, 0xca}, {&(0x7f0000000600)=""/128, 0x80}, {&(0x7f0000000680)=""/248, 0xf8}, {&(0x7f0000000780)=""/174, 0xae}, {&(0x7f0000003040)=""/4096, 0x1000}, {&(0x7f0000000840)=""/96, 0x60}, {&(0x7f00000008c0)}, {&(0x7f0000000900)=""/99, 0x63}], 0x8, &(0x7f0000000a00)=""/45, 0x2d, 0x5}, 0x2102) ioctl(r0, 0x8912, &(0x7f0000000080)="0a5cc80700315f85715070") r2 = getpgid(0xffffffffffffffff) lstat(&(0x7f0000000cc0)='./file0\x00', &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = getgid() ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000d80)=0x0) fstat(r0, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x1, &(0x7f0000000e40)=[0xee00]) fcntl$getownex(r0, 0x10, &(0x7f0000000e80)={0x0, 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000ec0)={{{@in6=@mcast2, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6}}, &(0x7f0000000fc0)=0xe8) fstat(r1, &(0x7f0000004040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$unix(r1, &(0x7f0000004180)={&(0x7f0000000b40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000c80)=[{&(0x7f0000000bc0)="678b0dd8f618c8534e27e1b5b15b4d73b6306c6a8d49dec5c0e29021fae1f0fd0a570476eba46bd84820cc5eb801a8302e4b8fe487f375c52a5ba1a5b53eac88e486257831ee50e97ff0057ff1be42ea8afcc48a2c7ffe36fe8f8c6fa0b779394c69f47286011ff8081ebf129aebbea8a7866da6db83e41ef951d5a41f28e2bc51630bda5861a6d72c11f742a3d1394fac1758465695bdf7d66584dc0a98de21f6c08b042558640790827d578455bfd65a28ff", 0xb3}], 0x1, &(0x7f00000040c0)=[@cred={0x20, 0x1, 0x2, r2, r3, r4}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @cred={0x20, 0x1, 0x2, r8, r9, r10}, @rights={0x20, 0x1, 0x1, [r1, r0, r1]}, @rights={0x28, 0x1, 0x1, [r0, r1, r0, r1, r1, r1]}], 0xa8, 0x4000}, 0x0) r11 = socket$inet6(0xa, 0x2100001000000002, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r11, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}}, {{@in6=@mcast2, 0x0, 0x32}, 0x0, @in6=@loopback, 0x0, 0x2}}, 0xe8) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0xfffffffffffffdc2}}, 0x0) recvmsg(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000000c0)=@nl, 0x80, &(0x7f0000000200)=[{&(0x7f0000000300)=""/80, 0x50}, {&(0x7f0000000380)=""/152, 0x98}], 0x2, &(0x7f0000001040)=""/4096, 0x1000}, 0x0) recvfrom(0xffffffffffffffff, &(0x7f0000002040)=""/4096, 0x1000, 0x2, 0x0, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000184000)=ANY=[@ANYBLOB="020d0000020000000017000000000000"], 0x10}}, 0x0) getsockname$inet(r1, &(0x7f00000008c0)={0x2, 0x0, @multicast2}, &(0x7f0000000a80)=0x10) ioctl$sock_inet_SIOCGARP(r1, 0x8954, &(0x7f0000000ac0)={{0x2, 0x4e23, @local}, {0x5, @remote}, 0x44, {0x2, 0x4e21, @local}, 'dummy0\x00'}) r12 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="021200001100000026bd7000fcdbdf2501001400790000000800120003000000000000003800000046003270b4a69956a98fe40000000000ac1414bb0000000000000000000400000000000000000000000000000000000004000400170000001f000000000700003f00000000000000030000000000120002000b00050000000100000000000000"], 0x88}}, 0x0) sendmmsg(r12, &(0x7f0000000180), 0x400000000000117, 0x0) 00:13:04 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xffffff7f, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:04 executing program 3: r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) sendmmsg(r1, &(0x7f0000000080), 0x153, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@mcast1, @in=@multicast1}}, {{@in=@rand_addr}, 0x0, @in=@loopback}}, &(0x7f0000000000)=0xe8) write$P9_RLOCK(0xffffffffffffffff, &(0x7f0000000080)={0x8, 0x35, 0x1, 0x1}, 0x4) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000), 0x1e6}], 0x1) close(r0) 00:13:05 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x4000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:05 executing program 1: fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x20000004e20}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x59aa, 0x4) recvmmsg(r0, &(0x7f0000004400)=[{{&(0x7f0000001180)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff}}, 0x80, &(0x7f00000012c0), 0x0, &(0x7f0000001300)=""/255, 0xff}}], 0x1, 0x0, &(0x7f00000045c0)={0x77359400}) syz_emit_ethernet(0x437, &(0x7f0000000700)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "c22df7", 0x401, 0x11, 0x0, @dev, @local, {[], @dccp={{0x0, 0x4e20, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "0087ae", 0x0, "ca8345"}, "2b00b32def4f1142b6793bb530f9b20e90aa25d5c2b9431efd840a07c1922833b2c789aefbbaee9f63cbab38a8acfb8dba0595ecb683e74ea2bc44a7aee9c52e18ca01c06a5c354712b8b1ff75f45ba55a3487c83849023d37e037d2d3e3e842e9ba099e9ed8775d1173d8e78335aa65d58f54c1d78d4fce897cfefa24b7f268f90be76c7f4e1bfe4d84a869353e931c3732afea55697618a1318ecb657b34172b93fd59d7988d43630cf81e976a0ea01fd8b2547ab593bc605c985f56664b84ed3c9f90ffb666e030c794e2d2d5070af38d83dc275da88cfe6910b2ded59f6c418af5d247237eceb14857c1d7c3ee32e729d9793040f8f4e432eb875a89fe31cbed117f0e76643797169fba3dac3f377d145ce97980ba626da7a279e698a9e040a22d63c535f0ee06adb59e9e06ad7295e6601f3a5fe9b581975993c6c775734212bccb26288d42a672c965d40e80d0e1908f04425a60a08241378ec7ff88315de073b64c5f9647e51732be34988e0948f12e6c560bedbece811bca501d4389dbfe20e4df5160cd7324c0670c7b3e8980b061e31b1c8461d6f7a63f9e9fd24326924c076e01631a0b9703a6106accfaa064075fa1f16e16c5171b6a324e8642b2ab76618b824110c312ab12d9f65d6a980634a6a7cba8bf89e01a91259f446232476a1c490982636b78d1300befab1a2f6e8261e07336c5692db37bb7d3cebf4a942b62f2fa6cceb7e488aa02b2e52c6f82bd3792845fff41cce52e0469d14821ce11491864860c11421a92dae3152eb23106a0c679d2b1f0a9809b56abdcf893f9531508f24e64ec911fd8e8b3c8fd2291f1a7b910222c38533d4caadac9acd194be7e53549c1719bdf668887a0e19db83b5356f8f7d93cbef1ef3505dcc40d0d2a02a2745ab518979b9c3774babfe8e70ead767c7a00289b8cc6e51d1a957548270cb3f5064961a88f61b34f9442d78ae5a8551713f9afb4269d689f9adb6b4a902a637184f7f899efe9fa0ddb45cd1076c4eeeda51ca8dc20dcfc9cc5f56768073b3f4c2c9f543324a4fd0b8bc7b95e232bf85bf222394fa4336ab4007d7ad2dc85afa6eb79ad2624c4be6c674ee98fce9a51786b7cc2b5044de114d36d2690e13bcedf96590c7d5aeb8040b74c4d6a5aa38a7c1f0857522f4f968795056b9a7034dc3444784f9486b575e44dec3216d72845500e63297d7197961e7e593ea3411001d1d47ba42d70e7af8e91246c02d7e37ff0eb60abebc37dd00315b4fbb09e77a6b5f7e8441818ebcfafecf622731f1db8a11fa2de8e30d808bedbfee104b3b1100f5094675521da07dd2a28be7e486b325a0f0e6d75116be1bbc2aa20deb64a6e4e7b824b12d009e6f1802f5a8e31559b125d71d00a5684fbde4668f5af1eb4ca04fa7c4ef4d2a194b0856e007"}}}}}}, &(0x7f0000001780)) sendto$inet6(r0, &(0x7f0000000300), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000000)=0x1, 0x4) 00:13:05 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='pids.events\x00', 0x0, 0x0) ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f00000000c0)=""/215) r1 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x40000ffffff, 0x2) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x102, 0x0) ioctl$UI_SET_SWBIT(r1, 0x40085511, 0x1000000000) 00:13:05 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:05 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x700, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:05 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0xffffffffffffff7f) getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f0000000000)=@assoc_id=0x0, &(0x7f0000000040)=0x4) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000080)={r1, 0xfff, 0x7, 0x3}, &(0x7f00000000c0)=0x10) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000900)={0x0, 0x3100100000, 0x10}, 0xc) write$binfmt_misc(r2, &(0x7f0000000240)={'syz1'}, 0x34000) [ 370.732991] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 00:13:05 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000000)={'syz_tun\x00', {0x2, 0x4e22, @rand_addr=0x8}}) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:05 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x11, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:05 executing program 1: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) ioctl(r1, 0x3, &(0x7f00000000c0)="fbafd6a7aaad2f72c66f51e5e9a2152e3e1a6b807cf45639fe4766be1705db626b5598b802077b5f42307f10073081a1d3d413e99e556caab03a0cd5fb15dcf32340deebe595bdca16cfb0352104c7594e440636ae03729eb4c3ef99360f97269f016a37f667b27c33e3e294c629fa1cde226c8c301edeb9ec51e50471ac80") r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x200, 0x0) write$USERIO_CMD_SEND_INTERRUPT(r2, &(0x7f0000000180)={0x2, 0x40}, 0x2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) fsetxattr(r3, &(0x7f00000001c0)=@known='com.apple.FinderInfo\x00', &(0x7f0000000200)='/dev/autofs\x00', 0xc, 0x2) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) 00:13:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000140)=r1) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000100)=0x4, 0x4) sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x3, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="0a5cc8070031") 00:13:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000004a80)) getresuid(&(0x7f0000004ac0), &(0x7f0000004b00), &(0x7f0000004b40)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000006540), &(0x7f0000006580)=0xc) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000006800)=0xc) getpgrp(0xffffffffffffffff) getresgid(&(0x7f0000007900), &(0x7f0000007940), &(0x7f0000007980)) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000007ac0)={{{@in=@dev, @in6=@remote}}, {{@in=@dev}, 0x0, @in=@dev}}, &(0x7f0000007bc0)=0xe8) lstat(&(0x7f0000007c00)='./file0\x00', &(0x7f0000007c40)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000140), 0x391, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$SCSI_IOCTL_GET_IDLUN(0xffffffffffffffff, 0x5382, &(0x7f0000000080)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000640)={"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"}) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0x1, 0x0, [{0x0, 0x0, 0x0, [], 0x1ff}]}}) 00:13:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:05 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x200000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:06 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x288400, 0x0) ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000140)) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x100, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000040), &(0x7f00000000c0)=0x4) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 00:13:06 executing program 3: io_setup(0x5, &(0x7f0000000100)=0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000180)={0x0, 0x8}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x3f, 0xfff}, &(0x7f0000000240)=0x10) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000280)={r2, 0x5, 0x8001, 0x5, 0x3, 0x7ff, 0x0, 0x200, {r3, @in6={{0xa, 0x4e20, 0x8, @mcast2, 0xffffffffffff7fff}}, 0x5, 0x7f, 0x7f, 0x8000, 0x8001}}, &(0x7f0000000340)=0xb0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000080)={0x3}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) close(r4) r5 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x1, 0x0) ioctl$KDGKBMODE(r5, 0x4b44, &(0x7f0000000140)) io_submit(r0, 0x1, &(0x7f0000000600)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r4, &(0x7f0000000080), 0x4}]) 00:13:06 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x4000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:06 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000380)='fd\x00') openat$cgroup_procs(r0, &(0x7f00000003c0)='cgroup.threads\x00', 0x2, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4000, 0x2) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r3, 0xc0a85352, &(0x7f00000000c0)={{0x6, 0xc58}, "706f7274310000000e00", 0x40, 0x40000, 0x8000, 0x401, 0x10001, 0xffffffff, 0x0, 0x0, 0x4, 0x6}) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000040), &(0x7f0000000280)=0x14) fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000200)='trusted.overlay.upper\x00', &(0x7f00000002c0)={0x0, 0xfb, 0x46, 0x2, 0x7, "ee441ef2c756dbcd63e5397b96c4e564", "ec3f7e0b037a4156cee98a6e9e8009f64a0248ebc9b3935324bf191c30d4b7006b2399c04e95b81ed07c0edd1e8ab033af"}, 0x46, 0x1) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) accept$nfc_llcp(r3, &(0x7f0000000400), &(0x7f0000000340)=0xfffffffffffffd26) accept$alg(r1, 0x0, 0x0) ioctl$LOOP_SET_DIRECT_IO(r3, 0x4c08, 0x3) 00:13:06 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x4, 0x84) syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0)) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000240)=0x1, 0x4) sendto$inet6(0xffffffffffffffff, &(0x7f0000e33fe0), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000280)=0x200000000) write$vnet(r0, &(0x7f0000000480)={0x1, {&(0x7f00000005c0)=""/24, 0x18, &(0x7f0000000040)=""/101, 0x0, 0x80002}}, 0x68) write$vnet(r0, &(0x7f0000000680)={0x1, {&(0x7f00000000c0)=""/76, 0x2a, &(0x7f0000000600)=""/89, 0x0, 0x2}}, 0x68) write$vnet(r0, &(0x7f0000000340)={0x1, {&(0x7f0000000180)=""/44, 0xfffffd45, &(0x7f00000001c0)=""/38, 0x0, 0x3}}, 0x68) 00:13:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 00:13:06 executing program 3: socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fadvise64(r0, 0x0, 0x7fffffff, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r2, 0x0, 0x40, &(0x7f0000000340)={'raw\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'}, &(0x7f0000000180)=0x54) ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000340)}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001d80)={'gre0\x00'}) clock_gettime(0x0, &(0x7f0000002900)={0x0, 0x0}) recvmmsg(r1, &(0x7f00000027c0), 0x40004c3, 0x1ba, &(0x7f0000002940)={0x0, r3+10000000}) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$can_raw(0x1d, 0x3, 0x1) open_by_handle_at(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x2000) bind$can_raw(r5, &(0x7f0000000080), 0x10) setsockopt(r5, 0x65, 0x1, &(0x7f0000000080), 0x1d0) syz_open_dev$audion(&(0x7f0000000240)='/dev/audio#\x00', 0x8, 0x40) close(r5) 00:13:06 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xf5ffffff, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 00:13:06 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x7fffef55, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:06 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x4, 0x84) syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0)) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000240)=0x1, 0x4) sendto$inet6(0xffffffffffffffff, &(0x7f0000e33fe0), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000280)=0x200000000) write$vnet(r0, &(0x7f0000000480)={0x1, {&(0x7f00000005c0)=""/24, 0x18, &(0x7f0000000040)=""/101, 0x0, 0x80002}}, 0x68) write$vnet(r0, &(0x7f0000000680)={0x1, {&(0x7f00000000c0)=""/76, 0x2a, &(0x7f0000000600)=""/89, 0x0, 0x2}}, 0x68) write$vnet(r0, &(0x7f0000000340)={0x1, {&(0x7f0000000180)=""/44, 0xfffffd45, &(0x7f00000001c0)=""/38, 0x0, 0x3}}, 0x68) 00:13:07 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000000)=0x0) wait4(r2, &(0x7f0000000040), 0x8, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.usage_sys\x00', 0x0, 0x0) setsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f0000000100)=0x81, 0x1) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000023c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r4, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") unshare(0x2000400) r5 = socket$inet_sctp(0x2, 0x800000000801, 0x84) connect$inet(r5, &(0x7f0000000040)={0x2, 0x4e21, @dev}, 0x10) getsockopt$sock_buf(r5, 0x1, 0x1c, &(0x7f0000000080)=""/4096, &(0x7f0000001080)=0xa) mkdirat$cgroup(r3, &(0x7f0000000140)='syz1\x00', 0x1ff) 00:13:07 executing program 2 (fault-call:6 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:07 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x60, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:07 executing program 1: r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000740)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x16, 0x0, r0) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x200, 0x2000) ioctl$TIOCLINUX3(r1, 0x541c, &(0x7f0000000040)) keyctl$revoke(0x3, r0) [ 372.475809] FAULT_INJECTION: forcing a failure. [ 372.475809] name failslab, interval 1, probability 0, space 0, times 0 [ 372.490975] CPU: 0 PID: 18324 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 372.499485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.508856] Call Trace: [ 372.508882] dump_stack+0x1d3/0x2c4 [ 372.508901] ? dump_stack_print_info.cold.2+0x52/0x52 [ 372.508915] ? __wake_up_common_lock+0x1d0/0x330 [ 372.508938] should_fail.cold.4+0xa/0x17 [ 372.515131] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 372.534187] ? mark_held_locks+0x130/0x130 [ 372.538428] ? lock_downgrade+0x900/0x900 [ 372.542573] ? do_raw_spin_lock+0xc1/0x200 [ 372.546795] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 372.551829] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 372.556916] ? __wake_up_common_lock+0x1d0/0x330 [ 372.561657] ? __wake_up_common+0x7d0/0x7d0 [ 372.565964] ? __lockdep_init_map+0x105/0x590 [ 372.570455] ? fs_reclaim_acquire+0x20/0x20 [ 372.574777] ? lock_downgrade+0x900/0x900 [ 372.578934] ? check_same_owner+0x330/0x330 [ 372.583617] ? mark_held_locks+0x130/0x130 [ 372.587879] __should_failslab+0x124/0x180 [ 372.592135] should_failslab+0x9/0x14 [ 372.595946] kmem_cache_alloc+0x2be/0x730 [ 372.600094] ? vmx_flush_tlb_gva+0x380/0x380 [ 372.604526] ? ima_get_action+0x7e/0xa0 [ 372.608489] mmu_topup_memory_caches+0xf7/0x390 [ 372.613149] kvm_mmu_load+0x21/0xfa0 [ 372.616871] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 372.622136] vcpu_enter_guest+0x3e6d/0x62f0 [ 372.626463] ? emulator_read_emulated+0x50/0x50 [ 372.631124] ? vmx_vcpu_load+0xb06/0x1030 [ 372.635272] ? mark_held_locks+0x130/0x130 [ 372.639504] ? vmx_write_tsc_offset+0x670/0x670 [ 372.644161] ? lock_downgrade+0x900/0x900 [ 372.648299] ? lock_acquire+0x1ed/0x520 [ 372.652261] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 372.657274] ? preempt_count_add+0x7d/0x160 [ 372.661585] ? lock_release+0x970/0x970 [ 372.665565] ? kvm_gen_update_masterclock+0x350/0x350 [ 372.670764] ? kvm_arch_dev_ioctl+0x630/0x630 [ 372.675377] ? preempt_notifier_dec+0x20/0x20 [ 372.679863] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 372.684700] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 372.689703] kvm_vcpu_ioctl+0x5c8/0x1150 [ 372.693760] ? kvm_vcpu_block+0x1020/0x1020 [ 372.698081] ? __fget+0x4aa/0x740 [ 372.701532] ? workqueue_online_cpu+0x80/0xad0 [ 372.706103] ? __f_unlock_pos+0x19/0x20 [ 372.710063] ? __fget+0x4d1/0x740 [ 372.713508] ? ksys_dup3+0x680/0x680 [ 372.717220] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 372.722143] ? kvm_vcpu_block+0x1020/0x1020 [ 372.726446] do_vfs_ioctl+0x1de/0x1720 [ 372.730320] ? fsnotify_first_mark+0x350/0x350 [ 372.734895] ? __fsnotify_parent+0xcc/0x420 [ 372.739201] ? ioctl_preallocate+0x300/0x300 [ 372.743594] ? __fget_light+0x2e9/0x430 [ 372.747552] ? fget_raw+0x20/0x20 [ 372.751014] ? __sb_end_write+0xd9/0x110 [ 372.755074] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 372.760709] ? fput+0x130/0x1a0 [ 372.763988] ? ksys_write+0x1ae/0x260 [ 372.767775] ? security_file_ioctl+0x94/0xc0 [ 372.772171] ksys_ioctl+0xa9/0xd0 [ 372.775605] __x64_sys_ioctl+0x73/0xb0 [ 372.779479] do_syscall_64+0x1b9/0x820 [ 372.783363] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 372.788715] ? syscall_return_slowpath+0x5e0/0x5e0 [ 372.793630] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 372.798470] ? trace_hardirqs_on_caller+0x310/0x310 [ 372.803473] ? prepare_exit_to_usermode+0x291/0x3b0 [ 372.808484] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 372.813326] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 372.818526] RIP: 0033:0x457579 [ 372.821717] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 372.840786] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 372.848488] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 372.855763] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 372.863016] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 372.870280] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:07 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:07 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) write$binfmt_elf64(r0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x12c) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000400)="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") perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x80, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000540)={[0x7, 0x7fffffff, 0x20, 0xb58, 0x1, 0x1f, 0x23ec8a2b, 0x7ff, 0x8, 0x8, 0x8, 0x9c36, 0x26c4515e, 0x0, 0x2, 0x6], 0x0, 0x200000}) r2 = syz_open_dev$binder(&(0x7f0000000200)='/dev/binder#\x00', 0xffffffffffffffff, 0x802) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x1) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000080)={'nat\x00', 0xc, "b862f2eb2890f4a53b9edc18"}, &(0x7f00000000c0)=0x30) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000380)=0x18, 0x4) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000000500)=[@release], 0xffffff39}) 00:13:07 executing program 2 (fault-call:6 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 372.877536] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 [ 372.915923] binder: 18339:18340 Release 1 refcount change on invalid ref 0 ret -22 00:13:07 executing program 3: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x4000, 0x0) fallocate(r0, 0x8, 0xffff, 0xa71) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, &(0x7f0000000000)) ioctl$VHOST_SET_VRING_NUM(r1, 0x4008af20, &(0x7f0000000100)={0x0, 0x200}) 00:13:07 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x3000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 372.926713] binder: 18339:18343 Release 1 refcount change on invalid ref 0 ret -22 00:13:07 executing program 1: r0 = gettid() clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) getpriority(0x1, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4140, 0x80) ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000000080)={0xfffffffffffff1cc, 0x0, 0x10000, 0x6d}) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000000c0)={0xa13, r3, 0x0, 0x2}) [ 373.009254] FAULT_INJECTION: forcing a failure. [ 373.009254] name failslab, interval 1, probability 0, space 0, times 0 [ 373.025583] CPU: 1 PID: 18348 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 373.034096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.043451] Call Trace: [ 373.046053] dump_stack+0x1d3/0x2c4 [ 373.049688] ? dump_stack_print_info.cold.2+0x52/0x52 [ 373.054876] ? __kernel_text_address+0xd/0x40 [ 373.059369] ? unwind_get_return_address+0x61/0xa0 [ 373.064319] should_fail.cold.4+0xa/0x17 [ 373.068379] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 373.071739] audit: type=1800 audit(1538698387.810:59): pid=18361 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor1" name="file0" dev="sda1" ino=16560 res=0 [ 373.073475] ? save_stack+0xa9/0xd0 [ 373.073491] ? kasan_kmalloc+0xc7/0xe0 [ 373.073503] ? kasan_slab_alloc+0x12/0x20 [ 373.073518] ? kmem_cache_alloc+0x12e/0x730 00:13:07 executing program 1: open$dir(&(0x7f0000000100)='./file0\x00', 0x100, 0x126) r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x0, 0x24200) ioctl$TCGETS(r0, 0x5401, &(0x7f0000000180)) sendto$unix(r0, &(0x7f0000000140)="7dd8f3562f03a3ad1fc8998e840eb4", 0xf, 0x10, 0x0, 0x0) ioctl$ASHMEM_GET_PROT_MASK(0xffffffffffffffff, 0x40087705, &(0x7f0000000040)) [ 373.108278] audit: type=1800 audit(1538698387.810:60): pid=18361 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor1" name="file0" dev="sda1" ino=16560 res=0 [ 373.109069] ? mmu_topup_memory_caches+0xf7/0x390 [ 373.109082] ? kvm_mmu_load+0x21/0xfa0 [ 373.109097] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 373.109110] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 373.109130] ? do_vfs_ioctl+0x1de/0x1720 [ 373.133652] ? ksys_ioctl+0xa9/0xd0 [ 373.133662] ? __x64_sys_ioctl+0x73/0xb0 00:13:07 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, 0x3, 0x0, "900b21888b6cc77b101984261cafca360e11b6c7a13a0830cd29f419884847da90828288bebec9a65da1ba9bb02d8c9871511b6bee7194cfae74d7d4b41a5ee5", "627783b5afe9993d902ce10af431125ebedc76b0659a9cd7b79108b9097ed60e22e9cf55034bdf1fb1f0a15a01f32f2598064591156404681de46104820d931c", "8c5c4741e6ea115c84fc7f3b969deded47d3d964d140481071e204315cce1f9f"}) [ 373.133682] ? do_syscall_64+0x1b9/0x820 [ 373.142044] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 373.142063] ? percpu_ref_put_many+0x11c/0x260 [ 373.142084] ? lock_downgrade+0x900/0x900 [ 373.176920] ? lock_release+0x970/0x970 [ 373.180908] ? fs_reclaim_acquire+0x20/0x20 [ 373.185250] ? lock_downgrade+0x900/0x900 [ 373.189415] ? check_same_owner+0x330/0x330 [ 373.193747] ? percpu_ref_put_many+0x13e/0x260 [ 373.198338] ? trace_hardirqs_on+0xbd/0x310 [ 373.202675] __should_failslab+0x124/0x180 [ 373.206918] should_failslab+0x9/0x14 [ 373.210722] kmem_cache_alloc+0x2be/0x730 [ 373.214875] ? vmx_flush_tlb_gva+0x380/0x380 [ 373.219278] ? ima_get_action+0x7e/0xa0 [ 373.223260] ? mmu_topup_memory_caches+0xf7/0x390 [ 373.228092] mmu_topup_memory_caches+0xf7/0x390 [ 373.232751] kvm_mmu_load+0x21/0xfa0 [ 373.236476] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 373.241765] vcpu_enter_guest+0x3e6d/0x62f0 [ 373.246075] ? emulator_read_emulated+0x50/0x50 [ 373.250792] ? vmx_vcpu_load+0xb06/0x1030 [ 373.254947] ? mark_held_locks+0x130/0x130 00:13:08 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x24081, 0x0) getresuid(&(0x7f00000000c0)=0x0, &(0x7f0000000100), &(0x7f0000000140)) r3 = gettid() r4 = getuid() mknodat(r1, &(0x7f0000000580)='./file0\x00', 0x80, 0x7) sendmsg$nl_generic(r1, &(0x7f0000000540)={&(0x7f0000000040), 0xc, &(0x7f0000000500)={&(0x7f0000000280)={0x218, 0x20, 0x10, 0x70bd2d, 0x25dfdbfd, {0xa}, [@generic="85f1bf42427add94b36ff8e5c27ba94427fba4e1e0193823432e001a2e85977527fbc1a0142fd5fa9fb11c48f115d2c8b1463ebfe7e5149d9432dc8128d85f184251c5f6cb563f84899687ed881e93f5f4253ebacca30e4f5788922e1b45deb5dad1b90189eec2e508da4312ebc4fe051543a131ee85494350656f210ea9e2419d1308746ed774fdbc9388e16aeba01568cb3a29ed786c9e01f75827d7b2bbc9d8d6f805508a3a", @nested={0x34, 0x19, [@typed={0x8, 0x55, @ipv4=@multicast1}, @typed={0x8, 0x31, @uid=r2}, @typed={0x8, 0x6d, @str='\x00'}, @generic="0a4904f146bd7f480e8c10e4860cf6", @typed={0x8, 0x61, @pid=r3}]}, @generic="29010c56f9e72a200fb090130072bff013611c86bb0014285b50e9aca7c5142f37e6a1bb3a9d92f4c394a7dd8f82141c73481cd2a92961cb00d5dff2b631a9977cfae8e9c361241c2457b9819cc843a4f1f0becedddecf8cdd73cdd4d9e0dd1a631a284e23f1d44fa14551bf635fb8fa1e34ee1b51bd7d50a92706920bbe", @typed={0x8, 0x47, @uid=r4}, @typed={0x94, 0x50, @binary="8d6f31a5411695c2b93d8fc595d34c05626adb338c1820ac621923c44067ef692b6aed64fb21819a8985eb4e174f7720af6600021fcd9e3c5c428ec324bd610bbcfd80c40513881f32a019ae99e36542b4a4e11b25d0c1dcba33c2c7e7e45b0d9eed80a3c585903a05940362c73001f0c62afa35cdf558094f46888c7e410f0f35c1f5fd7eb24d3f6527c0922f10fc"}, @typed={0xc, 0x50, @u64=0x4}]}, 0x218}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) r5 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r5, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r5, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:08 executing program 1: r0 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'team_slave_0\x00', &(0x7f0000000080)=@ethtool_cmd={0x1f}}) [ 373.259286] ? vmx_write_tsc_offset+0x670/0x670 [ 373.263951] ? lock_downgrade+0x900/0x900 [ 373.268089] ? lock_acquire+0x1ed/0x520 [ 373.272052] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 373.277060] ? preempt_count_add+0x7d/0x160 [ 373.281373] ? lock_release+0x970/0x970 [ 373.285341] ? kvm_gen_update_masterclock+0x350/0x350 [ 373.290650] ? kvm_arch_dev_ioctl+0x630/0x630 [ 373.295152] ? preempt_notifier_dec+0x20/0x20 [ 373.299753] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 373.304621] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 373.309648] kvm_vcpu_ioctl+0x5c8/0x1150 [ 373.313721] ? kvm_vcpu_block+0x1020/0x1020 [ 373.318054] ? __fget+0x4aa/0x740 [ 373.318075] ? workqueue_online_cpu+0x80/0xad0 [ 373.318091] ? __f_unlock_pos+0x19/0x20 [ 373.326130] ? __fget+0x4d1/0x740 [ 373.326147] ? ksys_dup3+0x680/0x680 [ 373.326170] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 373.342183] ? kvm_vcpu_block+0x1020/0x1020 [ 373.346512] do_vfs_ioctl+0x1de/0x1720 [ 373.350425] ? fsnotify_first_mark+0x350/0x350 [ 373.355012] ? __fsnotify_parent+0xcc/0x420 00:13:08 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='rdma.current\x00', 0x0, 0x0) read$eventfd(r0, &(0x7f0000000140), 0x8) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1d, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000080), &(0x7f00000000c0)=0x14) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[]}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000184000)=ANY=[@ANYBLOB="020100021000000000000600000000000800120000ffff00000000000000000006000000000000000000800000000000e00000010000000000000000000035000000000000000000000000ff00000000030006000000000002000004000000bb000000ee0000000003000500000000000200423b000000000000004000000000"], 0x80}}, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmmsg(r2, &(0x7f0000000180), 0x400000000000117, 0x0) [ 373.359340] ? ioctl_preallocate+0x300/0x300 [ 373.363772] ? __fget_light+0x2e9/0x430 [ 373.367774] ? fget_raw+0x20/0x20 [ 373.371235] ? __sb_end_write+0xd9/0x110 [ 373.375306] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 373.375320] ? fput+0x130/0x1a0 [ 373.375331] ? ksys_write+0x1ae/0x260 [ 373.375369] ? security_file_ioctl+0x94/0xc0 [ 373.387951] ksys_ioctl+0xa9/0xd0 [ 373.387963] __x64_sys_ioctl+0x73/0xb0 [ 373.387982] do_syscall_64+0x1b9/0x820 [ 373.403585] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 373.408954] ? syscall_return_slowpath+0x5e0/0x5e0 [ 373.413905] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 373.418758] ? trace_hardirqs_on_caller+0x310/0x310 [ 373.423802] ? prepare_exit_to_usermode+0x291/0x3b0 [ 373.428851] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 373.433722] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 373.438906] RIP: 0033:0x457579 [ 373.442091] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00:13:08 executing program 3: inotify_init() perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) fanotify_init(0x8, 0x80400) bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58) r1 = dup(r0) r2 = accept4$alg(r1, 0x0, 0x0, 0x0) io_setup(0x2, &(0x7f0000cadffc)=0x0) io_submit(r3, 0x1, &(0x7f000049bfe8)=[&(0x7f00004dbfc0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000000)='\a', 0x1}]) bind$netlink(r1, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfc}, 0xc) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r1, 0x114, 0xa, &(0x7f0000000100)={0x2, 'so'}, 0x3) [ 373.461071] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 373.468851] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 373.476104] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 373.483354] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 373.490601] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 373.497865] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:08 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f00000000c0)=[@in={0x2, 0x4e24}, @in6={0xa, 0x4e23, 0x8, @mcast1, 0x8}, @in6={0xa, 0x4e21, 0x100, @ipv4={[], [], @loopback}, 0x5}, @in6={0xa, 0x4e21, 0x6, @loopback, 0x100000001}], 0x64) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:08 executing program 2 (fault-call:6 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:08 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x300, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:08 executing program 1: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdir(&(0x7f0000000180)='./file0/file0\x00', 0x0) close(r0) timerfd_create(0x0, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/null\x00', 0x280000, 0x0) bind$bt_sco(r2, &(0x7f0000000400)={0x1f, {0x1, 0x7f, 0x80000001, 0xffffffffffffffff, 0xc7, 0x88}}, 0x8) open(&(0x7f0000000100)='./file0\x00', 0x10880, 0x0) mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6472636e050000000000000000000000ee130000000000", @ANYRESHEX=r0, @ANYBLOB="2c7766a46e6f55d7c96c2d98c53d", @ANYRESHEX=r1, @ANYBLOB='~\x00']) 00:13:08 executing program 3: ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x3fd) sendmsg$key(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[]}}, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000007f, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x831b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000), 0x0) socket$inet6(0xa, 0x5, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0xe9, 0xfa00, {0x0, &(0x7f0000000440)}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f0000000700)={0x16, 0xfe21, 0xfa00, {&(0x7f0000000340), 0x2, 0xffffffffffffffff, 0x0, 0x0, @ib={0x1b, 0x3f, 0x0, {"6d3a03a22ad13804238c25806cdd75ac"}}}}, 0xa0) fchmodat(0xffffffffffffffff, &(0x7f0000000b40)='./file0\x00', 0x0) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000540), &(0x7f0000000580)=0x8) socketpair(0x10, 0x3, 0x4, &(0x7f0000000200)) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/pfkey\x00', 0x40, 0x0) ioctl$NBD_DO_IT(r1, 0xab03) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000008c0)="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") write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f0000000280)={0x7, 0x4, 0xfa00, {0xffffffffffffffff, 0x5b9176a7}}, 0x380) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1f, 0x40, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={0xffffffffffffff9c, 0x50, &(0x7f00000003c0)}, 0x10) ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000002380)="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") ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000600)={0xfffffffffffff800, 0x73e, 0xff}) chdir(&(0x7f00000002c0)='./file0/file0/file0\x00') clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_smc(0x2b, 0x1, 0x0) listen(r4, 0x0) shutdown(r4, 0x2) ioctl$sock_SIOCOUTQNSD(r3, 0x541b, &(0x7f00000004c0)) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000240)={0x0, 0x1, 0xffffffffffffff7f, @local}, 0x10) mount(&(0x7f0000000240)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='nfs\x00', 0x0, &(0x7f0000000000)) getpid() 00:13:08 executing program 1: r0 = add_key$user(&(0x7f0000000180)='user\x00', &(0x7f00000002c0)={'syz'}, &(0x7f0000000000)="2206297b6895b66147b3c7218a9169a85ea0bdc9e1587a57d422b5ae5c135342e33089754c8107c3cd3923dd4a71c2ff0f6e7b6b4816122d2550689eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000000000000000b4ec24c53d3d661ff5ff70e4880617bac218cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe273f4772539844a12876dc0217de9b822db49bc32336eb852064e0791b63d541f79", 0xc0, 0xfffffffffffffffe) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r0, r0}, &(0x7f0000000300)=""/240, 0xf0, 0x0) socketpair$unix(0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/autofs\x00', 0x100, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000400)={0x0, 0x1, 0x0, &(0x7f0000000280)=0xffff}) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r3, 0x80045300, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x1724, 0x200400) keyctl$set_timeout(0xf, r0, 0x0) 00:13:08 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xa, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 373.784155] FAULT_INJECTION: forcing a failure. [ 373.784155] name failslab, interval 1, probability 0, space 0, times 0 [ 373.822688] CPU: 1 PID: 18392 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 373.831207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.840661] Call Trace: [ 373.840683] dump_stack+0x1d3/0x2c4 [ 373.840702] ? dump_stack_print_info.cold.2+0x52/0x52 [ 373.846894] ? __kernel_text_address+0xd/0x40 [ 373.856546] ? unwind_get_return_address+0x61/0xa0 [ 373.861473] should_fail.cold.4+0xa/0x17 [ 373.865522] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 373.870623] ? save_stack+0xa9/0xd0 [ 373.874258] ? kasan_kmalloc+0xc7/0xe0 [ 373.878125] ? kasan_slab_alloc+0x12/0x20 [ 373.882260] ? kmem_cache_alloc+0x12e/0x730 [ 373.886571] ? mmu_topup_memory_caches+0xf7/0x390 [ 373.891481] ? kvm_mmu_load+0x21/0xfa0 [ 373.895354] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 373.899828] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 373.904908] ? do_vfs_ioctl+0x1de/0x1720 [ 373.908948] ? ksys_ioctl+0xa9/0xd0 [ 373.912579] ? __x64_sys_ioctl+0x73/0xb0 [ 373.916624] ? do_syscall_64+0x1b9/0x820 [ 373.920673] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 373.926022] ? percpu_ref_put_many+0x11c/0x260 [ 373.930590] ? lock_downgrade+0x900/0x900 [ 373.934725] ? lock_release+0x970/0x970 [ 373.938692] ? fs_reclaim_acquire+0x20/0x20 [ 373.942998] ? lock_downgrade+0x900/0x900 [ 373.947138] ? check_same_owner+0x330/0x330 [ 373.951443] ? percpu_ref_put_many+0x13e/0x260 [ 373.956010] ? trace_hardirqs_on+0xbd/0x310 [ 373.960422] __should_failslab+0x124/0x180 [ 373.964726] should_failslab+0x9/0x14 [ 373.968511] kmem_cache_alloc+0x2be/0x730 [ 373.972640] ? vmx_flush_tlb_gva+0x380/0x380 [ 373.977036] ? ima_get_action+0x7e/0xa0 [ 373.980995] ? mmu_topup_memory_caches+0xf7/0x390 [ 373.985825] mmu_topup_memory_caches+0xf7/0x390 [ 373.990567] kvm_mmu_load+0x21/0xfa0 [ 373.994285] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 373.999548] vcpu_enter_guest+0x3e6d/0x62f0 [ 374.003884] ? emulator_read_emulated+0x50/0x50 [ 374.008539] ? vmx_vcpu_load+0xb06/0x1030 [ 374.012674] ? mark_held_locks+0x130/0x130 [ 374.016901] ? vmx_write_tsc_offset+0x670/0x670 [ 374.021568] ? lock_downgrade+0x900/0x900 [ 374.025708] ? lock_acquire+0x1ed/0x520 [ 374.029695] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 374.034784] ? preempt_count_add+0x7d/0x160 [ 374.039100] ? lock_release+0x970/0x970 [ 374.043071] ? kvm_gen_update_masterclock+0x350/0x350 [ 374.048251] ? kvm_arch_dev_ioctl+0x630/0x630 [ 374.052757] ? preempt_notifier_dec+0x20/0x20 [ 374.057243] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 374.062101] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 374.067109] kvm_vcpu_ioctl+0x5c8/0x1150 [ 374.071156] ? kvm_vcpu_block+0x1020/0x1020 [ 374.075468] ? __fget+0x4aa/0x740 [ 374.078928] ? workqueue_online_cpu+0x80/0xad0 [ 374.083495] ? __f_unlock_pos+0x19/0x20 [ 374.087458] ? __fget+0x4d1/0x740 [ 374.090896] ? ksys_dup3+0x680/0x680 [ 374.094605] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 374.099524] ? kvm_vcpu_block+0x1020/0x1020 [ 374.103914] do_vfs_ioctl+0x1de/0x1720 [ 374.107795] ? fsnotify_first_mark+0x350/0x350 [ 374.112360] ? __fsnotify_parent+0xcc/0x420 [ 374.116696] ? ioctl_preallocate+0x300/0x300 [ 374.121199] ? __fget_light+0x2e9/0x430 [ 374.125180] ? fget_raw+0x20/0x20 [ 374.128625] ? __sb_end_write+0xd9/0x110 [ 374.132672] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 374.138190] ? fput+0x130/0x1a0 [ 374.141460] ? ksys_write+0x1ae/0x260 [ 374.145254] ? security_file_ioctl+0x94/0xc0 [ 374.149668] ksys_ioctl+0xa9/0xd0 [ 374.153107] __x64_sys_ioctl+0x73/0xb0 [ 374.156980] do_syscall_64+0x1b9/0x820 [ 374.160865] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 374.166307] ? syscall_return_slowpath+0x5e0/0x5e0 [ 374.171230] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 374.176067] ? trace_hardirqs_on_caller+0x310/0x310 [ 374.181069] ? prepare_exit_to_usermode+0x291/0x3b0 [ 374.186070] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 374.190972] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 374.196144] RIP: 0033:0x457579 [ 374.199330] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 374.218220] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 374.225913] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 00:13:09 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = memfd_create(&(0x7f0000000080)='lowlan0/[bdevvmnet1wlan1em0em1em0lokeyringvmnet0vboxnet0em1{[selinux-\x00', 0x1) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e20, 0x1, @mcast2, 0x7}}, 0xfffffffffffffffa, 0x8, 0x0, 0x4}, &(0x7f0000000000)=0x98) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f00000002c0)={r3, 0x5}, 0x8) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@getrule={0x14, 0x22, 0x401}, 0x14}}, 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000000380)={&(0x7f0000000480), 0xc, &(0x7f0000000180)={&(0x7f00000004c0)=@newpolicy={0xb8, 0x13, 0x1, 0x0, 0x0, {{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}, 0x8}, 0x0) 00:13:09 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) close(r0) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha1\x00'}, 0x58) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[@ANYRES16=r0, @ANYRES16, @ANYRES32=r1], 0xffc4) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 374.233183] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 374.240440] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 374.247692] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 374.254946] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:09 executing program 2 (fault-call:6 fault-nth:3): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:09 executing program 5: openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x10000, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x8040, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e24, @multicast1}, @in6={0xa, 0x4e21, 0x80, @mcast1, 0x3ff}], 0x2c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 374.307577] netlink: 4 bytes leftover after parsing attributes in process `syz-executor3'. 00:13:09 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x402) ioctl$KVM_PPC_GET_SMMU_INFO(r0, 0x8250aea6, &(0x7f0000000100)=""/181) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x400000) syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0xd78c, 0x400) ioctl$int_in(r0, 0x800000c0045002, &(0x7f00000000c0)) [ 374.425370] FAULT_INJECTION: forcing a failure. [ 374.425370] name failslab, interval 1, probability 0, space 0, times 0 [ 374.448907] CPU: 1 PID: 18429 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 374.457420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.466767] Call Trace: [ 374.469365] dump_stack+0x1d3/0x2c4 [ 374.473022] ? dump_stack_print_info.cold.2+0x52/0x52 [ 374.478235] ? __kernel_text_address+0xd/0x40 [ 374.482742] ? unwind_get_return_address+0x61/0xa0 [ 374.487680] should_fail.cold.4+0xa/0x17 [ 374.491760] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 374.496884] ? save_stack+0xa9/0xd0 [ 374.500513] ? kasan_kmalloc+0xc7/0xe0 [ 374.504398] ? kasan_slab_alloc+0x12/0x20 [ 374.508546] ? kmem_cache_alloc+0x12e/0x730 [ 374.512869] ? mmu_topup_memory_caches+0xf7/0x390 [ 374.517720] ? kvm_mmu_load+0x21/0xfa0 [ 374.521615] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 374.526113] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 374.531220] ? do_vfs_ioctl+0x1de/0x1720 [ 374.535278] ? ksys_ioctl+0xa9/0xd0 [ 374.538905] ? __x64_sys_ioctl+0x73/0xb0 [ 374.542970] ? do_syscall_64+0x1b9/0x820 [ 374.547035] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 374.552400] ? percpu_ref_put_many+0x11c/0x260 [ 374.556994] ? lock_downgrade+0x900/0x900 [ 374.561142] ? lock_release+0x970/0x970 [ 374.565122] ? fs_reclaim_acquire+0x20/0x20 [ 374.569447] ? lock_downgrade+0x900/0x900 [ 374.573601] ? check_same_owner+0x330/0x330 [ 374.577923] ? percpu_ref_put_many+0x13e/0x260 [ 374.583042] ? trace_hardirqs_on+0xbd/0x310 [ 374.587376] __should_failslab+0x124/0x180 [ 374.591617] should_failslab+0x9/0x14 [ 374.595422] kmem_cache_alloc+0x2be/0x730 [ 374.599570] ? vmx_flush_tlb_gva+0x380/0x380 [ 374.603983] ? kvm_clock_read+0x18/0x30 [ 374.607963] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 374.612982] ? ktime_get_with_offset+0x310/0x460 [ 374.617739] ? mmu_topup_memory_caches+0xf7/0x390 [ 374.622584] mmu_topup_memory_caches+0xf7/0x390 [ 374.627255] kvm_mmu_load+0x21/0xfa0 [ 374.630968] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 374.636506] ? check_preemption_disabled+0x48/0x200 [ 374.641530] vcpu_enter_guest+0x3e6d/0x62f0 [ 374.645855] ? emulator_read_emulated+0x50/0x50 [ 374.650547] ? vmx_vcpu_load+0xb06/0x1030 [ 374.654705] ? mark_held_locks+0x130/0x130 [ 374.658960] ? vmx_write_tsc_offset+0x670/0x670 [ 374.663634] ? lock_downgrade+0x900/0x900 [ 374.663661] ? lock_acquire+0x1ed/0x520 00:13:09 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) getrusage(0x1, &(0x7f00000000c0)) 00:13:09 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x2, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:09 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x10, 0x3, 0xc) setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000040)={{0x32, @multicast1, 0x4e20, 0x2, 'rr\x00', 0x5, 0x4, 0x3e}, {@remote, 0x4e20, 0x2000, 0xfffffffffffff801, 0x8001, 0x7f}}, 0x44) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="2400000003061f001cfffd946fa2830020200a000900010001e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0) r1 = getgid() setgid(r1) [ 374.663677] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 374.671767] ? preempt_count_add+0x7d/0x160 [ 374.671781] ? lock_release+0x970/0x970 [ 374.671795] ? kvm_gen_update_masterclock+0x350/0x350 [ 374.671813] ? kvm_arch_dev_ioctl+0x630/0x630 [ 374.694741] ? preempt_notifier_dec+0x20/0x20 [ 374.699253] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 374.704107] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 374.709141] kvm_vcpu_ioctl+0x5c8/0x1150 [ 374.713226] ? kvm_vcpu_block+0x1020/0x1020 [ 374.717562] ? __fget+0x4aa/0x740 [ 374.721033] ? workqueue_online_cpu+0x80/0xad0 [ 374.725626] ? __f_unlock_pos+0x19/0x20 [ 374.729613] ? __fget+0x4d1/0x740 [ 374.733078] ? ksys_dup3+0x680/0x680 [ 374.736807] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 374.741770] ? kvm_vcpu_block+0x1020/0x1020 [ 374.746103] do_vfs_ioctl+0x1de/0x1720 [ 374.749981] ? fsnotify_first_mark+0x350/0x350 [ 374.754554] ? __fsnotify_parent+0xcc/0x420 [ 374.758870] ? ioctl_preallocate+0x300/0x300 [ 374.763266] ? __fget_light+0x2e9/0x430 [ 374.767238] ? fget_raw+0x20/0x20 [ 374.770683] ? __sb_end_write+0xd9/0x110 [ 374.774737] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 374.780274] ? fput+0x130/0x1a0 [ 374.783541] ? ksys_write+0x1ae/0x260 [ 374.787397] ? security_file_ioctl+0x94/0xc0 [ 374.791794] ksys_ioctl+0xa9/0xd0 [ 374.795237] __x64_sys_ioctl+0x73/0xb0 [ 374.799118] do_syscall_64+0x1b9/0x820 [ 374.802997] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 374.808352] ? syscall_return_slowpath+0x5e0/0x5e0 [ 374.813283] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 374.818117] ? trace_hardirqs_on_caller+0x310/0x310 [ 374.823121] ? prepare_exit_to_usermode+0x291/0x3b0 [ 374.828128] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 374.832969] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 374.838141] RIP: 0033:0x457579 [ 374.841336] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 374.860322] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 374.868101] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 374.875465] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 374.882719] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 374.889984] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 374.897324] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 [ 374.909833] netlink: 'syz-executor1': attribute type 1 has an invalid length. [ 374.917359] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. 00:13:09 executing program 2 (fault-call:6 fault-nth:4): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:09 executing program 1: prctl$intptr(0x1c, 0xe1) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x4000, 0x0) ioctl$DRM_IOCTL_SET_MASTER(r0, 0x641e) prctl$intptr(0x8, 0x0) [ 374.935846] netlink: 'syz-executor1': attribute type 1 has an invalid length. [ 374.943347] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. [ 374.982223] FAULT_INJECTION: forcing a failure. [ 374.982223] name failslab, interval 1, probability 0, space 0, times 0 [ 374.994506] CPU: 1 PID: 18453 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 375.003012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.012367] Call Trace: [ 375.014977] dump_stack+0x1d3/0x2c4 [ 375.018622] ? dump_stack_print_info.cold.2+0x52/0x52 [ 375.023830] ? __kernel_text_address+0xd/0x40 00:13:09 executing program 1: r0 = socket$inet6(0xa, 0x80003, 0xff) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x4, @loopback, 0x3}, 0x1c) io_setup(0x3, &(0x7f0000000280)=0x0) shutdown(r0, 0xfffffffffffffffd) io_submit(r1, 0x3af, &(0x7f0000356ff0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000040), 0x2e}]) setxattr$security_smack_transmute(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000100)='TRUE', 0x4, 0x3) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000140)={0x4, 0x200, 0xacb, 0x6, 0xa2c, 0x3, 0x0, 0x1, 0x6b9, 0x2, 0x9}, 0xb) [ 375.028339] ? unwind_get_return_address+0x61/0xa0 [ 375.033303] should_fail.cold.4+0xa/0x17 [ 375.037375] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 375.042484] ? save_stack+0xa9/0xd0 [ 375.046126] ? kasan_kmalloc+0xc7/0xe0 [ 375.050027] ? kasan_slab_alloc+0x12/0x20 [ 375.054192] ? kmem_cache_alloc+0x12e/0x730 [ 375.058515] ? mmu_topup_memory_caches+0xf7/0x390 [ 375.063356] ? kvm_mmu_load+0x21/0xfa0 [ 375.067256] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 375.071789] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 375.076815] ? do_vfs_ioctl+0x1de/0x1720 [ 375.080876] ? ksys_ioctl+0xa9/0xd0 [ 375.084483] ? __x64_sys_ioctl+0x73/0xb0 [ 375.088538] ? do_syscall_64+0x1b9/0x820 [ 375.092599] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 375.097985] ? percpu_ref_put_many+0x11c/0x260 [ 375.102554] ? lock_downgrade+0x900/0x900 [ 375.106690] ? lock_release+0x970/0x970 [ 375.110665] ? fs_reclaim_acquire+0x20/0x20 [ 375.114975] ? lock_downgrade+0x900/0x900 [ 375.119113] ? check_same_owner+0x330/0x330 [ 375.123441] ? percpu_ref_put_many+0x13e/0x260 [ 375.128010] ? trace_hardirqs_on+0xbd/0x310 [ 375.132342] __should_failslab+0x124/0x180 [ 375.136573] should_failslab+0x9/0x14 [ 375.140361] kmem_cache_alloc+0x2be/0x730 [ 375.144502] ? vmx_flush_tlb_gva+0x380/0x380 [ 375.148903] ? ima_get_action+0x7e/0xa0 [ 375.152859] ? mmu_topup_memory_caches+0xf7/0x390 [ 375.157685] mmu_topup_memory_caches+0xf7/0x390 [ 375.162341] kvm_mmu_load+0x21/0xfa0 [ 375.166045] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 375.171311] vcpu_enter_guest+0x3e6d/0x62f0 [ 375.175619] ? emulator_read_emulated+0x50/0x50 [ 375.180279] ? vmx_vcpu_load+0xb06/0x1030 [ 375.184412] ? mark_held_locks+0x130/0x130 [ 375.188629] ? vmx_write_tsc_offset+0x670/0x670 [ 375.193302] ? lock_downgrade+0x900/0x900 [ 375.197458] ? lock_acquire+0x1ed/0x520 [ 375.201419] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 375.206419] ? preempt_count_add+0x7d/0x160 [ 375.210724] ? lock_release+0x970/0x970 [ 375.214682] ? kvm_gen_update_masterclock+0x350/0x350 [ 375.219858] ? kvm_arch_dev_ioctl+0x630/0x630 [ 375.224336] ? preempt_notifier_dec+0x20/0x20 [ 375.228837] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 375.233670] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 375.238687] kvm_vcpu_ioctl+0x5c8/0x1150 [ 375.242739] ? kvm_vcpu_block+0x1020/0x1020 [ 375.247050] ? __fget+0x4aa/0x740 [ 375.250490] ? workqueue_online_cpu+0x80/0xad0 [ 375.255056] ? __f_unlock_pos+0x19/0x20 [ 375.259022] ? __fget+0x4d1/0x740 [ 375.262459] ? ksys_dup3+0x680/0x680 [ 375.266163] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 375.271079] ? kvm_vcpu_block+0x1020/0x1020 [ 375.275385] do_vfs_ioctl+0x1de/0x1720 [ 375.279258] ? fsnotify_first_mark+0x350/0x350 [ 375.283824] ? __fsnotify_parent+0xcc/0x420 [ 375.288145] ? ioctl_preallocate+0x300/0x300 [ 375.292538] ? __fget_light+0x2e9/0x430 [ 375.296520] ? fget_raw+0x20/0x20 [ 375.299959] ? __sb_end_write+0xd9/0x110 [ 375.304046] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 375.309580] ? fput+0x130/0x1a0 [ 375.312844] ? ksys_write+0x1ae/0x260 [ 375.316637] ? security_file_ioctl+0x94/0xc0 [ 375.321029] ksys_ioctl+0xa9/0xd0 [ 375.324478] __x64_sys_ioctl+0x73/0xb0 [ 375.328354] do_syscall_64+0x1b9/0x820 [ 375.332237] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 375.337593] ? syscall_return_slowpath+0x5e0/0x5e0 [ 375.342519] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 375.347364] ? trace_hardirqs_on_caller+0x310/0x310 [ 375.352364] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 375.357380] ? prepare_exit_to_usermode+0x291/0x3b0 [ 375.362382] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 375.367210] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 375.372390] RIP: 0033:0x457579 [ 375.375572] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 375.394571] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 375.402266] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 375.409521] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 375.416773] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 375.424026] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:10 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x11000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:10 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000080)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @local, 0x3f}, {0xa, 0x0, 0x0, @ipv4}, r1}}, 0x48) r2 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x80, 0x0) getsockopt$inet_udp_int(r2, 0x11, 0x67, &(0x7f00000001c0), &(0x7f00000002c0)=0x4) r3 = dup(r0) recvfrom$unix(r2, &(0x7f0000000300)=""/201, 0xc9, 0x0, &(0x7f0000000400)=@file={0x1, './file0\x00'}, 0x6e) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000002680)={0x0, @in6={{0xa, 0x4e20, 0x0, @remote, 0x4}}, 0xf1, 0x9}, &(0x7f0000002740)=0x90) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000002780)={r4, 0xffffffffffffff80}, &(0x7f00000027c0)=0x8) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f0000000480)={0x1000000000082, 0x80, 0x100000000000021, 0x0, 0x4}) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r3, 0x29, 0xd3, &(0x7f0000000100)={{0xa, 0x4e21, 0x4, @mcast2, 0x1}, {0xa, 0x4e21, 0x100000000, @mcast2, 0x7}, 0x9, [0x7fffffff, 0x5, 0xff, 0x1f, 0x6, 0xfffffffffffff9f7, 0x10001, 0x40]}, 0x5c) [ 375.431279] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:10 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = dup2(r0, r0) write$P9_RSTATFS(r1, &(0x7f0000000000)={0x43, 0x9, 0x1, {0x0, 0x0, 0x7, 0x0, 0x40, 0x100, 0x4, 0x101, 0x40000000000}}, 0x43) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r3 = getuid() fstat(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r3, r4, r5) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:10 executing program 2 (fault-call:6 fault-nth:5): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:10 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0) clone(0x1002102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r3 = getpid() sendmsg$nl_netfilter(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xb0, 0x8, 0x5, 0x2, 0x70bd29, 0x25dfdbfc, {0xc, 0x0, 0x6}, [@generic="1a044cd1225397f34d0f57a721db70bcc4c5baabf15292954c1fa70436f99762e4c7c24a51a64b235b985ec3f6138c", @generic="3b005207c7ab5a116965eddca248fd921dff", @generic="22357c297985fcc3b96f18001d27e6f840ef825d6f321408d3ad33f749e7e4d9056d0ef022f1e38f38a21d5dbd5f57bf4d05425936e2fedcb4a886e4f1b32a4524107f6ef16adea62dabecf7fefdaa789a30d24e2e", @typed={0x4, 0x48}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4}, 0x20000080) sched_setscheduler(r3, 0x5, &(0x7f0000000000)) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f00000000c0)={0x5ff8a049d522ce0c}, 0x30) setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f0000000400)={@sco={0x1f, {0x6, 0xfff, 0x8, 0x6, 0x0, 0xffffffffffff8000}}, {&(0x7f0000000340)=""/91, 0x5b}, &(0x7f00000003c0), 0x811b60327acac485}, 0xa0) getpid() mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000200)=ANY=[], &(0x7f0000001300)='./file0\x00', &(0x7f0000000100)='tmpfs\x00', 0x0, &(0x7f0000000300)='&') openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x80000, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/21, 0x15}], 0x1) gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) tkill(r3, 0xe) 00:13:10 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) connect$can_bcm(r0, &(0x7f0000000040)={0x1d, r1}, 0x10) io_setup(0x9, &(0x7f00000001c0)=0x0) io_submit(r2, 0x1, &(0x7f0000000240)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000080)="040000008cfc6cfde19ab3a251fd2cfd09684d9c7afae3b519d21a2ce3cbdfcb2665dd1203ed5f1023fa813c9a0e46000000004002000000", 0x38}]) r3 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$ARPT_SO_GET_ENTRIES(r3, 0x0, 0x61, &(0x7f0000000380)=ANY=[@ANYBLOB="66696c7465720000000000000000000000000000000000000000000000000000a90000007a454ea55b0ee00d3c4d07c9f1367060601cc55c572a2db0b3aa5e29cbc9f09bc99afd89468b62d4822d904a7063908905b0dbc755add6679174f7f33b3df2c40757923590ed14d6f4fe1211172dc45f1eb41f84779e33475fbf8662eb5367a1a8d8a497742546dd9132c2653513df18d84b23760048a202613ac03038b320098bb36d2e7e5eaf09c477d9ca35bca54c047c41fcdabaf24216077964a530e9ef6481acd0e2b773055afc67bd089116d9dafaa1"], &(0x7f00000000c0)=0xcd) 00:13:10 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) getpid() write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:10 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xdc050000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 375.591732] FAULT_INJECTION: forcing a failure. [ 375.591732] name failslab, interval 1, probability 0, space 0, times 0 [ 375.615880] CPU: 1 PID: 18478 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 375.621709] tmpfs: No value for mount option '&' [ 375.624407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.624414] Call Trace: [ 375.624438] dump_stack+0x1d3/0x2c4 [ 375.624457] ? dump_stack_print_info.cold.2+0x52/0x52 [ 375.624481] ? __kernel_text_address+0xd/0x40 [ 375.644879] ? unwind_get_return_address+0x61/0xa0 [ 375.644903] should_fail.cold.4+0xa/0x17 [ 375.650206] serio: Serial port pts0 [ 375.654569] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 375.654587] ? save_stack+0xa9/0xd0 [ 375.654606] ? kasan_kmalloc+0xc7/0xe0 [ 375.654624] ? kasan_slab_alloc+0x12/0x20 [ 375.663586] ? kmem_cache_alloc+0x12e/0x730 [ 375.663608] ? mmu_topup_memory_caches+0xf7/0x390 [ 375.663623] ? kvm_mmu_load+0x21/0xfa0 [ 375.672317] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 375.672330] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 375.672344] ? do_vfs_ioctl+0x1de/0x1720 [ 375.672354] ? ksys_ioctl+0xa9/0xd0 [ 375.672369] ? __x64_sys_ioctl+0x73/0xb0 [ 375.718137] ? do_syscall_64+0x1b9/0x820 [ 375.722188] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 375.727545] ? percpu_ref_put_many+0x11c/0x260 [ 375.732119] ? lock_downgrade+0x900/0x900 [ 375.736256] ? lock_release+0x970/0x970 [ 375.740224] ? fs_reclaim_acquire+0x20/0x20 [ 375.744534] ? lock_downgrade+0x900/0x900 [ 375.748674] ? check_same_owner+0x330/0x330 [ 375.752994] ? percpu_ref_put_many+0x13e/0x260 [ 375.757564] ? trace_hardirqs_on+0xbd/0x310 [ 375.761879] __should_failslab+0x124/0x180 [ 375.766107] should_failslab+0x9/0x14 [ 375.769895] kmem_cache_alloc+0x2be/0x730 [ 375.774029] ? vmx_flush_tlb_gva+0x380/0x380 [ 375.778426] ? ima_get_action+0x7e/0xa0 [ 375.782389] ? mmu_topup_memory_caches+0xf7/0x390 [ 375.787218] mmu_topup_memory_caches+0xf7/0x390 [ 375.791874] kvm_mmu_load+0x21/0xfa0 [ 375.795579] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 375.800848] vcpu_enter_guest+0x3e6d/0x62f0 [ 375.805175] ? emulator_read_emulated+0x50/0x50 [ 375.809852] ? vmx_vcpu_load+0xb06/0x1030 [ 375.813986] ? mark_held_locks+0x130/0x130 [ 375.818209] ? vmx_write_tsc_offset+0x670/0x670 [ 375.822866] ? lock_downgrade+0x900/0x900 [ 375.827008] ? lock_acquire+0x1ed/0x520 [ 375.830968] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 375.835968] ? preempt_count_add+0x7d/0x160 [ 375.840274] ? lock_release+0x970/0x970 [ 375.844237] ? kvm_gen_update_masterclock+0x350/0x350 [ 375.849427] ? kvm_arch_dev_ioctl+0x630/0x630 [ 375.853906] ? preempt_notifier_dec+0x20/0x20 [ 375.858395] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 375.863226] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 375.868236] kvm_vcpu_ioctl+0x5c8/0x1150 [ 375.872393] ? kvm_vcpu_block+0x1020/0x1020 [ 375.876708] ? __fget+0x4aa/0x740 [ 375.880154] ? workqueue_online_cpu+0x80/0xad0 [ 375.884746] ? __f_unlock_pos+0x19/0x20 [ 375.888709] ? __fget+0x4d1/0x740 [ 375.892160] ? ksys_dup3+0x680/0x680 [ 375.895866] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 375.900788] ? kvm_vcpu_block+0x1020/0x1020 [ 375.905096] do_vfs_ioctl+0x1de/0x1720 [ 375.909080] ? fsnotify_first_mark+0x350/0x350 [ 375.913651] ? __fsnotify_parent+0xcc/0x420 [ 375.918077] ? ioctl_preallocate+0x300/0x300 [ 375.922471] ? __fget_light+0x2e9/0x430 [ 375.926429] ? fget_raw+0x20/0x20 [ 375.929871] ? __sb_end_write+0xd9/0x110 [ 375.933920] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 375.939442] ? fput+0x130/0x1a0 [ 375.942709] ? ksys_write+0x1ae/0x260 [ 375.946502] ? security_file_ioctl+0x94/0xc0 [ 375.950899] ksys_ioctl+0xa9/0xd0 [ 375.954337] __x64_sys_ioctl+0x73/0xb0 [ 375.958211] do_syscall_64+0x1b9/0x820 [ 375.962091] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 375.967444] ? syscall_return_slowpath+0x5e0/0x5e0 [ 375.972359] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 375.977191] ? trace_hardirqs_on_caller+0x310/0x310 [ 375.982197] ? prepare_exit_to_usermode+0x291/0x3b0 [ 375.987214] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 375.992047] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 375.997238] RIP: 0033:0x457579 [ 376.000423] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 376.019322] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 376.027015] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 376.034271] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 00:13:10 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket(0x11, 0x4000000000080002, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x8000, 0x8000, 0x401, 0x0, 0x3ff}, &(0x7f0000000100)=0x14) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r2, 0x4}, &(0x7f00000001c0)=0x8) sysfs$1(0x1, &(0x7f0000000140)='/dev/snd/pcmC#D#c\x00') ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip6_vti0\x00', 0x0}) connect$pptp(r1, &(0x7f0000000040)={0x18, 0x2, {0x0, @rand_addr=0xcd}}, 0x1e) setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000003dc0)=0x4, 0x4) bind$packet(r1, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) ioctl$RTC_VL_CLR(0xffffffffffffffff, 0x7014) ioctl$RNDZAPENTCNT(r0, 0x5204, &(0x7f00000000c0)=0x7) sendmmsg$inet_sctp(r1, &(0x7f0000871fc8)=[{&(0x7f000086c000)=@in6={0xa, 0x0, 0x2}, 0x1c, &(0x7f0000d1e000), 0x0, &(0x7f0000dda000)}], 0x492492492492510, 0x0) ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002) write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x21, 0x1}, 0x7) [ 376.041700] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 376.048957] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 376.056214] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:10 executing program 2 (fault-call:6 fault-nth:6): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:10 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000006580)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100), 0x28) sendto$inet6(r0, &(0x7f00000002c0)="b7", 0x1, 0x8000, &(0x7f0000000340)={0xa, 0x0, 0x0, @mcast1}, 0x1c) r1 = fcntl$dupfd(r0, 0x0, r0) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f00000003c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000280), 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}}}, 0x38) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, [0x40, 0xfd7, 0xfffffffffffffff8, 0x800]}) 00:13:10 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xfe800000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:11 executing program 1: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x80}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000000c0)={r2, 0x3}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000140)={0xa6b4, 0x208, 0x49, 0x0, r2}, 0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000180)={r2, @in6={{0xa, 0x4e21, 0x7, @dev={0xfe, 0x80, [], 0x1d}, 0x1ff}}, 0x6, 0xd99a}, 0x90) timer_create(0x5, &(0x7f0000000400)={0x0, 0x5, 0x6, @thr={&(0x7f0000000240)="23e685fbb914ebfda5a81f94e3a430ecf395693368561070b66bf8c8551574cea7958f39a04955ee650631e7ffba51011e8b3f6a9dae764775e3b6c66e17f1bc1ab0621ef2d10a9f1ba0e75f47e71dcda34072e8846342a6ea30408a09b34be2e8f055c9168d9ca170e6fba50f1c3cbd12d27eb4fdcc0803ca037c1bbe74cc3760754524da50c265a1", &(0x7f0000000300)="11381f73de895130f70070e125faecfcfaf8bc0bfd96043ed96a4d40271ac71778fa453730bd61ffeac56e4c16555e196836827c9a4ff28ea91f90b608828f7cf2682a9f260739d7ff6cc7d2c7553adeb94942e630597edcb2d582bf2421d5196cbd69f015234dd4c396b32ee53f6fee4b1d2e8d23a1e91393cd2ea6641f16fe175f4e2d5079945b634a88e2f0e0e51259ebfbc22284827d095c552281ce99bc2873c993521f34c380ff09db5050599888a8938714fea418b6c025779018e518012e48296f3b"}}, &(0x7f0000000440)=0x0) timer_delete(r3) write$9p(r1, &(0x7f0000000480), 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000004c0), &(0x7f0000000500)=0xb) getsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000540), &(0x7f0000000580)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000005c0)={r2, @in={{0x2, 0x4e20, @local}}, 0x8}, 0x90) socketpair$inet(0x2, 0x3, 0x1000, &(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGPGRP(r5, 0x8904, &(0x7f00000006c0)) write(r0, &(0x7f0000000700)="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", 0x1000) getsockopt$inet_sctp_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000001700), &(0x7f0000001740)=0xb) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x1010, r4, 0x0) r6 = syz_genetlink_get_family_id$fou(&(0x7f00000017c0)='fou\x00') sendmsg$FOU_CMD_ADD(r1, &(0x7f00000018c0)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001880)={&(0x7f0000001800)={0x50, r6, 0x8, 0x70bd26, 0x25dfdbfd, {}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_TYPE={0x8}, @FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f0000001900)=0x2) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x21a6) getsockopt$inet_tcp_buf(r4, 0x6, 0x3f, &(0x7f0000001940)=""/176, &(0x7f0000001a00)=0xb0) mmap$binder(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/fuse\x00', 0x2, 0x0) r7 = creat(&(0x7f0000001a80)='./file0\x00', 0xe4) r8 = geteuid() setuid(r8) ioctl$EVIOCSKEYCODE(r1, 0x40084504, &(0x7f0000001ac0)=[0x8000, 0x995]) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000001b00)={{{@in6=@mcast2, @in=@multicast2}}, {{@in6=@dev}, 0x0, @in6=@dev}}, &(0x7f0000001c00)=0xe8) ioctl$DRM_IOCTL_MARK_BUFS(r7, 0x40206417, &(0x7f0000001c40)={0x7, 0x1ff, 0x7fffffff, 0x400, 0x5, 0x4}) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000001c80), &(0x7f0000001cc0)=0x4) [ 376.206228] FAULT_INJECTION: forcing a failure. [ 376.206228] name failslab, interval 1, probability 0, space 0, times 0 [ 376.249246] CPU: 0 PID: 18505 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 376.257784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.267161] Call Trace: [ 376.269763] dump_stack+0x1d3/0x2c4 [ 376.273406] ? dump_stack_print_info.cold.2+0x52/0x52 [ 376.278611] ? __kernel_text_address+0xd/0x40 [ 376.283120] ? unwind_get_return_address+0x61/0xa0 [ 376.288074] should_fail.cold.4+0xa/0x17 [ 376.292149] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 376.297264] ? save_stack+0xa9/0xd0 [ 376.300897] ? kasan_kmalloc+0xc7/0xe0 [ 376.304786] ? kasan_slab_alloc+0x12/0x20 [ 376.308932] ? kmem_cache_alloc+0x12e/0x730 [ 376.313260] ? mmu_topup_memory_caches+0xf7/0x390 [ 376.318105] ? kvm_mmu_load+0x21/0xfa0 [ 376.321995] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 376.326499] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 376.331521] ? do_vfs_ioctl+0x1de/0x1720 [ 376.335582] ? ksys_ioctl+0xa9/0xd0 [ 376.339212] ? __x64_sys_ioctl+0x73/0xb0 [ 376.343281] ? do_syscall_64+0x1b9/0x820 [ 376.347344] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 376.352822] ? percpu_ref_put_many+0x11c/0x260 [ 376.357411] ? lock_downgrade+0x900/0x900 [ 376.361567] ? lock_release+0x970/0x970 [ 376.365570] ? fs_reclaim_acquire+0x20/0x20 [ 376.369893] ? lock_downgrade+0x900/0x900 [ 376.374138] ? check_same_owner+0x330/0x330 [ 376.378460] ? percpu_ref_put_many+0x13e/0x260 [ 376.383052] ? trace_hardirqs_on+0xbd/0x310 [ 376.387383] __should_failslab+0x124/0x180 [ 376.391635] should_failslab+0x9/0x14 [ 376.395437] kmem_cache_alloc+0x2be/0x730 [ 376.399593] ? vmx_flush_tlb_gva+0x380/0x380 [ 376.404009] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 376.409565] ? kvm_arch_vcpu_load+0x61e/0x970 [ 376.414579] ? mmu_topup_memory_caches+0xf7/0x390 [ 376.419432] mmu_topup_memory_caches+0xf7/0x390 [ 376.424111] kvm_mmu_load+0x21/0xfa0 [ 376.427830] ? kvm_sched_in+0x82/0xa0 [ 376.431639] vcpu_enter_guest+0x3e6d/0x62f0 [ 376.435999] ? preempt_notifier_register+0x200/0x200 [ 376.441120] ? __switch_to_asm+0x34/0x70 [ 376.445187] ? __switch_to_asm+0x34/0x70 [ 376.449258] ? emulator_read_emulated+0x50/0x50 [ 376.453928] ? __switch_to_asm+0x34/0x70 [ 376.457985] ? __switch_to_asm+0x34/0x70 [ 376.462047] ? __switch_to_asm+0x40/0x70 [ 376.466105] ? __schedule+0x874/0x1ed0 [ 376.469997] ? mark_held_locks+0x130/0x130 [ 376.474259] ? __sched_text_start+0x8/0x8 [ 376.478420] ? lock_downgrade+0x900/0x900 [ 376.482589] ? lock_acquire+0x1ed/0x520 [ 376.486567] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 376.491582] ? preempt_count_add+0x7d/0x160 [ 376.495905] ? lock_release+0x970/0x970 [ 376.499875] ? kvm_gen_update_masterclock+0x350/0x350 [ 376.505057] ? preempt_schedule_common+0x1f/0xd0 [ 376.509829] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 376.514673] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 376.519688] kvm_vcpu_ioctl+0x5c8/0x1150 [ 376.523736] ? kvm_vcpu_block+0x1020/0x1020 [ 376.528057] ? __fget+0x4aa/0x740 [ 376.531523] ? workqueue_online_cpu+0x80/0xad0 [ 376.536112] ? __f_unlock_pos+0x19/0x20 [ 376.540087] ? __fget+0x4d1/0x740 [ 376.543535] ? ksys_dup3+0x680/0x680 [ 376.547242] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 376.552275] ? kvm_vcpu_block+0x1020/0x1020 [ 376.556594] do_vfs_ioctl+0x1de/0x1720 [ 376.560475] ? fsnotify_first_mark+0x350/0x350 [ 376.565046] ? __fsnotify_parent+0xcc/0x420 [ 376.569355] ? ioctl_preallocate+0x300/0x300 [ 376.573751] ? __fget_light+0x2e9/0x430 [ 376.577726] ? fget_raw+0x20/0x20 [ 376.581526] ? __sb_end_write+0xd9/0x110 [ 376.585577] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 376.591101] ? fput+0x130/0x1a0 [ 376.594365] ? ksys_write+0x1ae/0x260 [ 376.598157] ? security_file_ioctl+0x94/0xc0 [ 376.602576] ksys_ioctl+0xa9/0xd0 [ 376.606034] __x64_sys_ioctl+0x73/0xb0 [ 376.609926] do_syscall_64+0x1b9/0x820 [ 376.613800] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 376.619151] ? syscall_return_slowpath+0x5e0/0x5e0 [ 376.624066] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 376.628901] ? trace_hardirqs_on_caller+0x310/0x310 [ 376.633903] ? prepare_exit_to_usermode+0x291/0x3b0 [ 376.638909] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 376.643755] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 376.648937] RIP: 0033:0x457579 [ 376.652146] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 376.671034] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 376.678725] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 376.685977] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 376.693353] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 00:13:11 executing program 1: r0 = memfd_create(&(0x7f0000000280)="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", 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)=0xffffffff, 0x4) r1 = syz_open_procfs(0x0, &(0x7f0000000100)="2f65786500000000000489004bddd9de91be10eebf000ee91e18f0c76fbb232a07424ae1e901d2da75af1f0200f5ab26d7e071fb35331ce39c5a0000") fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000000)) ioctl$FS_IOC_FSGETXATTR(r1, 0xc0c0583b, &(0x7f0000000040)={0x0, 0x0, 0x80000001}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, r0, 0x0, 0x1, &(0x7f0000000080)='\x00', 0xffffffffffffffff}, 0x30) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000180)=r2, 0x4) 00:13:11 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) prctl$intptr(0x8, 0x6) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000000)={0x0}) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffff9c, 0xc010640b, &(0x7f0000000040)={0x0, 0x0, 0x9}) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f00000000c0)={r2, r3}) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 376.700607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 376.707873] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:11 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x80010020, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:11 executing program 1: r0 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x79ff, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@loopback}}, {{@in=@rand_addr}}}, &(0x7f0000000140)=0xe8) getgid() fstat(r0, &(0x7f0000000340)) fsetxattr$system_posix_acl(r0, &(0x7f0000000100)="73797374656d2e706f73160c49b8636c5f61636365737300", &(0x7f00000003c0)={{}, {0x1, 0x1}, [], {0x4, 0x3}, [], {0x10, 0x10000000}, {0x20, 0x7}}, 0x24, 0x8000002) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x1c) socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(0xffffffffffffffff, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0)) 00:13:11 executing program 2 (fault-call:6 fault-nth:7): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 376.862714] FAULT_INJECTION: forcing a failure. [ 376.862714] name failslab, interval 1, probability 0, space 0, times 0 [ 376.882961] CPU: 0 PID: 18544 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 376.891505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.900862] Call Trace: [ 376.903458] dump_stack+0x1d3/0x2c4 [ 376.907088] ? dump_stack_print_info.cold.2+0x52/0x52 [ 376.912311] ? __kernel_text_address+0xd/0x40 [ 376.916820] ? unwind_get_return_address+0x61/0xa0 [ 376.921763] should_fail.cold.4+0xa/0x17 [ 376.925829] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 376.930918] ? save_stack+0xa9/0xd0 [ 376.934638] ? kasan_kmalloc+0xc7/0xe0 [ 376.938511] ? kasan_slab_alloc+0x12/0x20 [ 376.942654] ? kmem_cache_alloc+0x12e/0x730 [ 376.946977] ? mmu_topup_memory_caches+0xf7/0x390 [ 376.951807] ? kvm_mmu_load+0x21/0xfa0 [ 376.955679] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 376.960159] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 376.965163] ? do_vfs_ioctl+0x1de/0x1720 [ 376.969222] ? ksys_ioctl+0xa9/0xd0 [ 376.972833] ? __x64_sys_ioctl+0x73/0xb0 [ 376.976878] ? do_syscall_64+0x1b9/0x820 [ 376.980927] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 376.986278] ? percpu_ref_put_many+0x11c/0x260 [ 376.990900] ? lock_downgrade+0x900/0x900 [ 376.995039] ? lock_release+0x970/0x970 [ 376.999008] ? fs_reclaim_acquire+0x20/0x20 [ 377.003316] ? lock_downgrade+0x900/0x900 [ 377.007466] ? check_same_owner+0x330/0x330 [ 377.011785] ? percpu_ref_put_many+0x13e/0x260 [ 377.016361] ? trace_hardirqs_on+0xbd/0x310 [ 377.020676] __should_failslab+0x124/0x180 [ 377.024899] should_failslab+0x9/0x14 [ 377.028696] kmem_cache_alloc+0x2be/0x730 [ 377.032835] ? vmx_flush_tlb_gva+0x380/0x380 [ 377.037235] ? ima_get_action+0x7e/0xa0 [ 377.041198] ? mmu_topup_memory_caches+0xf7/0x390 [ 377.046030] mmu_topup_memory_caches+0xf7/0x390 [ 377.050684] kvm_mmu_load+0x21/0xfa0 [ 377.054384] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 377.059651] vcpu_enter_guest+0x3e6d/0x62f0 [ 377.063969] ? emulator_read_emulated+0x50/0x50 [ 377.068628] ? vmx_vcpu_load+0xb06/0x1030 [ 377.072764] ? mark_held_locks+0x130/0x130 [ 377.076993] ? vmx_write_tsc_offset+0x670/0x670 [ 377.081651] ? lock_downgrade+0x900/0x900 [ 377.085793] ? lock_acquire+0x1ed/0x520 [ 377.089750] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 377.094749] ? preempt_count_add+0x7d/0x160 [ 377.099060] ? lock_release+0x970/0x970 [ 377.103020] ? kvm_gen_update_masterclock+0x350/0x350 [ 377.108315] ? kvm_arch_dev_ioctl+0x630/0x630 [ 377.112793] ? preempt_notifier_dec+0x20/0x20 [ 377.117277] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 377.122109] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 377.127116] kvm_vcpu_ioctl+0x5c8/0x1150 [ 377.131190] ? kvm_vcpu_block+0x1020/0x1020 [ 377.135506] ? __fget+0x4aa/0x740 [ 377.138948] ? workqueue_online_cpu+0x80/0xad0 [ 377.143527] ? __f_unlock_pos+0x19/0x20 [ 377.147490] ? __fget+0x4d1/0x740 [ 377.150930] ? ksys_dup3+0x680/0x680 [ 377.154647] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 377.159588] ? kvm_vcpu_block+0x1020/0x1020 [ 377.163894] do_vfs_ioctl+0x1de/0x1720 [ 377.167770] ? fsnotify_first_mark+0x350/0x350 [ 377.172356] ? __fsnotify_parent+0xcc/0x420 [ 377.176664] ? ioctl_preallocate+0x300/0x300 [ 377.181058] ? __fget_light+0x2e9/0x430 [ 377.185016] ? fget_raw+0x20/0x20 [ 377.188455] ? __sb_end_write+0xd9/0x110 [ 377.192507] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 377.198029] ? fput+0x130/0x1a0 [ 377.201292] ? ksys_write+0x1ae/0x260 [ 377.205108] ? security_file_ioctl+0x94/0xc0 [ 377.209522] ksys_ioctl+0xa9/0xd0 [ 377.212991] __x64_sys_ioctl+0x73/0xb0 [ 377.216863] do_syscall_64+0x1b9/0x820 [ 377.220737] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 377.226090] ? syscall_return_slowpath+0x5e0/0x5e0 [ 377.231002] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 377.235844] ? trace_hardirqs_on_caller+0x310/0x310 [ 377.240851] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 377.245851] ? prepare_exit_to_usermode+0x291/0x3b0 [ 377.250873] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 377.255707] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 377.260880] RIP: 0033:0x457579 [ 377.264059] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 377.282952] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 377.290671] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 377.297930] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 377.305192] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 00:13:12 executing program 0: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x2, 0x0) sendto$inet6(r0, &(0x7f00000000c0)="ac31ec0d10b3fd2c05d2866a7366e151dc2eef350d91e8c0fea172a7b355745648941c47f18137cb523e11d2abe52bb387477307a3ffd042f8b649893714ce8670d9bb3888ab4bcfcc04d2b8a3266830cff065a363d40429a80f803a63da7505db74449281374ba4d8e14b908ee7a0b3ff2d9befc6a7641fd7772d5b7717", 0x7e, 0x40, &(0x7f0000000040)={0xa, 0x4e23, 0x17, @dev={0xfe, 0x80, [], 0x1c}, 0xf9}, 0x1c) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:12 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x14, 0x1c, 0xfffffffffffffffd, 0x0, 0x0, {0x1}}, 0x14}}, 0x0) recvmmsg(r0, &(0x7f0000004a00)=[{{&(0x7f00000000c0)=@can, 0x80, &(0x7f0000000580)}}], 0x1, 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x440100, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000240)=r1, 0x4) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200002, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000180)={0x5}) 00:13:12 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000002040), &(0x7f0000002140)=0x8) mount(&(0x7f0000001600)=ANY=[], &(0x7f00000000c0)='./file0\x00', &(0x7f00000012c0)='proc\x00', 0x0, &(0x7f0000000100)) socket$packet(0x11, 0x3, 0x300) r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f00000002c0)=""/4096, 0x1000) [ 377.312464] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 377.319719] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:12 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x5000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:12 executing program 2 (fault-call:6 fault-nth:8): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:12 executing program 1: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x1, 0x0) ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f0000000100)={0x1}) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x20040004, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r1, 0x1, 0x1, 0x7f, &(0x7f0000000040)=[0x0, 0x0], 0x2}, 0x20) r2 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r2, 0x10d, 0xb, &(0x7f000079bffc), &(0x7f0000350ffc)=0x4) 00:13:12 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0xfffffffffffffffd) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-simd\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="b7f2288a91199df0261df5cf1cdd8b55b062950b86bc01cac8464d4f8a906151", 0x20) r2 = accept$alg(r1, 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmmsg(r2, &(0x7f00000068c0)=[{{&(0x7f0000000140)=@in={0x2, 0x0, @rand_addr}, 0x80, &(0x7f0000000500)=[{&(0x7f00000002c0)=""/54, 0x36}, {&(0x7f00000014c0)=""/4096, 0x1000}], 0x2, &(0x7f0000002700)=""/4096, 0x1000}}], 0x4f6, 0x0, &(0x7f0000006a40)={0x0, 0x1c9c380}) 00:13:12 executing program 3: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x402980, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000240)={0x2, r1, 0x1}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000f6bfe8)={0xaa, 0x2}) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}}) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4068aea3, &(0x7f00000002c0)={0x7b, 0x0, [0x0, 0x0, 0x401, 0x101]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$binder(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x2, 0x100000002132, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap(&(0x7f0000b18000/0x3000)=nil, 0x3000, 0x1, 0x8013, r0, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0xa, &(0x7f0000000040), &(0x7f0000000080)=0x4) flistxattr(0xffffffffffffffff, &(0x7f0000000340), 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000140)={'icmp\x00'}, &(0x7f0000000340)=0x1e) [ 377.459671] FAULT_INJECTION: forcing a failure. [ 377.459671] name failslab, interval 1, probability 0, space 0, times 0 [ 377.483496] CPU: 0 PID: 18562 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 377.492037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.501498] Call Trace: [ 377.504089] dump_stack+0x1d3/0x2c4 [ 377.507793] ? dump_stack_print_info.cold.2+0x52/0x52 [ 377.512976] ? __kernel_text_address+0xd/0x40 [ 377.517467] ? unwind_get_return_address+0x61/0xa0 [ 377.522397] should_fail.cold.4+0xa/0x17 [ 377.526460] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 377.531552] ? save_stack+0xa9/0xd0 [ 377.535177] ? kasan_kmalloc+0xc7/0xe0 [ 377.539047] ? kasan_slab_alloc+0x12/0x20 [ 377.543176] ? kmem_cache_alloc+0x12e/0x730 [ 377.547482] ? mmu_topup_memory_caches+0xf7/0x390 [ 377.552309] ? kvm_mmu_load+0x21/0xfa0 [ 377.556182] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 377.560661] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 377.565661] ? do_vfs_ioctl+0x1de/0x1720 [ 377.569706] ? ksys_ioctl+0xa9/0xd0 [ 377.573314] ? __x64_sys_ioctl+0x73/0xb0 [ 377.577357] ? do_syscall_64+0x1b9/0x820 [ 377.581417] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 377.586770] ? percpu_ref_put_many+0x11c/0x260 [ 377.591345] ? lock_downgrade+0x900/0x900 [ 377.595479] ? lock_release+0x970/0x970 [ 377.599444] ? fs_reclaim_acquire+0x20/0x20 [ 377.603860] ? lock_downgrade+0x900/0x900 [ 377.607996] ? check_same_owner+0x330/0x330 [ 377.612312] ? percpu_ref_put_many+0x13e/0x260 [ 377.616902] ? trace_hardirqs_on+0xbd/0x310 [ 377.621234] __should_failslab+0x124/0x180 [ 377.625463] should_failslab+0x9/0x14 [ 377.629253] kmem_cache_alloc+0x2be/0x730 [ 377.633394] ? vmx_flush_tlb_gva+0x380/0x380 [ 377.637788] ? ima_get_action+0x7e/0xa0 [ 377.641757] ? mmu_topup_memory_caches+0xf7/0x390 [ 377.646594] mmu_topup_memory_caches+0xf7/0x390 [ 377.651261] kvm_mmu_load+0x21/0xfa0 [ 377.654962] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 377.660230] vcpu_enter_guest+0x3e6d/0x62f0 [ 377.664540] ? emulator_read_emulated+0x50/0x50 [ 377.669193] ? vmx_vcpu_load+0xb06/0x1030 [ 377.673325] ? mark_held_locks+0x130/0x130 [ 377.677544] ? vmx_write_tsc_offset+0x670/0x670 [ 377.682300] ? lock_downgrade+0x900/0x900 [ 377.686440] ? lock_acquire+0x1ed/0x520 [ 377.690403] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 377.695406] ? preempt_count_add+0x7d/0x160 [ 377.699722] ? lock_release+0x970/0x970 [ 377.703687] ? kvm_gen_update_masterclock+0x350/0x350 [ 377.708879] ? kvm_arch_dev_ioctl+0x630/0x630 [ 377.713366] ? preempt_notifier_dec+0x20/0x20 [ 377.717850] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 377.722676] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 377.727703] kvm_vcpu_ioctl+0x5c8/0x1150 [ 377.731763] ? kvm_vcpu_block+0x1020/0x1020 [ 377.736077] ? __fget+0x4aa/0x740 [ 377.739522] ? workqueue_online_cpu+0x80/0xad0 [ 377.744090] ? __f_unlock_pos+0x19/0x20 [ 377.748067] ? __fget+0x4d1/0x740 [ 377.751508] ? ksys_dup3+0x680/0x680 [ 377.755227] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 377.760146] ? kvm_vcpu_block+0x1020/0x1020 [ 377.764451] do_vfs_ioctl+0x1de/0x1720 [ 377.768323] ? fsnotify_first_mark+0x350/0x350 [ 377.772888] ? __fsnotify_parent+0xcc/0x420 [ 377.777206] ? ioctl_preallocate+0x300/0x300 [ 377.781599] ? __fget_light+0x2e9/0x430 [ 377.785555] ? fget_raw+0x20/0x20 [ 377.788992] ? __sb_end_write+0xd9/0x110 [ 377.793041] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 377.798558] ? fput+0x130/0x1a0 [ 377.801824] ? ksys_write+0x1ae/0x260 [ 377.805611] ? security_file_ioctl+0x94/0xc0 [ 377.810003] ksys_ioctl+0xa9/0xd0 [ 377.813442] __x64_sys_ioctl+0x73/0xb0 [ 377.817319] do_syscall_64+0x1b9/0x820 [ 377.821209] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 377.826566] ? syscall_return_slowpath+0x5e0/0x5e0 [ 377.831492] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 377.836320] ? trace_hardirqs_on_caller+0x310/0x310 [ 377.841322] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 377.846326] ? prepare_exit_to_usermode+0x291/0x3b0 [ 377.851327] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 377.856159] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 377.861330] RIP: 0033:0x457579 [ 377.864508] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 377.883481] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 377.891174] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 377.898440] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 377.905696] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 377.912958] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 377.920209] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:12 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x40000, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000280)={{{@in6, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000000100)=0xe8) sendto$packet(r1, &(0x7f00000023c0)="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", 0x1000, 0x40, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0xc4bf}, 0x14) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r3 = accept$alg(r0, 0x0, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x80, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r4 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r4, &(0x7f00000000c0)=ANY=[@ANYRES16=r0, @ANYRESHEX=r3, @ANYRES32, @ANYRESOCT=r3], 0x2f) recvmsg(r4, &(0x7f0000000c00)={&(0x7f0000000580)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000400)=[{&(0x7f00000033c0)=""/4096, 0x3e0}], 0x1, &(0x7f0000000bc0)=""/45, 0xfe87}, 0xfffffffffffffffe) 00:13:12 executing program 2 (fault-call:6 fault-nth:9): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:12 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x6000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:12 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x100000dc, &(0x7f0000000bc0)=""/45, 0xffffffffffffffed}, 0x0) [ 378.040271] FAULT_INJECTION: forcing a failure. [ 378.040271] name failslab, interval 1, probability 0, space 0, times 0 [ 378.052328] CPU: 1 PID: 18583 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 378.060831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.070282] Call Trace: [ 378.072896] dump_stack+0x1d3/0x2c4 [ 378.076548] ? dump_stack_print_info.cold.2+0x52/0x52 [ 378.081790] ? __kernel_text_address+0xd/0x40 [ 378.081805] ? unwind_get_return_address+0x61/0xa0 [ 378.081827] should_fail.cold.4+0xa/0x17 [ 378.081846] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 378.081864] ? save_stack+0xa9/0xd0 [ 378.081885] ? kasan_kmalloc+0xc7/0xe0 [ 378.081898] ? kasan_slab_alloc+0x12/0x20 [ 378.081913] ? kmem_cache_alloc+0x12e/0x730 [ 378.091335] ? mmu_topup_memory_caches+0xf7/0x390 [ 378.091348] ? kvm_mmu_load+0x21/0xfa0 [ 378.091362] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 378.091375] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 378.091398] ? do_vfs_ioctl+0x1de/0x1720 00:13:12 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x10a) [ 378.138738] ? ksys_ioctl+0xa9/0xd0 [ 378.142355] ? __x64_sys_ioctl+0x73/0xb0 [ 378.146405] ? do_syscall_64+0x1b9/0x820 [ 378.150462] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 378.155839] ? percpu_ref_put_many+0x11c/0x260 [ 378.160417] ? lock_downgrade+0x900/0x900 [ 378.164564] ? lock_release+0x970/0x970 [ 378.168533] ? fs_reclaim_acquire+0x20/0x20 [ 378.172839] ? lock_downgrade+0x900/0x900 [ 378.177002] ? check_same_owner+0x330/0x330 [ 378.181327] ? percpu_ref_put_many+0x13e/0x260 [ 378.185919] ? trace_hardirqs_on+0xbd/0x310 00:13:13 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x48c200, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000540)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x408000}, 0xc, &(0x7f0000000500)={&(0x7f00000002c0)={0x1e8, r3, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [], @broadcast}}]}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x9}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0xb}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_AF={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x48, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x800}]}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, [], 0x1a}}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@rand_addr=0xe}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_DAEMON={0x88, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bond0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, [], 0xa}}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, [], 0x21}}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8001}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xfb}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipddp0\x00'}]}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x4}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x6aaf}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x10}, 0x4000014) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 378.190258] __should_failslab+0x124/0x180 [ 378.194505] should_failslab+0x9/0x14 [ 378.198314] kmem_cache_alloc+0x2be/0x730 [ 378.202462] ? vmx_flush_tlb_gva+0x380/0x380 [ 378.206896] ? ima_get_action+0x7e/0xa0 [ 378.210877] ? mmu_topup_memory_caches+0xf7/0x390 [ 378.215710] mmu_topup_memory_caches+0xf7/0x390 [ 378.220396] kvm_mmu_load+0x21/0xfa0 [ 378.224125] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 378.229419] vcpu_enter_guest+0x3e6d/0x62f0 [ 378.233751] ? emulator_read_emulated+0x50/0x50 [ 378.238429] ? vmx_vcpu_load+0xb06/0x1030 [ 378.242589] ? mark_held_locks+0x130/0x130 [ 378.246831] ? vmx_write_tsc_offset+0x670/0x670 [ 378.251518] ? lock_downgrade+0x900/0x900 [ 378.255661] ? lock_acquire+0x1ed/0x520 [ 378.259706] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 378.264830] ? preempt_count_add+0x7d/0x160 [ 378.269158] ? lock_release+0x970/0x970 [ 378.273119] ? kvm_gen_update_masterclock+0x350/0x350 [ 378.278315] ? kvm_arch_dev_ioctl+0x630/0x630 [ 378.282797] ? preempt_notifier_dec+0x20/0x20 00:13:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x400000002, 0x70, 0x3e5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1}, 0x0, 0x7, 0xffffffffffffffff, 0x0) msgrcv(0x0, &(0x7f0000000100)={0x0, ""/192}, 0xc8, 0x0, 0x1000) msgsnd(0x0, &(0x7f00000000c0)={0x1}, 0x2000, 0x0) [ 378.287298] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 378.292148] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 378.297177] kvm_vcpu_ioctl+0x5c8/0x1150 [ 378.301247] ? kvm_vcpu_block+0x1020/0x1020 [ 378.305581] ? __fget+0x4aa/0x740 [ 378.309045] ? workqueue_online_cpu+0x80/0xad0 [ 378.309063] ? __f_unlock_pos+0x19/0x20 [ 378.309081] ? __fget+0x4d1/0x740 [ 378.317614] ? ksys_dup3+0x680/0x680 [ 378.317635] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 378.317654] ? kvm_vcpu_block+0x1020/0x1020 [ 378.334023] do_vfs_ioctl+0x1de/0x1720 00:13:13 executing program 1: mkdir(&(0x7f00000000c0)='./control\x00', 0x0) r0 = open(&(0x7f0000028000)='./control\x00', 0x0, 0x0) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000000)) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x220}) fstatfs(r0, &(0x7f0000000140)=""/234) getsockopt$inet_dccp_buf(r0, 0x21, 0x80, &(0x7f0000000240)=""/219, &(0x7f0000000080)=0xdb) [ 378.337928] ? fsnotify_first_mark+0x350/0x350 [ 378.342517] ? __fsnotify_parent+0xcc/0x420 [ 378.346854] ? ioctl_preallocate+0x300/0x300 [ 378.351273] ? __fget_light+0x2e9/0x430 [ 378.355253] ? fget_raw+0x20/0x20 [ 378.358719] ? __sb_end_write+0xd9/0x110 [ 378.362807] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 378.368375] ? fput+0x130/0x1a0 [ 378.371664] ? ksys_write+0x1ae/0x260 [ 378.375480] ? security_file_ioctl+0x94/0xc0 [ 378.380025] ksys_ioctl+0xa9/0xd0 [ 378.383573] __x64_sys_ioctl+0x73/0xb0 [ 378.387450] do_syscall_64+0x1b9/0x820 [ 378.391326] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 378.396677] ? syscall_return_slowpath+0x5e0/0x5e0 [ 378.401600] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 378.406458] ? trace_hardirqs_on_caller+0x310/0x310 [ 378.411472] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 378.416955] ? prepare_exit_to_usermode+0x291/0x3b0 [ 378.421962] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 378.426798] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 378.431975] RIP: 0033:0x457579 [ 378.435154] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 378.454041] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 378.461822] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 378.469100] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 378.476364] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 378.483623] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:13 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc02c5341, &(0x7f0000000240)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x4) r2 = gettid() ptrace$getsig(0x4202, r2, 0x8, &(0x7f0000000040)) tkill(0x0, 0x0) ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x2203, &(0x7f0000000440)) name_to_handle_at(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0)={0x58, 0x2, "7c395d62a75ddf4771aa4e21cf4641f0e94482c228b86b7f1841e94fb5823a0172a2598c4655ab4bda5082ceb142f67f81fad55498a99fd729ddf1c3b2393340cb6453ab9bbb6a3fa60fd1eea7a3fbf3"}, &(0x7f0000000200), 0x1400) write$RDMA_USER_CM_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000580)={0x6, 0x118, 0xfa00, {{0x0, 0x0, "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"}}}, 0x120) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000080)={0x0, &(0x7f0000000140)}) 00:13:13 executing program 2 (fault-call:6 fault-nth:10): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:13 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x3, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 378.490882] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:13 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) fsetxattr$security_ima(r0, &(0x7f00000002c0)='security.ima\x00', &(0x7f0000000280)=@sha1={0x1, "6a444e9bb0222090f15aeef2d9ce03a02ec870a3"}, 0x26a, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000440)={&(0x7f0000000380), 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=@ipv6_delroute={0x1c, 0x19, 0xb29, 0x0, 0x0, {0xa, 0xa0, 0x0, 0x0, 0xff, 0x1}}, 0x1c}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000002200010400000000000000000000000020673d79c34e0f09ecd03553b28a5ac53c8a0ceb94ea0fe1d7b4becd96ac3f6e102e6a4f0e"], 0x14}}, 0x0) sendmsg$nl_xfrm(r4, &(0x7f00000000c0)={&(0x7f0000000480), 0xc, &(0x7f0000000180)={&(0x7f00000004c0)=@getpolicy={0x50, 0x15, 0x305, 0x0, 0x0, {{@in=@multicast1, @in6=@ipv4={[], [], @remote}}}}, 0x50}, 0x8}, 0x0) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x80000, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r5, 0x5382, &(0x7f0000000540)) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$setperm(0x5, r6, 0x4000000) fsync(r1) r7 = dup(r1) sendmsg$IPVS_CMD_SET_DEST(r7, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={0xfffffffffffffffd}, 0x1, 0x0, 0x0, 0x1}, 0x8004) 00:13:13 executing program 3: r0 = socket$nl_generic(0xa, 0x5, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f00000000c0)={"62726964676530000000008000", &(0x7f0000000080)=ANY=[@ANYBLOB="090000000000008367ae65fe097d41d46e0003000000000000000000000000"]}) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={r0}) setsockopt$bt_hci_HCI_TIME_STAMP(r1, 0x0, 0x3, &(0x7f0000000040)=0x368c, 0x4) r2 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x3, 0x0) ioctl$DRM_IOCTL_ADD_BUFS(r2, 0xc0206416, &(0x7f0000000140)={0x2, 0x3, 0x84f, 0x2, 0x4, 0x8}) [ 378.606309] FAULT_INJECTION: forcing a failure. [ 378.606309] name failslab, interval 1, probability 0, space 0, times 0 [ 378.611042] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. [ 378.637873] CPU: 1 PID: 18620 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 378.646531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.646536] Call Trace: [ 378.646561] dump_stack+0x1d3/0x2c4 [ 378.646580] ? dump_stack_print_info.cold.2+0x52/0x52 [ 378.646597] ? __kernel_text_address+0xd/0x40 [ 378.646614] ? unwind_get_return_address+0x61/0xa0 [ 378.646636] should_fail.cold.4+0xa/0x17 [ 378.646654] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 378.646671] ? save_stack+0xa9/0xd0 [ 378.646686] ? kasan_kmalloc+0xc7/0xe0 [ 378.646699] ? kasan_slab_alloc+0x12/0x20 [ 378.646711] ? kmem_cache_alloc+0x12e/0x730 [ 378.646727] ? mmu_topup_memory_caches+0xf7/0x390 [ 378.646738] ? kvm_mmu_load+0x21/0xfa0 [ 378.646753] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 378.646765] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 378.646777] ? do_vfs_ioctl+0x1de/0x1720 [ 378.646788] ? ksys_ioctl+0xa9/0xd0 [ 378.646798] ? __x64_sys_ioctl+0x73/0xb0 [ 378.646811] ? do_syscall_64+0x1b9/0x820 [ 378.646836] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 378.646857] ? percpu_ref_put_many+0x11c/0x260 [ 378.646883] ? lock_downgrade+0x900/0x900 [ 378.646903] ? lock_release+0x970/0x970 [ 378.646926] ? fs_reclaim_acquire+0x20/0x20 [ 378.646943] ? lock_downgrade+0x900/0x900 [ 378.646964] ? check_same_owner+0x330/0x330 [ 378.646975] ? percpu_ref_put_many+0x13e/0x260 [ 378.646994] ? trace_hardirqs_on+0xbd/0x310 [ 378.669543] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. [ 378.672341] __should_failslab+0x124/0x180 [ 378.672358] should_failslab+0x9/0x14 [ 378.672375] kmem_cache_alloc+0x2be/0x730 [ 378.796392] ? vmx_flush_tlb_gva+0x380/0x380 [ 378.796412] ? ima_get_action+0x7e/0xa0 00:13:13 executing program 1: clone(0x2102001ffd, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000000)=0x100000000000000) semget(0xffffffffffffffff, 0xbf2cc30698e3bc9, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x0) ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f00000000c0)=r0) [ 378.804789] ? mmu_topup_memory_caches+0xf7/0x390 [ 378.809647] mmu_topup_memory_caches+0xf7/0x390 [ 378.814313] kvm_mmu_load+0x21/0xfa0 [ 378.818046] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 378.823330] vcpu_enter_guest+0x3e6d/0x62f0 [ 378.823349] ? emulator_read_emulated+0x50/0x50 [ 378.832337] ? vmx_vcpu_load+0xb06/0x1030 [ 378.832353] ? mark_held_locks+0x130/0x130 [ 378.832369] ? vmx_write_tsc_offset+0x670/0x670 [ 378.845384] ? lock_downgrade+0x900/0x900 [ 378.849552] ? lock_acquire+0x1ed/0x520 00:13:13 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x400000, 0x0) getsockopt$inet_mreq(r2, 0x0, 0x27, &(0x7f0000000280)={@multicast1, @broadcast}, &(0x7f00000002c0)=0x8) ioctl$EVIOCGNAME(r2, 0x80404506, &(0x7f00000000c0)=""/76) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$P9_RWSTAT(r2, &(0x7f0000000300)={0x7, 0x7f, 0x1}, 0x7) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0x0) getsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040), &(0x7f0000000140)=0x8) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0xdb7b, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 378.853532] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 378.858548] ? preempt_count_add+0x7d/0x160 [ 378.862972] ? lock_release+0x970/0x970 [ 378.866935] ? kvm_gen_update_masterclock+0x350/0x350 [ 378.872109] ? kvm_arch_dev_ioctl+0x630/0x630 [ 378.876606] ? preempt_notifier_dec+0x20/0x20 [ 378.881116] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 378.885963] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 378.890994] kvm_vcpu_ioctl+0x5c8/0x1150 [ 378.895084] ? kvm_vcpu_block+0x1020/0x1020 [ 378.895108] ? __fget+0x4aa/0x740 [ 378.895128] ? workqueue_online_cpu+0x80/0xad0 00:13:13 executing program 5: r0 = socket$can_raw(0x1d, 0x3, 0x1) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$UI_GET_SYSNAME(r1, 0x8040552c, &(0x7f0000000140)) lseek(r0, 0x1f, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000000)={'teql0\x00', {0x2, 0x4e20, @multicast2}}) r3 = accept$alg(r2, 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000040)=ANY=[@ANYBLOB="0500008770ea020018873e000000"], &(0x7f00000000c0)=0xe) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 378.902878] ? __f_unlock_pos+0x19/0x20 [ 378.902895] ? __fget+0x4d1/0x740 [ 378.902912] ? ksys_dup3+0x680/0x680 [ 378.918583] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 378.923528] ? kvm_vcpu_block+0x1020/0x1020 [ 378.927857] do_vfs_ioctl+0x1de/0x1720 [ 378.931748] ? fsnotify_first_mark+0x350/0x350 [ 378.936340] ? __fsnotify_parent+0xcc/0x420 [ 378.940673] ? ioctl_preallocate+0x300/0x300 [ 378.945083] ? __fget_light+0x2e9/0x430 [ 378.947734] QAT: Invalid ioctl [ 378.949144] ? fget_raw+0x20/0x20 [ 378.949163] ? __sb_end_write+0xd9/0x110 [ 378.949182] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 378.949198] ? fput+0x130/0x1a0 [ 378.968618] ? ksys_write+0x1ae/0x260 [ 378.972405] ? security_file_ioctl+0x94/0xc0 [ 378.976804] ksys_ioctl+0xa9/0xd0 [ 378.980280] __x64_sys_ioctl+0x73/0xb0 [ 378.984182] do_syscall_64+0x1b9/0x820 [ 378.988061] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 378.993407] ? syscall_return_slowpath+0x5e0/0x5e0 [ 378.998335] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 379.003186] ? trace_hardirqs_on_caller+0x310/0x310 [ 379.008224] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 379.013246] ? prepare_exit_to_usermode+0x291/0x3b0 [ 379.018257] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 379.023096] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 379.028268] RIP: 0033:0x457579 [ 379.031448] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 379.050457] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:13 executing program 3: r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhci\x00', 0x40, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@known='trusted.overlay.redirect\x00') ioctl$KVM_KVMCLOCK_CTRL(r0, 0xaead) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x14000, 0x0) write$P9_RLOCK(r1, &(0x7f0000000100)={0x8, 0x35, 0x1, 0x3}, 0x8) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0xfffffffffffffffa, 0x3) setsockopt$bt_BT_SECURITY(r2, 0x112, 0x4, &(0x7f0000000140)={0x8}, 0x2) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000240)={0x0, 0x7f}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000002c0)={r3, 0x9}, &(0x7f0000000300)=0x8) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000340)) r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0x20000) r5 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={'syz', 0x1}, &(0x7f0000000480)="24f60184988991e5b69604733060656665aec66b00c4e2dd80f4e7ed874d107d78ec4646b5166bf33b3f5cb1c06125def6576bdd855524ed7653fb68b89405a40222b946f05aac613dfbf6745e08b504b04a4389ac51a5fe7dba6aa80d127293e89b6a6f0a4cee82e871a5c88a948002a7ba9be032c3870d563faa7719264461e4b6bc9fc5548f6802ee6de0a5389c246a8e149972352a24c4011c210301", 0x9e, 0xfffffffffffffffc) keyctl$describe(0x6, r5, &(0x7f0000000540)=""/146, 0x92) ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000600)={0x2, 0x400}) getsockopt$inet_int(r1, 0x0, 0x97a56ac6d3109036, &(0x7f0000000380), &(0x7f00000003c0)=0x4) getsockopt$IPT_SO_GET_REVISION_MATCH(r4, 0x0, 0x42, &(0x7f0000000040)={'NETMAP\x00'}, &(0x7f0000000080)=0x1e) 00:13:13 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x482240, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000100)={r2, 0x4, 0x73, 0x9e6}, 0x10) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 379.058148] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 379.065424] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 379.072674] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 379.079925] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 379.087308] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:13 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x80fe, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:13 executing program 2 (fault-call:6 fault-nth:11): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x101000, 0x0) ioctl$GIO_SCRNMAP(r1, 0x4b40, &(0x7f0000000480)=""/234) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="b702000008000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7030000000000006a0a00fe00000000850000001f000000b7000000000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={r2, 0x0, 0x22, 0xd7, &(0x7f0000000080)="3c08000000f08b41637c2fee86dd371da6e5ed6ed61583b2f02a7034f4447088bb6b", &(0x7f0000000380)=""/215, 0x7ff}, 0x28) ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0) 00:13:14 executing program 1: sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x5) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus640-generic\x00'}, 0x7c) seccomp(0x0, 0x0, &(0x7f0000000180)={0x0, &(0x7f00000000c0)}) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r1, 0x0, 0x0) recvmsg$kcm(r0, &(0x7f0000000500)={&(0x7f0000000300)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000380)=""/251, 0xfb}, {&(0x7f0000000480)=""/93, 0x5d}], 0x2, 0x0, 0x0, 0x6}, 0x2042) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x6d94}, &(0x7f0000000580)=0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f00000005c0)={r4, 0x2, 0x2}, 0x8) r5 = syz_open_dev$mouse(&(0x7f00000007c0)='/dev/input/mouse#\x00', 0xcf, 0x420000) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r5, 0x84, 0x6b, &(0x7f0000000800)=[@in6={0xa, 0x4e21, 0x7, @loopback, 0xfd4}, @in6={0xa, 0x4e24, 0x8, @mcast2, 0xdc0}, @in={0x2, 0x4e21, @remote}, @in={0x2, 0x4e20, @local}, @in={0x2, 0x4e22, @rand_addr=0x1}, @in6={0xa, 0x4e24, 0xfffffffffffffffd, @empty, 0x3ff}, @in6={0xa, 0x4e22, 0x4, @mcast2, 0x6ff}, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1a}}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e23, @multicast1}], 0xd0) sendmmsg$alg(r2, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x167, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmmsg(r2, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x80, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x121, 0x0, &(0x7f0000001380)={0x77359400}) [ 379.200447] FAULT_INJECTION: forcing a failure. [ 379.200447] name failslab, interval 1, probability 0, space 0, times 0 [ 379.220034] CPU: 0 PID: 18657 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 379.228545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.237893] Call Trace: [ 379.240495] dump_stack+0x1d3/0x2c4 [ 379.244128] ? dump_stack_print_info.cold.2+0x52/0x52 [ 379.249322] ? __kernel_text_address+0xd/0x40 [ 379.253809] ? unwind_get_return_address+0x61/0xa0 [ 379.258730] should_fail.cold.4+0xa/0x17 [ 379.262890] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 379.268003] ? save_stack+0xa9/0xd0 [ 379.271612] ? kasan_kmalloc+0xc7/0xe0 [ 379.275490] ? kasan_slab_alloc+0x12/0x20 [ 379.279621] ? kmem_cache_alloc+0x12e/0x730 [ 379.283939] ? mmu_topup_memory_caches+0xf7/0x390 [ 379.288794] ? kvm_mmu_load+0x21/0xfa0 [ 379.292666] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 379.297144] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 379.302144] ? do_vfs_ioctl+0x1de/0x1720 [ 379.306185] ? ksys_ioctl+0xa9/0xd0 [ 379.309793] ? __x64_sys_ioctl+0x73/0xb0 [ 379.313847] ? do_syscall_64+0x1b9/0x820 [ 379.317902] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 379.323247] ? percpu_ref_put_many+0x11c/0x260 [ 379.327813] ? lock_downgrade+0x900/0x900 [ 379.331946] ? lock_release+0x970/0x970 [ 379.335907] ? fs_reclaim_acquire+0x20/0x20 [ 379.340211] ? lock_downgrade+0x900/0x900 [ 379.344342] ? check_same_owner+0x330/0x330 [ 379.348640] ? percpu_ref_put_many+0x13e/0x260 [ 379.353207] ? trace_hardirqs_on+0xbd/0x310 [ 379.357530] __should_failslab+0x124/0x180 [ 379.361841] should_failslab+0x9/0x14 [ 379.365622] kmem_cache_alloc+0x2be/0x730 [ 379.369751] ? vmx_flush_tlb_gva+0x380/0x380 [ 379.374148] ? ima_get_action+0x7e/0xa0 [ 379.378106] ? mmu_topup_memory_caches+0xf7/0x390 [ 379.383035] mmu_topup_memory_caches+0xf7/0x390 [ 379.387698] kvm_mmu_load+0x21/0xfa0 [ 379.391436] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 379.396696] vcpu_enter_guest+0x3e6d/0x62f0 [ 379.401003] ? emulator_read_emulated+0x50/0x50 [ 379.405658] ? vmx_vcpu_load+0xb06/0x1030 [ 379.409798] ? mark_held_locks+0x130/0x130 [ 379.414450] ? vmx_write_tsc_offset+0x670/0x670 [ 379.419139] ? lock_downgrade+0x900/0x900 [ 379.423283] ? lock_acquire+0x1ed/0x520 [ 379.427243] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 379.432267] ? preempt_count_add+0x7d/0x160 [ 379.436579] ? lock_release+0x970/0x970 [ 379.440536] ? kvm_gen_update_masterclock+0x350/0x350 [ 379.445709] ? kvm_arch_dev_ioctl+0x630/0x630 [ 379.450189] ? preempt_notifier_dec+0x20/0x20 [ 379.454676] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 379.459507] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 379.464521] kvm_vcpu_ioctl+0x5c8/0x1150 [ 379.468566] ? kvm_vcpu_block+0x1020/0x1020 [ 379.472877] ? __fget+0x4aa/0x740 [ 379.476407] ? workqueue_online_cpu+0x80/0xad0 [ 379.480982] ? __f_unlock_pos+0x19/0x20 [ 379.484957] ? __fget+0x4d1/0x740 [ 379.488396] ? ksys_dup3+0x680/0x680 [ 379.492104] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 379.497022] ? kvm_vcpu_block+0x1020/0x1020 [ 379.501327] do_vfs_ioctl+0x1de/0x1720 [ 379.505210] ? fsnotify_first_mark+0x350/0x350 [ 379.509793] ? __fsnotify_parent+0xcc/0x420 [ 379.514099] ? ioctl_preallocate+0x300/0x300 [ 379.518490] ? __fget_light+0x2e9/0x430 [ 379.522539] ? fget_raw+0x20/0x20 [ 379.525985] ? __sb_end_write+0xd9/0x110 [ 379.530037] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 379.535555] ? fput+0x130/0x1a0 [ 379.538820] ? ksys_write+0x1ae/0x260 [ 379.542614] ? security_file_ioctl+0x94/0xc0 [ 379.547009] ksys_ioctl+0xa9/0xd0 [ 379.550448] __x64_sys_ioctl+0x73/0xb0 [ 379.554322] do_syscall_64+0x1b9/0x820 [ 379.558191] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 379.563537] ? syscall_return_slowpath+0x5e0/0x5e0 [ 379.568446] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 379.573275] ? trace_hardirqs_on_caller+0x310/0x310 [ 379.578281] ? prepare_exit_to_usermode+0x291/0x3b0 [ 379.583295] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 379.588122] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 379.593294] RIP: 0033:0x457579 [ 379.596474] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 379.615448] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 379.623157] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 379.630419] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 379.637680] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 379.644938] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:14 executing program 2 (fault-call:6 fault-nth:12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:14 executing program 3: syz_mount_image$msdos(&(0x7f0000000500)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000540)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x18, &(0x7f0000000580)=ANY=[]) r0 = open(&(0x7f0000000800)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r1, &(0x7f0000000980)={0x8, "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", 0x1000}, 0x1006) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000340), &(0x7f0000000380)=0x8) mount$9p_rdma(&(0x7f0000000140)='127.0.0.1\x00', &(0x7f0000000180)='./bus/file0\x00', &(0x7f0000000200)='9p\x00', 0x0, &(0x7f0000000240)={'trans=rdma,', {'port'}, 0x2c, {[], [{@smackfsfloor={'smackfsfloor', 0x3d, 'msdos\x00'}}, {@dont_appraise='dont_appraise'}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@subj_user={'subj_user', 0x3d, 'msdos\x00'}}, {@smackfshat={'smackfshat'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@appraise_type='appraise_type=imasig'}, {@measure='measure'}]}}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) sendfile(r1, r1, &(0x7f00000000c0), 0x8080fffffffe) 00:13:14 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x8000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 379.652196] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:14 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x13, 0x10}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x5, &(0x7f0000000000)=@framed={{}, [@map={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0xf4, &(0x7f0000000280)=""/244}, 0x15) [ 379.747780] QAT: Invalid ioctl [ 379.774644] FAULT_INJECTION: forcing a failure. [ 379.774644] name failslab, interval 1, probability 0, space 0, times 0 [ 379.796995] CPU: 1 PID: 18678 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 379.805506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.814854] Call Trace: [ 379.817467] dump_stack+0x1d3/0x2c4 [ 379.821105] ? dump_stack_print_info.cold.2+0x52/0x52 [ 379.826391] ? __kernel_text_address+0xd/0x40 [ 379.826942] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 16) [ 379.830896] ? unwind_get_return_address+0x61/0xa0 [ 379.830922] should_fail.cold.4+0xa/0x17 [ 379.830940] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 379.830962] ? save_stack+0xa9/0xd0 [ 379.843843] ? kasan_kmalloc+0xc7/0xe0 [ 379.843857] ? kasan_slab_alloc+0x12/0x20 [ 379.843869] ? kmem_cache_alloc+0x12e/0x730 [ 379.843887] ? mmu_topup_memory_caches+0xf7/0x390 [ 379.853008] ? kvm_mmu_load+0x21/0xfa0 [ 379.853021] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 379.853054] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 379.853067] ? do_vfs_ioctl+0x1de/0x1720 [ 379.853082] ? ksys_ioctl+0xa9/0xd0 [ 379.866035] FAT-fs (loop3): Filesystem has been set read-only [ 379.869115] ? __x64_sys_ioctl+0x73/0xb0 [ 379.869132] ? do_syscall_64+0x1b9/0x820 [ 379.869146] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 379.869164] ? percpu_ref_put_many+0x11c/0x260 [ 379.869179] ? lock_downgrade+0x900/0x900 00:13:14 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x600, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 379.869197] ? lock_release+0x970/0x970 [ 379.879784] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000020) [ 379.882501] ? fs_reclaim_acquire+0x20/0x20 [ 379.882521] ? lock_downgrade+0x900/0x900 [ 379.882552] ? check_same_owner+0x330/0x330 [ 379.882570] ? percpu_ref_put_many+0x13e/0x260 [ 379.901112] ? trace_hardirqs_on+0xbd/0x310 [ 379.901135] __should_failslab+0x124/0x180 [ 379.901151] should_failslab+0x9/0x14 [ 379.901173] kmem_cache_alloc+0x2be/0x730 [ 379.901187] ? vmx_flush_tlb_gva+0x380/0x380 [ 379.972507] ? ima_get_action+0x7e/0xa0 [ 379.976474] ? mmu_topup_memory_caches+0xf7/0x390 [ 379.981306] mmu_topup_memory_caches+0xf7/0x390 [ 379.985969] kvm_mmu_load+0x21/0xfa0 [ 379.989675] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 379.994949] vcpu_enter_guest+0x3e6d/0x62f0 [ 379.999268] ? emulator_read_emulated+0x50/0x50 [ 380.003932] ? vmx_vcpu_load+0xb06/0x1030 [ 380.008070] ? mark_held_locks+0x130/0x130 [ 380.012298] ? vmx_write_tsc_offset+0x670/0x670 [ 380.016958] ? lock_downgrade+0x900/0x900 [ 380.021200] ? lock_acquire+0x1ed/0x520 [ 380.025166] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 380.030172] ? preempt_count_add+0x7d/0x160 [ 380.034482] ? lock_release+0x970/0x970 [ 380.038444] ? kvm_gen_update_masterclock+0x350/0x350 [ 380.043725] ? kvm_arch_dev_ioctl+0x630/0x630 [ 380.048231] ? preempt_notifier_dec+0x20/0x20 [ 380.052730] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 380.057570] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 380.062586] kvm_vcpu_ioctl+0x5c8/0x1150 [ 380.066658] ? kvm_vcpu_block+0x1020/0x1020 [ 380.070980] ? __fget+0x4aa/0x740 [ 380.074426] ? workqueue_online_cpu+0x80/0xad0 [ 380.079000] ? __f_unlock_pos+0x19/0x20 [ 380.082976] ? __fget+0x4d1/0x740 [ 380.086419] ? ksys_dup3+0x680/0x680 [ 380.090128] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 380.095056] ? kvm_vcpu_block+0x1020/0x1020 [ 380.099389] do_vfs_ioctl+0x1de/0x1720 [ 380.103260] ? fsnotify_first_mark+0x350/0x350 [ 380.107827] ? __fsnotify_parent+0xcc/0x420 [ 380.112137] ? ioctl_preallocate+0x300/0x300 [ 380.116534] ? __fget_light+0x2e9/0x430 [ 380.120508] ? fget_raw+0x20/0x20 [ 380.123984] ? __sb_end_write+0xd9/0x110 [ 380.128040] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 380.133574] ? fput+0x130/0x1a0 [ 380.136841] ? ksys_write+0x1ae/0x260 [ 380.140638] ? security_file_ioctl+0x94/0xc0 [ 380.145034] ksys_ioctl+0xa9/0xd0 [ 380.148480] __x64_sys_ioctl+0x73/0xb0 [ 380.152370] do_syscall_64+0x1b9/0x820 [ 380.156255] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 380.161704] ? syscall_return_slowpath+0x5e0/0x5e0 [ 380.166641] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 380.171575] ? trace_hardirqs_on_caller+0x310/0x310 [ 380.176586] ? prepare_exit_to_usermode+0x291/0x3b0 [ 380.181593] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 380.186440] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 380.191626] RIP: 0033:0x457579 [ 380.194806] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 380.213699] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:15 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) setgid(0x0) 00:13:15 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$can_raw(0x1d, 0x3, 0x1) sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000), 0xc, &(0x7f000000e600)={&(0x7f0000000640)=ANY=[]}}, 0x0) setsockopt(r1, 0x65, 0x5, &(0x7f0000000000), 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) sendmsg$can_raw(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x1d, r2}, 0x10, &(0x7f00000000c0)={&(0x7f00000001c0)=@canfd={{}, 0x0, 0x0, 0x0, 0x0, "1c851cf1f800a8a70ac08f5d1c8657a2e0fb06900c619a982b2597373a751339759f5fe394423a073a64fc4b11b6c116a95230690ec8767938d7d4b9e55299e3"}, 0x48}}, 0x0) [ 380.221413] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 380.228668] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 380.235929] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 380.243188] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 380.250476] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:15 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x58201, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r1, 0x4010641a, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[0x8]}) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xc000, 0x80) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:15 executing program 2 (fault-call:6 fault-nth:13): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:15 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha512_mb\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f0000000000), 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000280)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r2, 0x0, 0x0, 0x25dfdbfd}, 0x14}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)}}, 0x20) sendfile(r1, r3, &(0x7f00000002c0), 0x10000000000445) accept$alg(r1, 0x0, 0x0) 00:13:15 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x500, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:15 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x12, 0xbd, 0x4, 0x400000000078}, 0x2c) [ 380.432464] FAULT_INJECTION: forcing a failure. [ 380.432464] name failslab, interval 1, probability 0, space 0, times 0 [ 380.453695] CPU: 1 PID: 18706 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 380.462220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.471571] Call Trace: [ 380.474160] dump_stack+0x1d3/0x2c4 [ 380.477796] ? dump_stack_print_info.cold.2+0x52/0x52 [ 380.483101] ? __kernel_text_address+0xd/0x40 [ 380.487591] ? unwind_get_return_address+0x61/0xa0 [ 380.492521] should_fail.cold.4+0xa/0x17 [ 380.496578] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 380.501683] ? save_stack+0xa9/0xd0 [ 380.505301] ? kasan_kmalloc+0xc7/0xe0 [ 380.509185] ? kasan_slab_alloc+0x12/0x20 [ 380.513319] ? kmem_cache_alloc+0x12e/0x730 [ 380.517635] ? mmu_topup_memory_caches+0xf7/0x390 [ 380.522473] ? kvm_mmu_load+0x21/0xfa0 [ 380.526351] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 380.530834] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 380.535840] ? do_vfs_ioctl+0x1de/0x1720 [ 380.539895] ? ksys_ioctl+0xa9/0xd0 [ 380.543595] ? __x64_sys_ioctl+0x73/0xb0 [ 380.547641] ? do_syscall_64+0x1b9/0x820 [ 380.551698] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 380.557052] ? percpu_ref_put_many+0x11c/0x260 [ 380.561626] ? lock_downgrade+0x900/0x900 [ 380.565766] ? lock_release+0x970/0x970 [ 380.569758] ? fs_reclaim_acquire+0x20/0x20 [ 380.574072] ? lock_downgrade+0x900/0x900 [ 380.578227] ? check_same_owner+0x330/0x330 [ 380.583024] ? percpu_ref_put_many+0x13e/0x260 [ 380.587595] ? trace_hardirqs_on+0xbd/0x310 [ 380.591916] __should_failslab+0x124/0x180 [ 380.596138] should_failslab+0x9/0x14 [ 380.599925] kmem_cache_alloc+0x2be/0x730 [ 380.604061] ? vmx_flush_tlb_gva+0x380/0x380 [ 380.608461] ? ima_get_action+0x7e/0xa0 [ 380.612439] ? mmu_topup_memory_caches+0xf7/0x390 [ 380.617274] mmu_topup_memory_caches+0xf7/0x390 [ 380.621945] kvm_mmu_load+0x21/0xfa0 [ 380.625660] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 380.630935] vcpu_enter_guest+0x3e6d/0x62f0 [ 380.635266] ? emulator_read_emulated+0x50/0x50 [ 380.639926] ? vmx_vcpu_load+0xb06/0x1030 [ 380.644063] ? mark_held_locks+0x130/0x130 [ 380.648288] ? vmx_write_tsc_offset+0x670/0x670 [ 380.652960] ? lock_downgrade+0x900/0x900 [ 380.657115] ? lock_acquire+0x1ed/0x520 [ 380.661080] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 380.666102] ? preempt_count_add+0x7d/0x160 [ 380.670430] ? lock_release+0x970/0x970 [ 380.674394] ? kvm_gen_update_masterclock+0x350/0x350 [ 380.679591] ? kvm_arch_dev_ioctl+0x630/0x630 [ 380.684074] ? preempt_notifier_dec+0x20/0x20 [ 380.688569] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 380.693397] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 380.698415] kvm_vcpu_ioctl+0x5c8/0x1150 [ 380.702469] ? kvm_vcpu_block+0x1020/0x1020 [ 380.706809] ? __fget+0x4aa/0x740 [ 380.710275] ? workqueue_online_cpu+0x80/0xad0 [ 380.714851] ? __f_unlock_pos+0x19/0x20 [ 380.718907] ? __fget+0x4d1/0x740 [ 380.722357] ? ksys_dup3+0x680/0x680 [ 380.726070] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 380.731006] ? kvm_vcpu_block+0x1020/0x1020 [ 380.735318] do_vfs_ioctl+0x1de/0x1720 [ 380.739479] ? fsnotify_first_mark+0x350/0x350 [ 380.744051] ? __fsnotify_parent+0xcc/0x420 [ 380.748388] ? ioctl_preallocate+0x300/0x300 [ 380.752788] ? __fget_light+0x2e9/0x430 [ 380.756754] ? fget_raw+0x20/0x20 [ 380.760203] ? __sb_end_write+0xd9/0x110 [ 380.764270] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 380.769798] ? fput+0x130/0x1a0 [ 380.773066] ? ksys_write+0x1ae/0x260 [ 380.776859] ? security_file_ioctl+0x94/0xc0 [ 380.781256] ksys_ioctl+0xa9/0xd0 [ 380.784697] __x64_sys_ioctl+0x73/0xb0 [ 380.788573] do_syscall_64+0x1b9/0x820 [ 380.792448] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 380.797811] ? syscall_return_slowpath+0x5e0/0x5e0 [ 380.802726] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 380.807557] ? trace_hardirqs_on_caller+0x310/0x310 [ 380.812559] ? prepare_exit_to_usermode+0x291/0x3b0 [ 380.817671] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 380.822521] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 380.827697] RIP: 0033:0x457579 [ 380.830879] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 380.849780] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 380.857481] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 380.864737] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 380.871988] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 00:13:15 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x2, 0x5, 0x0) setsockopt$sock_attach_bpf(r0, 0x84, 0x7b, &(0x7f0000000180), 0xc) perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 00:13:15 executing program 2 (fault-call:6 fault-nth:14): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 380.879343] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 380.886595] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:15 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000000013002d54036205001a00208f8c0118895d1865c6d6a07d0c63e493ce81f586cebafc22000000000000001ac600b2"], 0x38}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x20, 0x0) 00:13:15 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x2000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 381.015243] FAULT_INJECTION: forcing a failure. [ 381.015243] name failslab, interval 1, probability 0, space 0, times 0 [ 381.030489] CPU: 0 PID: 18731 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 381.038985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.048333] Call Trace: [ 381.050931] dump_stack+0x1d3/0x2c4 [ 381.054572] ? dump_stack_print_info.cold.2+0x52/0x52 [ 381.059776] ? __kernel_text_address+0xd/0x40 [ 381.064257] ? unwind_get_return_address+0x61/0xa0 [ 381.069196] should_fail.cold.4+0xa/0x17 [ 381.073352] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 381.078588] ? save_stack+0xa9/0xd0 [ 381.082205] ? kasan_kmalloc+0xc7/0xe0 [ 381.086076] ? kasan_slab_alloc+0x12/0x20 [ 381.090203] ? kmem_cache_alloc+0x12e/0x730 [ 381.094517] ? mmu_topup_memory_caches+0xf7/0x390 [ 381.099339] ? kvm_mmu_load+0x21/0xfa0 [ 381.103210] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 381.107687] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 381.112687] ? do_vfs_ioctl+0x1de/0x1720 [ 381.116744] ? ksys_ioctl+0xa9/0xd0 [ 381.120373] ? __x64_sys_ioctl+0x73/0xb0 [ 381.124433] ? do_syscall_64+0x1b9/0x820 [ 381.128489] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 381.133844] ? percpu_ref_put_many+0x11c/0x260 [ 381.138440] ? lock_downgrade+0x900/0x900 [ 381.142676] ? lock_release+0x970/0x970 [ 381.146642] ? fs_reclaim_acquire+0x20/0x20 [ 381.150947] ? lock_downgrade+0x900/0x900 [ 381.155079] ? check_same_owner+0x330/0x330 [ 381.159406] ? percpu_ref_put_many+0x13e/0x260 [ 381.163974] ? trace_hardirqs_on+0xbd/0x310 00:13:15 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha384\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 381.168395] __should_failslab+0x124/0x180 [ 381.172707] should_failslab+0x9/0x14 [ 381.176507] kmem_cache_alloc+0x2be/0x730 [ 381.180659] ? vmx_flush_tlb_gva+0x380/0x380 [ 381.185073] ? ima_get_action+0x7e/0xa0 [ 381.189138] ? mmu_topup_memory_caches+0xf7/0x390 [ 381.194010] mmu_topup_memory_caches+0xf7/0x390 [ 381.198678] kvm_mmu_load+0x21/0xfa0 [ 381.202397] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 381.207682] vcpu_enter_guest+0x3e6d/0x62f0 [ 381.212020] ? emulator_read_emulated+0x50/0x50 [ 381.216718] ? vmx_vcpu_load+0xb06/0x1030 [ 381.220876] ? mark_held_locks+0x130/0x130 [ 381.225228] ? vmx_write_tsc_offset+0x670/0x670 [ 381.229910] ? lock_downgrade+0x900/0x900 [ 381.234077] ? lock_acquire+0x1ed/0x520 [ 381.238053] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 381.243075] ? preempt_count_add+0x7d/0x160 [ 381.247390] ? lock_release+0x970/0x970 [ 381.251370] ? kvm_gen_update_masterclock+0x350/0x350 [ 381.256546] ? kvm_arch_dev_ioctl+0x630/0x630 [ 381.261037] ? preempt_notifier_dec+0x20/0x20 [ 381.265517] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 381.270347] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 381.275372] kvm_vcpu_ioctl+0x5c8/0x1150 [ 381.279420] ? kvm_vcpu_block+0x1020/0x1020 [ 381.283730] ? __fget+0x4aa/0x740 [ 381.287168] ? workqueue_online_cpu+0x80/0xad0 [ 381.291731] ? __f_unlock_pos+0x19/0x20 [ 381.295690] ? __fget+0x4d1/0x740 [ 381.299128] ? ksys_dup3+0x680/0x680 [ 381.302831] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 381.307744] ? kvm_vcpu_block+0x1020/0x1020 [ 381.312066] do_vfs_ioctl+0x1de/0x1720 [ 381.315943] ? fsnotify_first_mark+0x350/0x350 [ 381.320506] ? __fsnotify_parent+0xcc/0x420 [ 381.324813] ? ioctl_preallocate+0x300/0x300 [ 381.329200] ? __fget_light+0x2e9/0x430 [ 381.333244] ? fget_raw+0x20/0x20 [ 381.336680] ? __sb_end_write+0xd9/0x110 [ 381.340750] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 381.346273] ? fput+0x130/0x1a0 [ 381.349534] ? ksys_write+0x1ae/0x260 [ 381.353329] ? security_file_ioctl+0x94/0xc0 [ 381.357718] ksys_ioctl+0xa9/0xd0 [ 381.361159] __x64_sys_ioctl+0x73/0xb0 [ 381.365160] do_syscall_64+0x1b9/0x820 [ 381.369031] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 381.374380] ? syscall_return_slowpath+0x5e0/0x5e0 [ 381.379314] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 381.384151] ? trace_hardirqs_on_caller+0x310/0x310 [ 381.389159] ? prepare_exit_to_usermode+0x291/0x3b0 [ 381.394161] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 381.398988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 381.404158] RIP: 0033:0x457579 00:13:16 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x40) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x80000001, 0x400) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f00000000c0)={0x0, 0x27, "90e60bfa7f279bee5aab3e87f7d6f59350e313f46781edf3bb31d83b9bb2c58fa18f214dca33db"}, &(0x7f0000000100)=0x2f) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000140)={r2, 0xfffffffffffffff9}, &(0x7f0000000280)=0x8) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000000)=ANY=[@ANYRES64=0x0], 0x8) keyctl$session_to_parent(0x12) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:16 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0xfffffe54, &(0x7f0000000b00)=[{&(0x7f00000000c0)=""/78, 0x4e}, {&(0x7f00000023c0)=""/4096, 0xffffffffffffff4a}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d, 0x3}, 0x0) 00:13:16 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/arp\x00') dup2(r0, r0) [ 381.407333] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 381.426222] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 381.433914] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 381.441165] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 381.448414] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 381.455860] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 381.463115] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:16 executing program 2 (fault-call:6 fault-nth:15): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:16 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), &(0x7f0000000240)}}], 0x0, 0x0, &(0x7f00000003c0)}) 00:13:16 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x4000000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:16 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ab553fec94248c32e27d04000000288a", 0xfffffffffffffff2) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0x0) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) pipe(&(0x7f00000006c0)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000700), &(0x7f0000000740)=0x4) 00:13:16 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000240)=ANY=[], &(0x7f00000001c0)) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x615, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) shmget(0x2, 0x2000, 0x2, &(0x7f0000ffb000/0x2000)=nil) [ 381.593245] binder_alloc: 18765: binder_alloc_buf, no vma [ 381.610168] binder: 18765:18766 transaction failed 29189/-3, size 0-0 line 2973 [ 381.626770] FAULT_INJECTION: forcing a failure. [ 381.626770] name failslab, interval 1, probability 0, space 0, times 0 00:13:16 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = dup3(r0, r0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000280)={@remote, @loopback, @loopback, 0x20, 0x0, 0x10001, 0x0, 0x7, 0x2400000, r2}) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x105000, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r4, 0x800442d3, &(0x7f00000000c0)={0x0, 0x39c, 0x5, @empty, 'ip6_vti0\x00'}) accept$alg(r0, 0x0, 0x0) write$P9_RWRITE(r4, &(0x7f0000000040)={0xb, 0x77, 0x2}, 0xb) [ 381.639024] CPU: 0 PID: 18770 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 381.647532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.656886] Call Trace: [ 381.656909] dump_stack+0x1d3/0x2c4 [ 381.656929] ? dump_stack_print_info.cold.2+0x52/0x52 [ 381.663156] ? __kernel_text_address+0xd/0x40 [ 381.663176] ? unwind_get_return_address+0x61/0xa0 [ 381.677784] should_fail.cold.4+0xa/0x17 [ 381.681901] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 381.687024] ? save_stack+0xa9/0xd0 [ 381.690642] ? kasan_kmalloc+0xc7/0xe0 [ 381.694513] ? kasan_slab_alloc+0x12/0x20 [ 381.698647] ? kmem_cache_alloc+0x12e/0x730 [ 381.702964] ? mmu_topup_memory_caches+0xf7/0x390 [ 381.707805] ? kvm_mmu_load+0x21/0xfa0 [ 381.711694] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 381.716173] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 381.721179] ? do_vfs_ioctl+0x1de/0x1720 [ 381.725222] ? ksys_ioctl+0xa9/0xd0 [ 381.728833] ? __x64_sys_ioctl+0x73/0xb0 [ 381.732888] ? do_syscall_64+0x1b9/0x820 [ 381.736937] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 381.742289] ? percpu_ref_put_many+0x11c/0x260 [ 381.746860] ? lock_downgrade+0x900/0x900 [ 381.750994] ? lock_release+0x970/0x970 [ 381.754956] ? fs_reclaim_acquire+0x20/0x20 [ 381.759266] ? lock_downgrade+0x900/0x900 [ 381.763401] ? check_same_owner+0x330/0x330 [ 381.767708] ? percpu_ref_put_many+0x13e/0x260 [ 381.772276] ? trace_hardirqs_on+0xbd/0x310 [ 381.776602] __should_failslab+0x124/0x180 [ 381.780822] should_failslab+0x9/0x14 [ 381.784608] kmem_cache_alloc+0x2be/0x730 [ 381.788740] ? vmx_flush_tlb_gva+0x380/0x380 [ 381.793137] ? ima_get_action+0x7e/0xa0 [ 381.797100] ? mmu_topup_memory_caches+0xf7/0x390 [ 381.801936] mmu_topup_memory_caches+0xf7/0x390 [ 381.806593] kvm_mmu_load+0x21/0xfa0 [ 381.810295] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 381.815574] vcpu_enter_guest+0x3e6d/0x62f0 [ 381.819903] ? emulator_read_emulated+0x50/0x50 [ 381.824576] ? vmx_vcpu_load+0xb06/0x1030 [ 381.828711] ? mark_held_locks+0x130/0x130 [ 381.832931] ? vmx_write_tsc_offset+0x670/0x670 [ 381.837583] ? lock_downgrade+0x900/0x900 [ 381.841832] ? lock_acquire+0x1ed/0x520 [ 381.845793] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 381.850793] ? preempt_count_add+0x7d/0x160 [ 381.855099] ? lock_release+0x970/0x970 [ 381.859062] ? kvm_gen_update_masterclock+0x350/0x350 [ 381.864234] ? kvm_arch_dev_ioctl+0x630/0x630 [ 381.868712] ? preempt_notifier_dec+0x20/0x20 [ 381.873198] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 381.878130] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 381.883157] kvm_vcpu_ioctl+0x5c8/0x1150 [ 381.887206] ? kvm_vcpu_block+0x1020/0x1020 [ 381.891526] ? __fget+0x4aa/0x740 [ 381.894990] ? workqueue_online_cpu+0x80/0xad0 [ 381.899573] ? __f_unlock_pos+0x19/0x20 [ 381.903544] ? __fget+0x4d1/0x740 [ 381.906987] ? ksys_dup3+0x680/0x680 [ 381.910704] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 381.915620] ? kvm_vcpu_block+0x1020/0x1020 [ 381.919927] do_vfs_ioctl+0x1de/0x1720 [ 381.923905] ? fsnotify_first_mark+0x350/0x350 [ 381.928472] ? __fsnotify_parent+0xcc/0x420 [ 381.932781] ? ioctl_preallocate+0x300/0x300 [ 381.937187] ? __fget_light+0x2e9/0x430 [ 381.941147] ? fget_raw+0x20/0x20 [ 381.944672] ? __sb_end_write+0xd9/0x110 [ 381.948722] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 381.954244] ? fput+0x130/0x1a0 [ 381.957510] ? ksys_write+0x1ae/0x260 [ 381.961309] ? security_file_ioctl+0x94/0xc0 [ 381.965703] ksys_ioctl+0xa9/0xd0 [ 381.969143] __x64_sys_ioctl+0x73/0xb0 [ 381.973015] do_syscall_64+0x1b9/0x820 [ 381.976886] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 381.982244] ? syscall_return_slowpath+0x5e0/0x5e0 [ 381.987158] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 381.991987] ? trace_hardirqs_on_caller+0x310/0x310 [ 381.997078] ? prepare_exit_to_usermode+0x291/0x3b0 [ 382.002103] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 382.006934] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.012137] RIP: 0033:0x457579 [ 382.015317] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 382.034214] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 382.041909] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 382.049162] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 382.056413] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 382.063694] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 382.070951] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 [ 382.079416] binder: BINDER_SET_CONTEXT_MGR already set [ 382.086926] binder: 18765:18784 ioctl 40046207 0 returned -16 00:13:16 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000080)={'rose0\x00', 0x5001}) r1 = socket$key(0xf, 0x3, 0x2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="0209000002000000000000002f000000"], 0x10}}, 0x0) sendmmsg(r1, &(0x7f0000000180), 0x400000000000002, 0x0) 00:13:16 executing program 2 (fault-call:6 fault-nth:16): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:16 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x1100000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:16 executing program 1: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000140)) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, &(0x7f0000a88f88), 0x0, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x12, 0xbd, 0x4, 0x400000000078}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r1, &(0x7f0000000000), &(0x7f0000000140), 0x2}, 0x20) [ 382.093554] binder_alloc: 18765: binder_alloc_buf, no vma [ 382.099555] binder: undelivered TRANSACTION_ERROR: 29189 [ 382.111828] binder: 18765:18766 transaction failed 29189/-3, size 0-0 line 2973 [ 382.119764] binder: undelivered TRANSACTION_ERROR: 29189 [ 382.214838] FAULT_INJECTION: forcing a failure. [ 382.214838] name failslab, interval 1, probability 0, space 0, times 0 [ 382.226295] CPU: 1 PID: 18793 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 382.234804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.244150] Call Trace: [ 382.246738] dump_stack+0x1d3/0x2c4 [ 382.250383] ? dump_stack_print_info.cold.2+0x52/0x52 [ 382.255595] should_fail.cold.4+0xa/0x17 [ 382.259650] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 382.264744] ? save_stack+0xa9/0xd0 [ 382.268359] ? kasan_kmalloc+0xc7/0xe0 [ 382.272234] ? kasan_slab_alloc+0x12/0x20 [ 382.276368] ? kmem_cache_alloc+0x12e/0x730 [ 382.280679] ? mmu_topup_memory_caches+0xf7/0x390 [ 382.285515] ? kvm_mmu_load+0x21/0xfa0 [ 382.289442] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 382.294012] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 382.299024] ? do_vfs_ioctl+0x1de/0x1720 [ 382.303071] ? ksys_ioctl+0xa9/0xd0 [ 382.306708] ? __x64_sys_ioctl+0x73/0xb0 [ 382.310763] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.316136] ? percpu_ref_put_many+0x11c/0x260 [ 382.320708] ? lock_downgrade+0x900/0x900 [ 382.324849] ? zap_class+0x640/0x640 [ 382.328557] ? fs_reclaim_acquire+0x20/0x20 [ 382.332867] ? lock_downgrade+0x900/0x900 [ 382.337023] ? check_same_owner+0x330/0x330 [ 382.341334] ? percpu_ref_put_many+0x13e/0x260 [ 382.345908] ? trace_hardirqs_on+0xbd/0x310 [ 382.350226] __should_failslab+0x124/0x180 [ 382.354452] should_failslab+0x9/0x14 [ 382.358253] kmem_cache_alloc+0x2be/0x730 [ 382.362387] ? vmx_flush_tlb_gva+0x380/0x380 [ 382.366786] ? mmu_topup_memory_caches+0xf7/0x390 [ 382.371619] mmu_topup_memory_caches+0xf7/0x390 [ 382.376282] kvm_mmu_load+0x21/0xfa0 [ 382.379987] ? zap_class+0x640/0x640 [ 382.383710] vcpu_enter_guest+0x3e6d/0x62f0 [ 382.388044] ? emulator_read_emulated+0x50/0x50 [ 382.392703] ? zap_class+0x640/0x640 [ 382.396404] ? vmx_vcpu_load+0xb06/0x1030 [ 382.400541] ? mark_held_locks+0x130/0x130 [ 382.404766] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 382.410378] ? vmx_write_tsc_offset+0x670/0x670 [ 382.415434] ? check_preemption_disabled+0x48/0x200 [ 382.420441] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 382.425967] ? check_preemption_disabled+0x48/0x200 [ 382.430988] ? lock_acquire+0x1ed/0x520 [ 382.434953] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 382.439961] ? preempt_count_add+0x7d/0x160 [ 382.444291] ? lock_release+0x970/0x970 [ 382.448255] ? kvm_gen_update_masterclock+0x350/0x350 [ 382.453445] ? kvm_arch_dev_ioctl+0x630/0x630 [ 382.457942] ? preempt_notifier_dec+0x20/0x20 [ 382.462612] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 382.467543] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 382.472559] kvm_vcpu_ioctl+0x5c8/0x1150 [ 382.476612] ? kvm_vcpu_block+0x1020/0x1020 [ 382.480935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 382.486461] ? zap_class+0x640/0x640 [ 382.490183] ? __fget+0x4aa/0x740 [ 382.493653] ? zap_class+0x640/0x640 [ 382.497359] ? __f_unlock_pos+0x19/0x20 [ 382.501325] ? __fget+0x4d1/0x740 [ 382.504773] ? ksys_dup3+0x680/0x680 [ 382.508479] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 382.513425] ? kvm_vcpu_block+0x1020/0x1020 [ 382.517736] do_vfs_ioctl+0x1de/0x1720 [ 382.521614] ? fsnotify_first_mark+0x350/0x350 [ 382.526187] ? ioctl_preallocate+0x300/0x300 [ 382.530588] ? __fget_light+0x2e9/0x430 [ 382.534636] ? fget_raw+0x20/0x20 [ 382.538082] ? __sb_end_write+0xd9/0x110 [ 382.542251] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 382.547787] ? fput+0x130/0x1a0 [ 382.551056] ? ksys_write+0x1ae/0x260 [ 382.554851] ? security_file_ioctl+0x94/0xc0 [ 382.559247] ksys_ioctl+0xa9/0xd0 [ 382.562695] __x64_sys_ioctl+0x73/0xb0 [ 382.566586] do_syscall_64+0x1b9/0x820 [ 382.570486] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 382.575860] ? syscall_return_slowpath+0x5e0/0x5e0 [ 382.581366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 382.586203] ? trace_hardirqs_on_caller+0x310/0x310 [ 382.591214] ? prepare_exit_to_usermode+0x291/0x3b0 [ 382.596223] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 382.601065] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.606243] RIP: 0033:0x457579 [ 382.609429] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 382.628402] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 382.636102] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 382.643357] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 382.650615] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 382.657874] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:17 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xfffffffffffffffe, 0x400200) ioctl$VT_WAITACTIVE(r1, 0x5607) ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0x4) getsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000280), &(0x7f00000002c0)=0x2) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) fstat(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl(0x1, &(0x7f0000000040)='./file0\x00', r3, &(0x7f0000000140)="153f0b2847256194") write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:17 executing program 2 (fault-call:6 fault-nth:17): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 382.665131] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:17 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xa00000000000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:17 executing program 1: syz_mount_image$msdos(&(0x7f0000000500)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000540)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x18, &(0x7f0000000580)=ANY=[]) r0 = open(&(0x7f0000000800)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r1, &(0x7f0000000980)={0x8, "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", 0x1000}, 0x1006) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000340), &(0x7f0000000380)=0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) sendfile(r1, r1, &(0x7f00000000c0), 0x8080fffffffe) 00:13:17 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={'\x00', {0x2, 0x4e24, @multicast1}}) 00:13:17 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000200), &(0x7f0000000240)=[0x0]}}], 0x0, 0x0, &(0x7f00000003c0)}) [ 382.781613] FAULT_INJECTION: forcing a failure. [ 382.781613] name failslab, interval 1, probability 0, space 0, times 0 [ 382.809332] CPU: 1 PID: 18812 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 382.817945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.827309] Call Trace: [ 382.829927] dump_stack+0x1d3/0x2c4 [ 382.833586] ? dump_stack_print_info.cold.2+0x52/0x52 [ 382.835931] binder: 18823:18824 transaction failed 29189/-22, size 0-8 line 2834 [ 382.838827] ? __kernel_text_address+0xd/0x40 [ 382.838849] ? unwind_get_return_address+0x61/0xa0 [ 382.847899] binder: 18823:18827 transaction failed 29189/-22, size 0-8 line 2834 [ 382.850869] should_fail.cold.4+0xa/0x17 [ 382.850888] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 382.850905] ? save_stack+0xa9/0xd0 [ 382.850916] ? kasan_kmalloc+0xc7/0xe0 [ 382.850933] ? kasan_slab_alloc+0x12/0x20 [ 382.856048] binder: undelivered TRANSACTION_ERROR: 29189 [ 382.863364] ? kmem_cache_alloc+0x12e/0x730 [ 382.863381] ? mmu_topup_memory_caches+0xf7/0x390 [ 382.863392] ? kvm_mmu_load+0x21/0xfa0 [ 382.863405] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 382.863421] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 382.875003] binder: undelivered TRANSACTION_ERROR: 29189 [ 382.876172] ? do_vfs_ioctl+0x1de/0x1720 [ 382.876184] ? ksys_ioctl+0xa9/0xd0 [ 382.876193] ? __x64_sys_ioctl+0x73/0xb0 [ 382.876211] ? do_syscall_64+0x1b9/0x820 [ 382.933549] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 382.938913] ? percpu_ref_put_many+0x11c/0x260 [ 382.943489] ? lock_downgrade+0x900/0x900 [ 382.947629] ? lock_release+0x970/0x970 [ 382.951598] ? fs_reclaim_acquire+0x20/0x20 [ 382.955912] ? lock_downgrade+0x900/0x900 [ 382.960070] ? check_same_owner+0x330/0x330 [ 382.964490] ? percpu_ref_put_many+0x13e/0x260 [ 382.969076] ? trace_hardirqs_on+0xbd/0x310 [ 382.973502] __should_failslab+0x124/0x180 [ 382.977732] should_failslab+0x9/0x14 [ 382.981524] kmem_cache_alloc+0x2be/0x730 [ 382.985658] ? vmx_flush_tlb_gva+0x380/0x380 [ 382.990069] ? ima_get_action+0x7e/0xa0 [ 382.994049] ? mmu_topup_memory_caches+0xf7/0x390 [ 382.998884] mmu_topup_memory_caches+0xf7/0x390 [ 383.003552] kvm_mmu_load+0x21/0xfa0 [ 383.007260] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 383.012542] vcpu_enter_guest+0x3e6d/0x62f0 [ 383.016948] ? emulator_read_emulated+0x50/0x50 [ 383.021702] ? vmx_vcpu_load+0xb06/0x1030 [ 383.025854] ? mark_held_locks+0x130/0x130 [ 383.030081] ? vmx_write_tsc_offset+0x670/0x670 [ 383.034754] ? lock_downgrade+0x900/0x900 [ 383.038910] ? lock_acquire+0x1ed/0x520 [ 383.042966] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 383.047973] ? preempt_count_add+0x7d/0x160 [ 383.052288] ? lock_release+0x970/0x970 [ 383.056253] ? kvm_gen_update_masterclock+0x350/0x350 [ 383.061432] ? kvm_arch_dev_ioctl+0x630/0x630 [ 383.065921] ? preempt_notifier_dec+0x20/0x20 [ 383.070420] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 383.075259] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 383.080273] kvm_vcpu_ioctl+0x5c8/0x1150 [ 383.084323] ? kvm_vcpu_block+0x1020/0x1020 [ 383.088655] ? __fget+0x4aa/0x740 [ 383.092108] ? workqueue_online_cpu+0x80/0xad0 [ 383.096684] ? __f_unlock_pos+0x19/0x20 [ 383.100653] ? __fget+0x4d1/0x740 [ 383.104098] ? ksys_dup3+0x680/0x680 [ 383.107821] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 383.112745] ? kvm_vcpu_block+0x1020/0x1020 [ 383.117057] do_vfs_ioctl+0x1de/0x1720 [ 383.120959] ? fsnotify_first_mark+0x350/0x350 [ 383.125538] ? __fsnotify_parent+0xcc/0x420 [ 383.129963] ? ioctl_preallocate+0x300/0x300 [ 383.134360] ? __fget_light+0x2e9/0x430 [ 383.138324] ? fget_raw+0x20/0x20 [ 383.141773] ? __sb_end_write+0xd9/0x110 [ 383.145941] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 383.151471] ? fput+0x130/0x1a0 [ 383.154739] ? ksys_write+0x1ae/0x260 [ 383.158534] ? security_file_ioctl+0x94/0xc0 [ 383.162931] ksys_ioctl+0xa9/0xd0 [ 383.166376] __x64_sys_ioctl+0x73/0xb0 [ 383.170263] do_syscall_64+0x1b9/0x820 [ 383.174237] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 383.179591] ? syscall_return_slowpath+0x5e0/0x5e0 [ 383.184512] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 383.189358] ? trace_hardirqs_on_caller+0x310/0x310 [ 383.194472] ? prepare_exit_to_usermode+0x291/0x3b0 [ 383.199480] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 383.204317] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 383.209495] RIP: 0033:0x457579 [ 383.212690] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00:13:17 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000140)) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, &(0x7f0000a88f88), 0x0, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x12, 0xbd, 0x4, 0x400000000078}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r1, &(0x7f0000000000), &(0x7f0000000140)}, 0x20) [ 383.231596] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.239293] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 383.246653] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 383.253910] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 383.261170] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 383.268430] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:18 executing program 2 (fault-call:6 fault-nth:18): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:18 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xffffff7f00000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:18 executing program 3: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000080)={&(0x7f0000791000), 0xc, &(0x7f0000dd0ff0)={&(0x7f0000d3dc98)={0x14, 0x13, 0x800000a, 0xffffffffffffffff}, 0x14}}, 0x0) 00:13:18 executing program 1: syz_open_procfs(0x0, &(0x7f0000000100)='gid_map\x00') [ 383.410292] FAULT_INJECTION: forcing a failure. [ 383.410292] name failslab, interval 1, probability 0, space 0, times 0 [ 383.424857] CPU: 0 PID: 18842 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 383.433376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.442730] Call Trace: [ 383.445327] dump_stack+0x1d3/0x2c4 [ 383.448945] ? dump_stack_print_info.cold.2+0x52/0x52 [ 383.454125] ? __kernel_text_address+0xd/0x40 [ 383.458608] ? unwind_get_return_address+0x61/0xa0 [ 383.463537] should_fail.cold.4+0xa/0x17 [ 383.467606] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 383.472712] ? save_stack+0xa9/0xd0 [ 383.476327] ? kasan_kmalloc+0xc7/0xe0 [ 383.480199] ? kasan_slab_alloc+0x12/0x20 [ 383.484332] ? kmem_cache_alloc+0x12e/0x730 [ 383.488640] ? mmu_topup_memory_caches+0xf7/0x390 [ 383.493469] ? kvm_mmu_load+0x21/0xfa0 [ 383.497341] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 383.501820] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 383.506822] ? do_vfs_ioctl+0x1de/0x1720 [ 383.510869] ? ksys_ioctl+0xa9/0xd0 [ 383.514479] ? __x64_sys_ioctl+0x73/0xb0 [ 383.518521] ? do_syscall_64+0x1b9/0x820 [ 383.522569] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 383.527922] ? percpu_ref_put_many+0x11c/0x260 [ 383.532495] ? lock_downgrade+0x900/0x900 [ 383.536633] ? lock_release+0x970/0x970 [ 383.540599] ? fs_reclaim_acquire+0x20/0x20 [ 383.544926] ? lock_downgrade+0x900/0x900 [ 383.549061] ? check_same_owner+0x330/0x330 [ 383.553369] ? percpu_ref_put_many+0x13e/0x260 [ 383.557949] ? trace_hardirqs_on+0xbd/0x310 [ 383.562261] __should_failslab+0x124/0x180 [ 383.566484] should_failslab+0x9/0x14 [ 383.570270] kmem_cache_alloc+0x2be/0x730 [ 383.574413] ? vmx_flush_tlb_gva+0x380/0x380 [ 383.578839] ? ima_get_action+0x7e/0xa0 [ 383.582820] ? mmu_topup_memory_caches+0xf7/0x390 [ 383.587651] mmu_topup_memory_caches+0xf7/0x390 [ 383.592310] kvm_mmu_load+0x21/0xfa0 [ 383.596011] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 383.601291] vcpu_enter_guest+0x3e6d/0x62f0 [ 383.605601] ? emulator_read_emulated+0x50/0x50 [ 383.610364] ? vmx_vcpu_load+0xb06/0x1030 [ 383.614503] ? mark_held_locks+0x130/0x130 [ 383.618724] ? vmx_write_tsc_offset+0x670/0x670 [ 383.623377] ? lock_downgrade+0x900/0x900 [ 383.627643] ? lock_acquire+0x1ed/0x520 [ 383.631622] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 383.636621] ? preempt_count_add+0x7d/0x160 [ 383.640930] ? lock_release+0x970/0x970 [ 383.644887] ? kvm_gen_update_masterclock+0x350/0x350 [ 383.650078] ? kvm_arch_dev_ioctl+0x630/0x630 [ 383.654557] ? preempt_notifier_dec+0x20/0x20 [ 383.659042] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 383.663870] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 383.668879] kvm_vcpu_ioctl+0x5c8/0x1150 [ 383.672940] ? kvm_vcpu_block+0x1020/0x1020 [ 383.677251] ? __fget+0x4aa/0x740 [ 383.680691] ? workqueue_online_cpu+0x80/0xad0 [ 383.685259] ? __f_unlock_pos+0x19/0x20 [ 383.689221] ? __fget+0x4d1/0x740 [ 383.692672] ? ksys_dup3+0x680/0x680 [ 383.696378] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 383.701309] ? kvm_vcpu_block+0x1020/0x1020 [ 383.705631] do_vfs_ioctl+0x1de/0x1720 [ 383.709503] ? fsnotify_first_mark+0x350/0x350 [ 383.714245] ? __fsnotify_parent+0xcc/0x420 [ 383.718728] ? ioctl_preallocate+0x300/0x300 [ 383.723119] ? __fget_light+0x2e9/0x430 [ 383.727075] ? fget_raw+0x20/0x20 [ 383.730518] ? __sb_end_write+0xd9/0x110 [ 383.734566] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 383.740088] ? fput+0x130/0x1a0 [ 383.743356] ? ksys_write+0x1ae/0x260 [ 383.747150] ? security_file_ioctl+0x94/0xc0 [ 383.751545] ksys_ioctl+0xa9/0xd0 [ 383.754980] __x64_sys_ioctl+0x73/0xb0 [ 383.758965] do_syscall_64+0x1b9/0x820 [ 383.762836] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 383.768300] ? syscall_return_slowpath+0x5e0/0x5e0 [ 383.773213] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 383.778042] ? trace_hardirqs_on_caller+0x310/0x310 [ 383.783047] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 383.788051] ? prepare_exit_to_usermode+0x291/0x3b0 [ 383.793141] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 383.797973] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 383.803148] RIP: 0033:0x457579 [ 383.806330] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 383.825212] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.832918] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 383.840172] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 383.847427] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 383.854680] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:18 executing program 2 (fault-call:6 fault-nth:19): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:18 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) accept4$alg(r0, 0x0, 0x0, 0x80800) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:18 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x2002c0, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x101, 0x80) ioctl$VT_SETMODE(r2, 0x5602, &(0x7f0000000040)={0x3, 0x8, 0x8, 0xea4, 0x4}) [ 383.861935] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:18 executing program 3: getgroups(0x2, &(0x7f0000000200)=[0xffffffffffffffff, 0xffffffffffffffff]) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, r0}}) 00:13:18 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x8000a0, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:18 executing program 1: r0 = socket$l2tp(0x18, 0x1, 0x1) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f00000001c0)='a', 0x1, 0x0, &(0x7f0000aa9000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) listen(r1, 0x400080000002) accept(r1, &(0x7f0000000000)=@can, &(0x7f0000000100)=0x80) 00:13:18 executing program 3: 00:13:18 executing program 3: [ 384.002337] FAULT_INJECTION: forcing a failure. [ 384.002337] name failslab, interval 1, probability 0, space 0, times 0 [ 384.019035] CPU: 0 PID: 18860 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 384.027558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 384.036913] Call Trace: [ 384.039528] dump_stack+0x1d3/0x2c4 [ 384.043176] ? dump_stack_print_info.cold.2+0x52/0x52 [ 384.048395] ? __kernel_text_address+0xd/0x40 00:13:18 executing program 3: 00:13:18 executing program 3: [ 384.052909] ? unwind_get_return_address+0x61/0xa0 [ 384.057857] should_fail.cold.4+0xa/0x17 [ 384.061928] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 384.067033] ? save_stack+0xa9/0xd0 [ 384.070662] ? kasan_kmalloc+0xc7/0xe0 [ 384.074576] ? kasan_slab_alloc+0x12/0x20 [ 384.078724] ? kmem_cache_alloc+0x12e/0x730 [ 384.083048] ? mmu_topup_memory_caches+0xf7/0x390 [ 384.087891] ? kvm_mmu_load+0x21/0xfa0 [ 384.091786] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 384.096287] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 00:13:18 executing program 3: 00:13:18 executing program 3: [ 384.101306] ? do_vfs_ioctl+0x1de/0x1720 [ 384.105379] ? ksys_ioctl+0xa9/0xd0 [ 384.109005] ? __x64_sys_ioctl+0x73/0xb0 [ 384.113071] ? do_syscall_64+0x1b9/0x820 [ 384.117138] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 384.122516] ? percpu_ref_put_many+0x11c/0x260 [ 384.127196] ? lock_downgrade+0x900/0x900 [ 384.131370] ? lock_release+0x970/0x970 [ 384.135375] ? fs_reclaim_acquire+0x20/0x20 [ 384.139792] ? lock_downgrade+0x900/0x900 [ 384.143951] ? check_same_owner+0x330/0x330 [ 384.148279] ? percpu_ref_put_many+0x13e/0x260 [ 384.152867] ? trace_hardirqs_on+0xbd/0x310 [ 384.157193] __should_failslab+0x124/0x180 [ 384.161430] should_failslab+0x9/0x14 [ 384.165232] kmem_cache_alloc+0x2be/0x730 [ 384.169388] ? vmx_flush_tlb_gva+0x380/0x380 [ 384.173807] ? ima_get_action+0x7e/0xa0 [ 384.173824] ? mmu_topup_memory_caches+0xf7/0x390 [ 384.173841] mmu_topup_memory_caches+0xf7/0x390 [ 384.182642] kvm_mmu_load+0x21/0xfa0 [ 384.182661] ? ima_add_template_entry.cold.4+0x3c/0x3c [ 384.182681] vcpu_enter_guest+0x3e6d/0x62f0 [ 384.200632] ? emulator_read_emulated+0x50/0x50 [ 384.205314] ? vmx_vcpu_load+0xb06/0x1030 [ 384.209593] ? mark_held_locks+0x130/0x130 [ 384.213867] ? vmx_write_tsc_offset+0x670/0x670 [ 384.218526] ? lock_downgrade+0x900/0x900 [ 384.222787] ? lock_acquire+0x1ed/0x520 [ 384.226751] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 384.231862] ? preempt_count_add+0x7d/0x160 [ 384.236179] ? lock_release+0x970/0x970 [ 384.240144] ? kvm_gen_update_masterclock+0x350/0x350 [ 384.245321] ? kvm_arch_dev_ioctl+0x630/0x630 [ 384.249819] ? preempt_notifier_dec+0x20/0x20 [ 384.254411] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 384.259240] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 384.264248] kvm_vcpu_ioctl+0x5c8/0x1150 [ 384.268297] ? kvm_vcpu_block+0x1020/0x1020 [ 384.272620] ? __fget+0x4aa/0x740 [ 384.276151] ? workqueue_online_cpu+0x80/0xad0 [ 384.280722] ? __f_unlock_pos+0x19/0x20 [ 384.284684] ? __fget+0x4d1/0x740 [ 384.288126] ? ksys_dup3+0x680/0x680 [ 384.291918] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 384.296838] ? kvm_vcpu_block+0x1020/0x1020 [ 384.301162] do_vfs_ioctl+0x1de/0x1720 [ 384.305040] ? fsnotify_first_mark+0x350/0x350 [ 384.309608] ? __fsnotify_parent+0xcc/0x420 [ 384.313917] ? ioctl_preallocate+0x300/0x300 [ 384.318316] ? __fget_light+0x2e9/0x430 [ 384.322286] ? fget_raw+0x20/0x20 [ 384.325726] ? __sb_end_write+0xd9/0x110 [ 384.329779] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 384.335303] ? fput+0x130/0x1a0 [ 384.338576] ? ksys_write+0x1ae/0x260 [ 384.342368] ? security_file_ioctl+0x94/0xc0 [ 384.346763] ksys_ioctl+0xa9/0xd0 [ 384.350203] __x64_sys_ioctl+0x73/0xb0 [ 384.354078] do_syscall_64+0x1b9/0x820 [ 384.358061] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 384.363425] ? syscall_return_slowpath+0x5e0/0x5e0 [ 384.368350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 384.373179] ? trace_hardirqs_on_caller+0x310/0x310 [ 384.378182] ? prepare_exit_to_usermode+0x291/0x3b0 [ 384.383186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 384.388131] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 384.393305] RIP: 0033:0x457579 [ 384.396496] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 384.415866] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 384.423572] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 384.430913] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 384.438169] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 384.445525] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:19 executing program 2 (fault-call:6 fault-nth:20): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 384.452779] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 [ 384.519898] FAULT_INJECTION: forcing a failure. [ 384.519898] name failslab, interval 1, probability 0, space 0, times 0 [ 384.531739] CPU: 0 PID: 18888 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 384.540240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 384.549603] Call Trace: [ 384.552189] dump_stack+0x1d3/0x2c4 [ 384.555828] ? dump_stack_print_info.cold.2+0x52/0x52 [ 384.555848] ? __kernel_text_address+0xd/0x40 [ 384.555871] ? unwind_get_return_address+0x61/0xa0 [ 384.565533] should_fail.cold.4+0xa/0x17 [ 384.565550] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 384.565568] ? save_stack+0xa9/0xd0 [ 384.583686] ? kasan_kmalloc+0xc7/0xe0 [ 384.587573] ? kasan_slab_alloc+0x12/0x20 [ 384.591709] ? kmem_cache_alloc+0x12e/0x730 [ 384.596015] ? mmu_topup_memory_caches+0xf7/0x390 [ 384.600838] ? kvm_mmu_load+0x21/0xfa0 [ 384.604732] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 384.609237] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 384.614249] ? do_vfs_ioctl+0x1de/0x1720 [ 384.618297] ? ksys_ioctl+0xa9/0xd0 [ 384.621927] ? __x64_sys_ioctl+0x73/0xb0 [ 384.625979] ? do_syscall_64+0x1b9/0x820 [ 384.630024] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 384.635376] ? percpu_ref_put_many+0x11c/0x260 [ 384.639947] ? lock_downgrade+0x900/0x900 [ 384.644112] ? lock_release+0x970/0x970 [ 384.648096] ? fs_reclaim_acquire+0x20/0x20 [ 384.652399] ? lock_downgrade+0x900/0x900 [ 384.656535] ? check_same_owner+0x330/0x330 [ 384.660843] ? percpu_ref_put_many+0x13e/0x260 [ 384.665414] ? trace_hardirqs_on+0xbd/0x310 [ 384.669725] __should_failslab+0x124/0x180 [ 384.673975] should_failslab+0x9/0x14 [ 384.677766] kmem_cache_alloc+0x2be/0x730 [ 384.681898] ? vmx_flush_tlb_gva+0x380/0x380 [ 384.686291] ? kvm_clock_read+0x18/0x30 [ 384.690262] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 384.695277] ? ktime_get_with_offset+0x310/0x460 [ 384.700053] ? mmu_topup_memory_caches+0xf7/0x390 [ 384.705015] mmu_topup_memory_caches+0xf7/0x390 [ 384.709673] kvm_mmu_load+0x21/0xfa0 [ 384.713369] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 384.718895] ? check_preemption_disabled+0x48/0x200 [ 384.723901] vcpu_enter_guest+0x3e6d/0x62f0 [ 384.728208] ? emulator_read_emulated+0x50/0x50 [ 384.732876] ? vmx_vcpu_load+0xb06/0x1030 [ 384.737101] ? mark_held_locks+0x130/0x130 [ 384.741330] ? vmx_write_tsc_offset+0x670/0x670 [ 384.746004] ? lock_downgrade+0x900/0x900 [ 384.750172] ? lock_acquire+0x1ed/0x520 [ 384.754131] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 384.759129] ? preempt_count_add+0x7d/0x160 [ 384.763441] ? lock_release+0x970/0x970 00:13:19 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="c0dac720f146b6b15eaf3e49adbd2c4bfc0f4f96933b485f7b2885f81f2630522e", 0x21) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ppp\x00', 0x80881, 0x0) getsockopt$ARPT_SO_GET_INFO(r2, 0x0, 0x60, &(0x7f00000000c0)={'filter\x00'}, &(0x7f0000000040)=0x44) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 384.767416] ? kvm_gen_update_masterclock+0x350/0x350 [ 384.772623] ? kvm_arch_dev_ioctl+0x630/0x630 [ 384.777119] ? preempt_notifier_dec+0x20/0x20 [ 384.781621] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 384.786467] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 384.791479] kvm_vcpu_ioctl+0x5c8/0x1150 [ 384.795522] ? kvm_vcpu_block+0x1020/0x1020 [ 384.799842] ? __fget+0x4aa/0x740 [ 384.803289] ? workqueue_online_cpu+0x80/0xad0 [ 384.807850] ? __f_unlock_pos+0x19/0x20 [ 384.811808] ? __fget+0x4d1/0x740 [ 384.815253] ? ksys_dup3+0x680/0x680 00:13:19 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2000, 0xc) ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f00000000c0)) r3 = dup2(r1, r1) ioctl$KDDELIO(r3, 0x4b35, 0x6) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:19 executing program 3: 00:13:19 executing program 1: 00:13:19 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0xe000000, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 384.818973] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 384.823922] ? kvm_vcpu_block+0x1020/0x1020 [ 384.828258] do_vfs_ioctl+0x1de/0x1720 [ 384.832151] ? fsnotify_first_mark+0x350/0x350 [ 384.836735] ? __fsnotify_parent+0xcc/0x420 [ 384.841057] ? ioctl_preallocate+0x300/0x300 [ 384.845474] ? __fget_light+0x2e9/0x430 [ 384.849444] ? fget_raw+0x20/0x20 [ 384.852895] ? __sb_end_write+0xd9/0x110 [ 384.856959] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 384.856970] ? fput+0x130/0x1a0 [ 384.856984] ? ksys_write+0x1ae/0x260 00:13:19 executing program 3: [ 384.869617] ? security_file_ioctl+0x94/0xc0 [ 384.874030] ksys_ioctl+0xa9/0xd0 [ 384.877488] __x64_sys_ioctl+0x73/0xb0 [ 384.881385] do_syscall_64+0x1b9/0x820 [ 384.885264] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 384.885288] ? syscall_return_slowpath+0x5e0/0x5e0 [ 384.895593] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 384.900440] ? trace_hardirqs_on_caller+0x310/0x310 [ 384.905458] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 384.910481] ? prepare_exit_to_usermode+0x291/0x3b0 [ 384.915505] ? trace_hardirqs_off_thunk+0x1a/0x1c 00:13:19 executing program 3: [ 384.920355] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 384.925543] RIP: 0033:0x457579 [ 384.928734] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 384.947634] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 384.955515] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 384.962788] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 00:13:19 executing program 3: 00:13:19 executing program 3: [ 384.970045] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 384.977303] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 384.984658] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:19 executing program 1: unshare(0x200) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00') mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f00000003c0)=ANY=[], &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)="18765468f7c38d", 0x0, &(0x7f0000000400)) setns(r0, 0x0) clone(0x70024000, &(0x7f0000000180), &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000180)) 00:13:19 executing program 2 (fault-call:6 fault-nth:21): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:19 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x5dc, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 385.097927] IPVS: ftp: loaded support on port[0] = 21 [ 385.135509] FAULT_INJECTION: forcing a failure. [ 385.135509] name failslab, interval 1, probability 0, space 0, times 0 [ 385.148463] CPU: 1 PID: 18921 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 385.157008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 385.157013] Call Trace: [ 385.157037] dump_stack+0x1d3/0x2c4 [ 385.157054] ? dump_stack_print_info.cold.2+0x52/0x52 [ 385.157070] ? __kernel_text_address+0xd/0x40 [ 385.157088] ? unwind_get_return_address+0x61/0xa0 [ 385.172619] should_fail.cold.4+0xa/0x17 [ 385.172635] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 385.182287] ? save_stack+0xa9/0xd0 [ 385.182303] ? kasan_kmalloc+0xc7/0xe0 [ 385.191268] ? kasan_slab_alloc+0x12/0x20 [ 385.191281] ? kmem_cache_alloc+0x12e/0x730 [ 385.191301] ? mmu_topup_memory_caches+0xf7/0x390 [ 385.199996] ? kvm_mmu_load+0x21/0xfa0 [ 385.200012] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 385.200027] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 385.208019] ? do_vfs_ioctl+0x1de/0x1720 [ 385.217132] ? ksys_ioctl+0xa9/0xd0 [ 385.217141] ? __x64_sys_ioctl+0x73/0xb0 [ 385.217158] ? do_syscall_64+0x1b9/0x820 [ 385.225491] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 385.225525] ? percpu_ref_put_many+0x11c/0x260 [ 385.234567] ? lock_downgrade+0x900/0x900 [ 385.234583] ? lock_release+0x970/0x970 [ 385.242258] ? fs_reclaim_acquire+0x20/0x20 [ 385.242271] ? lock_downgrade+0x900/0x900 [ 385.242289] ? check_same_owner+0x330/0x330 [ 385.251660] ? percpu_ref_put_many+0x13e/0x260 [ 385.251671] ? trace_hardirqs_on+0xbd/0x310 [ 385.251690] __should_failslab+0x124/0x180 [ 385.260384] should_failslab+0x9/0x14 [ 385.260395] kmem_cache_alloc+0x2be/0x730 [ 385.260409] ? vmx_flush_tlb_gva+0x380/0x380 [ 385.268677] ? mmu_topup_memory_caches+0xf7/0x390 [ 385.268692] mmu_topup_memory_caches+0xf7/0x390 [ 385.277126] kvm_mmu_load+0x21/0xfa0 [ 385.277148] vcpu_enter_guest+0x3e6d/0x62f0 [ 385.286006] ? emulator_read_emulated+0x50/0x50 [ 385.286024] ? vmx_vcpu_load+0xb06/0x1030 [ 385.294103] ? mark_held_locks+0x130/0x130 [ 385.294118] ? vmx_write_tsc_offset+0x670/0x670 [ 385.302629] ? mem_cgroup_iter+0x514/0x1160 [ 385.302645] ? _raw_spin_unlock+0x3f/0x50 [ 385.302669] ? lock_acquire+0x1ed/0x520 [ 385.312150] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 385.312167] ? preempt_count_add+0x7d/0x160 [ 385.320145] ? lock_release+0x970/0x970 [ 385.320159] ? kvm_gen_update_masterclock+0x350/0x350 [ 385.320175] ? kvm_arch_dev_ioctl+0x630/0x630 [ 385.328939] ? preempt_notifier_dec+0x20/0x20 [ 385.328963] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 385.337842] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 385.337863] kvm_vcpu_ioctl+0x5c8/0x1150 [ 385.346284] ? kvm_vcpu_block+0x1020/0x1020 [ 385.346321] ? __fget+0x4aa/0x740 [ 385.355380] ? workqueue_online_cpu+0x80/0xad0 [ 385.355396] ? __f_unlock_pos+0x19/0x20 [ 385.363646] ? __fget+0x4d1/0x740 [ 385.363661] ? ksys_dup3+0x680/0x680 [ 385.373308] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 385.382602] ? kvm_vcpu_block+0x1020/0x1020 [ 385.382614] do_vfs_ioctl+0x1de/0x1720 [ 385.382630] ? fsnotify_first_mark+0x350/0x350 [ 385.391660] ? __fsnotify_parent+0xcc/0x420 [ 385.391674] ? ioctl_preallocate+0x300/0x300 [ 385.391689] ? __fget_light+0x2e9/0x430 [ 385.399420] ? fget_raw+0x20/0x20 [ 385.399433] ? __sb_end_write+0xd9/0x110 [ 385.399452] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 385.408067] ? fput+0x130/0x1a0 [ 385.408084] ? ksys_write+0x1ae/0x260 [ 385.415206] ? security_file_ioctl+0x94/0xc0 [ 385.415222] ksys_ioctl+0xa9/0xd0 [ 385.425040] __x64_sys_ioctl+0x73/0xb0 [ 385.425058] do_syscall_64+0x1b9/0x820 [ 385.433495] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 385.433512] ? syscall_return_slowpath+0x5e0/0x5e0 [ 385.442203] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 385.442219] ? trace_hardirqs_on_caller+0x310/0x310 [ 385.442245] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 385.449659] ? prepare_exit_to_usermode+0x291/0x3b0 [ 385.449676] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 385.459264] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 385.459273] RIP: 0033:0x457579 [ 385.459306] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 385.466446] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 385.466458] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 385.466469] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 385.474318] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 385.474325] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 385.474334] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:20 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x5, 0x2) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x8000, 0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f00000000c0)=r2) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:20 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) fcntl$dupfd(r1, 0x406, r0) recvmsg(r0, &(0x7f0000000c00)={&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0xffffffffffffff8f, &(0x7f0000000b00), 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x22) 00:13:20 executing program 3: 00:13:20 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x8, @mcast2={0xff, 0x2, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:20 executing program 2 (fault-call:6 fault-nth:22): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:20 executing program 1: 00:13:20 executing program 3: 00:13:20 executing program 1: 00:13:20 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2b, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 385.764357] FAULT_INJECTION: forcing a failure. [ 385.764357] name failslab, interval 1, probability 0, space 0, times 0 [ 385.795923] CPU: 0 PID: 18938 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 385.804556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 385.813904] Call Trace: [ 385.816489] dump_stack+0x1d3/0x2c4 [ 385.820109] ? dump_stack_print_info.cold.2+0x52/0x52 [ 385.825295] ? __kernel_text_address+0xd/0x40 [ 385.829792] ? unwind_get_return_address+0x61/0xa0 [ 385.834713] should_fail.cold.4+0xa/0x17 [ 385.838762] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 385.843850] ? save_stack+0xa9/0xd0 [ 385.847460] ? kasan_kmalloc+0xc7/0xe0 [ 385.851347] ? kasan_slab_alloc+0x12/0x20 [ 385.855480] ? kmem_cache_alloc+0x12e/0x730 [ 385.859785] ? mmu_topup_memory_caches+0xf7/0x390 [ 385.864617] ? kvm_mmu_load+0x21/0xfa0 [ 385.868489] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 385.872979] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 385.877978] ? do_vfs_ioctl+0x1de/0x1720 [ 385.882020] ? ksys_ioctl+0xa9/0xd0 [ 385.885626] ? __x64_sys_ioctl+0x73/0xb0 [ 385.889673] ? do_syscall_64+0x1b9/0x820 [ 385.893719] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 385.899068] ? percpu_ref_put_many+0x11c/0x260 [ 385.903637] ? lock_downgrade+0x900/0x900 [ 385.907768] ? lock_release+0x970/0x970 [ 385.911739] ? fs_reclaim_acquire+0x20/0x20 [ 385.916049] ? lock_downgrade+0x900/0x900 [ 385.920192] ? check_same_owner+0x330/0x330 [ 385.924511] ? percpu_ref_put_many+0x13e/0x260 [ 385.929089] ? trace_hardirqs_on+0xbd/0x310 [ 385.933399] __should_failslab+0x124/0x180 [ 385.937619] should_failslab+0x9/0x14 [ 385.941403] kmem_cache_alloc+0x2be/0x730 [ 385.945533] ? vmx_flush_tlb_gva+0x380/0x380 [ 385.949925] ? kvm_clock_read+0x18/0x30 [ 385.953885] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 385.958887] ? ktime_get_with_offset+0x310/0x460 [ 385.963627] ? mmu_topup_memory_caches+0xf7/0x390 [ 385.968468] mmu_topup_memory_caches+0xf7/0x390 [ 385.973121] kvm_mmu_load+0x21/0xfa0 [ 385.976818] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 385.982338] ? check_preemption_disabled+0x48/0x200 [ 385.987344] vcpu_enter_guest+0x3e6d/0x62f0 [ 385.991672] ? emulator_read_emulated+0x50/0x50 [ 385.996326] ? vmx_vcpu_load+0xb06/0x1030 [ 386.000549] ? mark_held_locks+0x130/0x130 [ 386.004770] ? vmx_write_tsc_offset+0x670/0x670 [ 386.009440] ? mem_cgroup_iter+0x514/0x1160 [ 386.013751] ? _raw_spin_unlock+0x3f/0x50 [ 386.017893] ? lock_acquire+0x1ed/0x520 [ 386.021851] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 386.026850] ? preempt_count_add+0x7d/0x160 [ 386.031173] ? lock_release+0x970/0x970 [ 386.035148] ? kvm_gen_update_masterclock+0x350/0x350 [ 386.040324] ? kvm_arch_dev_ioctl+0x630/0x630 [ 386.044821] ? preempt_notifier_dec+0x20/0x20 [ 386.049308] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 386.054136] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 386.059159] kvm_vcpu_ioctl+0x5c8/0x1150 [ 386.063225] ? kvm_vcpu_block+0x1020/0x1020 [ 386.067539] ? __fget+0x4aa/0x740 [ 386.070985] ? workqueue_online_cpu+0x80/0xad0 [ 386.075561] ? __f_unlock_pos+0x19/0x20 [ 386.079537] ? __fget+0x4d1/0x740 [ 386.083077] ? ksys_dup3+0x680/0x680 [ 386.086795] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 386.091714] ? kvm_vcpu_block+0x1020/0x1020 [ 386.096021] do_vfs_ioctl+0x1de/0x1720 [ 386.099908] ? fsnotify_first_mark+0x350/0x350 [ 386.104477] ? __fsnotify_parent+0xcc/0x420 [ 386.108786] ? ioctl_preallocate+0x300/0x300 [ 386.113193] ? __fget_light+0x2e9/0x430 [ 386.117151] ? fget_raw+0x20/0x20 [ 386.120611] ? __sb_end_write+0xd9/0x110 [ 386.124655] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 386.130183] ? fput+0x130/0x1a0 [ 386.133450] ? ksys_write+0x1ae/0x260 [ 386.137238] ? security_file_ioctl+0x94/0xc0 [ 386.141629] ksys_ioctl+0xa9/0xd0 [ 386.145084] __x64_sys_ioctl+0x73/0xb0 [ 386.148958] do_syscall_64+0x1b9/0x820 [ 386.152829] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 386.158206] ? syscall_return_slowpath+0x5e0/0x5e0 [ 386.163123] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 386.167954] ? trace_hardirqs_on_caller+0x310/0x310 [ 386.172958] ? prepare_exit_to_usermode+0x291/0x3b0 [ 386.177959] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 386.182798] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 386.187971] RIP: 0033:0x457579 [ 386.191152] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00:13:21 executing program 3: 00:13:21 executing program 1: 00:13:21 executing program 1: [ 386.210048] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 386.217740] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 386.224992] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 386.232245] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 386.239498] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 386.246752] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:21 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xfffffffffffffff7, 0x80) write$P9_RMKDIR(r1, &(0x7f0000000040)={0x14, 0x49, 0x2, {0x40, 0x4, 0x8}}, 0x14) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000280)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0xffffffffffffffa6, &(0x7f0000000100), 0x2c8, &(0x7f0000000140)=""/45, 0x1e18cefcbf9759b5, 0x9}, 0x12102) 00:13:21 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000000)) 00:13:21 executing program 3: 00:13:21 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x6, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:21 executing program 2 (fault-call:6 fault-nth:23): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:21 executing program 1: 00:13:21 executing program 1: 00:13:21 executing program 3: 00:13:21 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x3, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:21 executing program 3: [ 386.647577] FAULT_INJECTION: forcing a failure. [ 386.647577] name failslab, interval 1, probability 0, space 0, times 0 [ 386.662716] CPU: 1 PID: 18970 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 386.671226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 386.680695] Call Trace: [ 386.680723] dump_stack+0x1d3/0x2c4 [ 386.680741] ? dump_stack_print_info.cold.2+0x52/0x52 [ 386.680764] ? __kernel_text_address+0xd/0x40 [ 386.696620] ? unwind_get_return_address+0x61/0xa0 [ 386.701656] should_fail.cold.4+0xa/0x17 [ 386.705724] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 386.710834] ? save_stack+0xa9/0xd0 [ 386.714468] ? kasan_kmalloc+0xc7/0xe0 [ 386.718382] ? kasan_slab_alloc+0x12/0x20 [ 386.722544] ? kmem_cache_alloc+0x12e/0x730 [ 386.726882] ? mmu_topup_memory_caches+0xf7/0x390 [ 386.731726] ? kvm_mmu_load+0x21/0xfa0 [ 386.735616] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 386.740136] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 386.745171] ? do_vfs_ioctl+0x1de/0x1720 [ 386.749235] ? ksys_ioctl+0xa9/0xd0 [ 386.752874] ? __x64_sys_ioctl+0x73/0xb0 [ 386.756932] ? do_syscall_64+0x1b9/0x820 [ 386.760986] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 386.766344] ? percpu_ref_put_many+0x11c/0x260 [ 386.770918] ? lock_downgrade+0x900/0x900 [ 386.775056] ? lock_release+0x970/0x970 [ 386.779028] ? fs_reclaim_acquire+0x20/0x20 [ 386.783333] ? lock_downgrade+0x900/0x900 [ 386.787465] ? lock_downgrade+0x900/0x900 [ 386.791601] ? check_same_owner+0x330/0x330 [ 386.795910] ? percpu_ref_put_many+0x13e/0x260 [ 386.800503] ? trace_hardirqs_on+0xbd/0x310 [ 386.804815] __should_failslab+0x124/0x180 [ 386.809036] should_failslab+0x9/0x14 [ 386.812820] kmem_cache_alloc+0x2be/0x730 [ 386.816952] ? vmx_flush_tlb_gva+0x380/0x380 [ 386.821346] ? mmu_topup_memory_caches+0xf7/0x390 [ 386.826192] mmu_topup_memory_caches+0xf7/0x390 [ 386.830936] kvm_mmu_load+0x21/0xfa0 [ 386.834656] vcpu_enter_guest+0x3e6d/0x62f0 [ 386.838968] ? emulator_read_emulated+0x50/0x50 [ 386.843636] ? vmx_vcpu_load+0xb06/0x1030 [ 386.847766] ? mark_held_locks+0x130/0x130 [ 386.851986] ? vmx_write_tsc_offset+0x670/0x670 [ 386.856648] ? mem_cgroup_iter+0x514/0x1160 [ 386.860962] ? _raw_spin_unlock+0x2c/0x50 [ 386.865369] ? lock_acquire+0x1ed/0x520 [ 386.869329] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 386.874332] ? preempt_count_add+0x7d/0x160 [ 386.878649] ? lock_release+0x970/0x970 [ 386.882609] ? kvm_gen_update_masterclock+0x350/0x350 [ 386.887786] ? kvm_arch_dev_ioctl+0x630/0x630 [ 386.892264] ? preempt_notifier_dec+0x20/0x20 [ 386.896766] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 386.901604] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 386.906615] kvm_vcpu_ioctl+0x5c8/0x1150 [ 386.910764] ? kvm_vcpu_block+0x1020/0x1020 [ 386.915091] ? __fget+0x4aa/0x740 [ 386.918553] ? workqueue_online_cpu+0x80/0xad0 [ 386.923126] ? __f_unlock_pos+0x19/0x20 [ 386.927083] ? __fget+0x4d1/0x740 [ 386.930525] ? ksys_dup3+0x680/0x680 [ 386.934226] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 386.939145] ? kvm_vcpu_block+0x1020/0x1020 [ 386.943460] do_vfs_ioctl+0x1de/0x1720 [ 386.947332] ? fsnotify_first_mark+0x350/0x350 [ 386.951905] ? __fsnotify_parent+0xcc/0x420 [ 386.956211] ? ioctl_preallocate+0x300/0x300 [ 386.960614] ? __fget_light+0x2e9/0x430 [ 386.964593] ? fget_raw+0x20/0x20 [ 386.968047] ? __sb_end_write+0xd9/0x110 [ 386.972099] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 386.977620] ? fput+0x130/0x1a0 [ 386.980882] ? ksys_write+0x1ae/0x260 [ 386.984670] ? security_file_ioctl+0x94/0xc0 [ 386.989062] ksys_ioctl+0xa9/0xd0 [ 386.992497] __x64_sys_ioctl+0x73/0xb0 [ 386.996373] do_syscall_64+0x1b9/0x820 [ 387.000243] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 387.005600] ? syscall_return_slowpath+0x5e0/0x5e0 [ 387.010580] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 387.015430] ? trace_hardirqs_on_caller+0x310/0x310 [ 387.020432] ? prepare_exit_to_usermode+0x291/0x3b0 [ 387.025541] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 387.030370] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 387.035568] RIP: 0033:0x457579 [ 387.038744] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 387.057625] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 387.065330] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 387.072579] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 387.079832] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 387.087080] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 00:13:21 executing program 3: 00:13:21 executing program 3: [ 387.094337] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:22 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x22000, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000040)) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:22 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000000)) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) fallocate(r0, 0x50, 0x1, 0x3f) 00:13:22 executing program 1: 00:13:22 executing program 3: 00:13:22 executing program 2 (fault-call:6 fault-nth:24): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:22 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x4, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:22 executing program 3: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)='bridge0\x00', 0x0}, 0x30) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000001740)="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", 0x73f}], 0x1, &(0x7f0000000040)=ANY=[]}, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000140)='cpuset.cpu_exclusive\x00') openat$tun(0xffffffffffffff9c, &(0x7f0000000880)='/dev/net/tun\x00', 0x0, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000300)='io.bfq.weight\x00', 0x2, 0x0) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000600)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000580), 0x174) ioctl$TUNGETVNETHDRSZ(0xffffffffffffffff, 0x800454d7, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000000)) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='/group.stat\x00', 0x2761, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)=@in={0x2, 0x0, @dev}, 0x80, &(0x7f0000000500), 0x0, 0x0, 0x0, 0x40}, 0x40000000) perf_event_open(&(0x7f00000007c0)={0x1, 0x70, 0x80000000, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0xe295, 0x100000000, 0x10001, 0x20, 0x6, 0x0, 0x0, 0x6, 0x0, 0x0, 0xd70f, 0x0, 0x10001, 0xe0, 0x79182742, 0x1, 0x20, 0x0, 0xd38, 0x4, 0x7, 0x3, 0x0, 0x8, 0x0, 0x5, 0x0, 0x0, 0x100000001, 0x0, @perf_config_ext={0x0, 0x40000000000}, 0x0, 0x0, 0x3, 0x7, 0x3, 0x6, 0xfffffffffffffff9}, 0x0, 0x0, 0xffffffffffffff9c, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x5a71938a) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000008c0)=r0, 0x4) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000780)={0x0, 0xffffffffffffffff, 0xb, 0x1}, 0x14) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40086607, 0x7fffff) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000740)={0xffffffffffffffff, &(0x7f0000000640)="2749b3d5170dccd55cc14b92406ad2d7753a8990fdd4d76f46be9b17f29b55b8140e267c6bdf8a7ac9648d36cc7868beaece8f7d1111", &(0x7f00000006c0)=""/67}, 0x18) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'bridge0\x00'}) 00:13:22 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000040)=0x800, 0x4) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/17, 0x10000, 0x1000}, 0x18) setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000100)=0x8, 0x4) setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f00000002c0)=0x1000000080, 0x4) bind$xdp(r2, &(0x7f0000000300)={0x2c, 0x0, r1}, 0x10) sendmsg$nfc_llcp(r2, &(0x7f0000001540)={&(0x7f0000000200)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ba9c8be65168231db66663d53b462183bf9210e9a67b33420bd97c49a0b4d0e5451f5d4a99613e55136eb6d19dcce08920e4fdaf19b48f6265313a0b70ad36"}, 0x60, &(0x7f00000014c0)}, 0x0) [ 387.481430] FAULT_INJECTION: forcing a failure. [ 387.481430] name failslab, interval 1, probability 0, space 0, times 0 [ 387.502712] CPU: 1 PID: 19003 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 387.511230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.520584] Call Trace: [ 387.523180] dump_stack+0x1d3/0x2c4 [ 387.526797] ? dump_stack_print_info.cold.2+0x52/0x52 [ 387.531976] ? __kernel_text_address+0xd/0x40 [ 387.536460] ? unwind_get_return_address+0x61/0xa0 [ 387.541405] should_fail.cold.4+0xa/0x17 [ 387.545468] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 387.550555] ? save_stack+0xa9/0xd0 [ 387.554171] ? kasan_kmalloc+0xc7/0xe0 [ 387.558231] ? kasan_slab_alloc+0x12/0x20 [ 387.562557] ? kmem_cache_alloc+0x12e/0x730 [ 387.566880] ? mmu_topup_memory_caches+0xf7/0x390 [ 387.571814] ? kvm_mmu_load+0x21/0xfa0 [ 387.575688] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 387.580371] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 387.585384] ? do_vfs_ioctl+0x1de/0x1720 [ 387.589433] ? ksys_ioctl+0xa9/0xd0 [ 387.593134] ? __x64_sys_ioctl+0x73/0xb0 [ 387.597265] ? do_syscall_64+0x1b9/0x820 [ 387.601313] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 387.606676] ? percpu_ref_put_many+0x11c/0x260 [ 387.611246] ? lock_downgrade+0x900/0x900 [ 387.615489] ? lock_release+0x970/0x970 [ 387.619446] ? fs_reclaim_acquire+0x20/0x20 [ 387.623850] ? lock_downgrade+0x900/0x900 [ 387.628092] ? check_same_owner+0x330/0x330 [ 387.632395] ? percpu_ref_put_many+0x13e/0x260 [ 387.636959] ? trace_hardirqs_on+0xbd/0x310 [ 387.641264] __should_failslab+0x124/0x180 [ 387.645580] should_failslab+0x9/0x14 [ 387.649374] kmem_cache_alloc+0x2be/0x730 [ 387.653516] ? vmx_flush_tlb_gva+0x380/0x380 [ 387.657908] ? mmu_topup_memory_caches+0xf7/0x390 [ 387.662737] mmu_topup_memory_caches+0xf7/0x390 [ 387.667383] kvm_mmu_load+0x21/0xfa0 [ 387.671082] vcpu_enter_guest+0x3e6d/0x62f0 [ 387.675387] ? emulator_read_emulated+0x50/0x50 [ 387.680046] ? vmx_vcpu_load+0xb06/0x1030 [ 387.684196] ? mark_held_locks+0x130/0x130 [ 387.688411] ? vmx_write_tsc_offset+0x670/0x670 [ 387.693063] ? mem_cgroup_iter+0x514/0x1160 [ 387.697372] ? _raw_spin_unlock+0x3f/0x50 [ 387.701510] ? lock_acquire+0x1ed/0x520 [ 387.705474] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 387.710503] ? preempt_count_add+0x7d/0x160 [ 387.714806] ? lock_release+0x970/0x970 [ 387.718768] ? kvm_gen_update_masterclock+0x350/0x350 [ 387.723949] ? kvm_arch_dev_ioctl+0x630/0x630 [ 387.728432] ? preempt_notifier_dec+0x20/0x20 [ 387.732918] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 387.737743] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 387.742744] kvm_vcpu_ioctl+0x5c8/0x1150 [ 387.746798] ? kvm_vcpu_block+0x1020/0x1020 [ 387.751114] ? __fget+0x4aa/0x740 [ 387.754556] ? workqueue_online_cpu+0x80/0xad0 [ 387.759137] ? __f_unlock_pos+0x19/0x20 [ 387.763197] ? __fget+0x4d1/0x740 [ 387.766733] ? ksys_dup3+0x680/0x680 [ 387.770440] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 387.775368] ? kvm_vcpu_block+0x1020/0x1020 [ 387.779680] do_vfs_ioctl+0x1de/0x1720 [ 387.783567] ? fsnotify_first_mark+0x350/0x350 [ 387.788134] ? __fsnotify_parent+0xcc/0x420 [ 387.792449] ? ioctl_preallocate+0x300/0x300 [ 387.796839] ? __fget_light+0x2e9/0x430 [ 387.800899] ? fget_raw+0x20/0x20 [ 387.804337] ? __sb_end_write+0xd9/0x110 [ 387.808384] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 387.813906] ? fput+0x130/0x1a0 [ 387.817186] ? ksys_write+0x1ae/0x260 [ 387.820971] ? security_file_ioctl+0x94/0xc0 [ 387.825359] ksys_ioctl+0xa9/0xd0 [ 387.828795] __x64_sys_ioctl+0x73/0xb0 [ 387.832683] do_syscall_64+0x1b9/0x820 [ 387.836564] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 387.841926] ? syscall_return_slowpath+0x5e0/0x5e0 [ 387.846853] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 387.851680] ? trace_hardirqs_on_caller+0x310/0x310 [ 387.856766] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 387.861762] ? prepare_exit_to_usermode+0x291/0x3b0 [ 387.866779] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 387.871624] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 387.876791] RIP: 0033:0x457579 [ 387.879964] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 387.898851] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 387.906554] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 387.913802] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 387.921050] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 00:13:22 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0xa, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 387.928307] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 387.935570] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:22 executing program 2 (fault-call:6 fault-nth:25): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:22 executing program 3: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000004c0)}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f0000000700)={0x16, 0x98, 0xfa00, {&(0x7f0000000340), 0x2, 0xffffffffffffffff, 0x1c, 0x0, @ib={0x1b, 0x3f, 0x0, {"6d3a03a22ad13804238c25806cdd75ac"}, 0x800}}}, 0xa0) fchmodat(0xffffffffffffffff, &(0x7f0000000b40)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dsp\x00', 0x2000, 0x0) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xc02) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000002c0), 0xffffffffffffffff) mkdir(&(0x7f0000000480)='./file0\x00', 0x20) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000280)='/dev/rfkill\x00', 0x400001, 0x0) clone(0x140000, &(0x7f0000000600)="3c2385a5f0e4ae6fd04d786e37c3f57a0fcb53811de780e512549f4d6a0fc82ed4bdd228fabe659a94d6d9ac3f23abce13b4f7024176239102200d7568903268690b5e83298b143ce619fb0446bce21f7a04c5d63066e2adbd990204337b91287e2626cd24a1cc2a5ce504161a965ccd89f01df7b2712665692c25b5200dcb672bdee790fff6201e83410a69bff89eaa75d5a77c2ce2c9e6c301433f0d8d09de59579deb3a7684d3547f16cf971600da819814f735bd8da222f8e5b1d1efabd86d58b170a661829c1bb19dc6a418bf95e29ddfa31a96645536df0d036be8323e12b6a3ee86510cb4f78daf97693f6bf2c018", &(0x7f00000007c0), &(0x7f0000000800), &(0x7f0000000840)="c346460b413d522ed2dcaa1602f4b12067e684f2c5e9947b5640") getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000380)={{{@in, @in=@broadcast}}, {{@in=@remote}, 0x0, @in6=@remote}}, &(0x7f0000000200)=0xe8) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000001c0)={0x9, 0x0}) ioctl$DRM_IOCTL_SG_FREE(r2, 0x40106439, &(0x7f0000000240)={0x6, r3}) mount(&(0x7f0000000240)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='nfs\x00', 0x0, &(0x7f0000000000)) clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) syz_genetlink_get_family_id$fou(&(0x7f0000000140)='fou\x00') ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x1) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000000)={0x30, 0x5, 0x0, {0x0, 0x8}}, 0x30) syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x4, 0x400) [ 388.056722] FAULT_INJECTION: forcing a failure. [ 388.056722] name failslab, interval 1, probability 0, space 0, times 0 [ 388.069007] CPU: 0 PID: 19024 Comm: syz-executor2 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 388.077559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.086932] Call Trace: [ 388.089526] dump_stack+0x1d3/0x2c4 [ 388.093158] ? dump_stack_print_info.cold.2+0x52/0x52 [ 388.098444] ? __kernel_text_address+0xd/0x40 [ 388.102936] ? unwind_get_return_address+0x61/0xa0 [ 388.107869] should_fail.cold.4+0xa/0x17 [ 388.111915] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 388.117006] ? save_stack+0xa9/0xd0 [ 388.120636] ? kasan_kmalloc+0xc7/0xe0 [ 388.124502] ? kasan_slab_alloc+0x12/0x20 [ 388.128630] ? kmem_cache_alloc+0x12e/0x730 [ 388.132933] ? mmu_topup_memory_caches+0xf7/0x390 [ 388.137771] ? kvm_mmu_load+0x21/0xfa0 [ 388.141637] ? vcpu_enter_guest+0x3e6d/0x62f0 [ 388.146110] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 388.151120] ? do_vfs_ioctl+0x1de/0x1720 [ 388.155183] ? ksys_ioctl+0xa9/0xd0 [ 388.158827] ? __x64_sys_ioctl+0x73/0xb0 [ 388.162889] ? do_syscall_64+0x1b9/0x820 [ 388.166950] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 388.172317] ? percpu_ref_put_many+0x11c/0x260 [ 388.176905] ? lock_downgrade+0x900/0x900 [ 388.181057] ? lock_release+0x970/0x970 [ 388.185075] ? fs_reclaim_acquire+0x20/0x20 [ 388.189395] ? lock_downgrade+0x900/0x900 [ 388.193632] ? lock_downgrade+0x900/0x900 [ 388.197779] ? check_same_owner+0x330/0x330 [ 388.202096] ? percpu_ref_put_many+0x13e/0x260 [ 388.206680] ? trace_hardirqs_on+0xbd/0x310 [ 388.211017] __should_failslab+0x124/0x180 [ 388.215259] should_failslab+0x9/0x14 [ 388.219083] kmem_cache_alloc+0x2be/0x730 [ 388.223252] ? vmx_flush_tlb_gva+0x380/0x380 [ 388.227681] ? mmu_topup_memory_caches+0xf7/0x390 [ 388.232543] mmu_topup_memory_caches+0xf7/0x390 [ 388.237218] kvm_mmu_load+0x21/0xfa0 [ 388.240941] vcpu_enter_guest+0x3e6d/0x62f0 [ 388.245279] ? emulator_read_emulated+0x50/0x50 [ 388.249948] ? vmx_vcpu_load+0xb06/0x1030 00:13:23 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = syz_open_dev$adsp(&(0x7f00000002c0)='/dev/adsp#\x00', 0xd1, 0x80281) ioctl$BLKPBSZGET(r1, 0x127b, &(0x7f0000000300)) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e21, 0x7ff, @loopback, 0x6}}, 0x9, 0x2, 0x40, 0x38, 0x2}, &(0x7f0000000040)=0x98) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000280)={0x3, 0x206, 0x9, 0x1000, r4}, 0x10) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:23 executing program 0: r0 = syz_open_dev$amidi(&(0x7f0000000300)='/dev/amidi#\x00', 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0}, &(0x7f00000003c0)=0xc) r2 = accept$alg(0xffffffffffffff9c, 0x0, 0x0) r3 = geteuid() sendmsg$nl_netfilter(r0, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x44000020}, 0xc, &(0x7f0000000400)={&(0x7f0000000c40)={0x400, 0xd, 0xf, 0x0, 0x70bd28, 0x25dfdbff, {0xf, 0x0, 0x6}, [@generic="340126b3a14c52f93da1db418efbfeb6bd71e998b25ea61c", @typed={0x14, 0x1f, @str='/dev/sequencer\x00'}, @nested={0x1ec, 0x77, [@typed={0x8, 0x5e, @uid=r1}, @generic="d6aea280b118d78d48bf4daae2805a0ed3138bc4b386162102f7ce2c5f6af0b2457e2fd3060323a3719a858ce0b8cd077ce4472a68fb0799b9284feb2d08d01a11ae28779b2ff6925838a2c1ba4ba6516dd23acf103cb15e4844e09fd0846dcd4765f989a420776addd6aeed4bce4cae5d72323b3473a066d9043269d326116c87aa4bb70f2989a943a3d617a852413e1153ea28a5dc199a09091b57e334574c29b6c9af9329764a95b470cf75a75b2f43577685718ad911354481b5d4f5cf6cb925c562b60cbc6a39ab7dbe6217092fd98f980f9daf8397cc9fb5f54b16d666237cb7553aafa260bf5c775ee5a11562", @generic="917a1a2f91fbe1cd7a2da0d50287afeb058e1636c66011fdcb4cad6ebca0b19ecf82b9ba384445db36234bc0a0c660d69a337a0e7981eb16829c8381431f8654bfed0ce022c8d50acc5713d28f53884cbcafda30f78f7bec9ccc5b990a3027eb80ba5235279492c8e951b28a5c80f20f7de257dd95c2836f825fb92a26725751c39be00da8e34de50f40370d339da0be44e1a7bed1f7418bfb7571274c269439f9a9567df5a037415f525379ea6b7b0448bec1feecfba96d6a1ad8701b5cb64ada26aa41c0fe0ce69a7af951bdf24d73896270d4c0ef177382b87ad8083dde2eb459446bd4b8dbf0189c1967897a22", @generic]}, @nested={0xd0, 0x47, [@generic="5e2e303e47b83fcd9d35e01dc1ab2bb2a2495763e71eb707fa3519dc73fd0139fdfb3eb88810c5c7c347fc474287f1a2d85270ce0cb475e5201dc41f49765d374a6e4c91202bffa1affc57fcee4e48ea776899b4d0ea6ce947c9aab68234b01abb3a2953729639b2ed9b09434b70b9d3a89d9892e07ee6e13daa6aacc15d700bb6c203f878df8d91b0ceed4f6c70a4a22b57c6be847f4268d9c6c80e3e8a17e4cb2740e94177fa472cb803458c38", @generic="d4289fe9d62e42f9fcaaf8a5", @typed={0x8, 0x15, @fd=r2}, @typed={0x8, 0x88, @uid=r3}]}, @typed={0x84, 0x7, @binary="47a9c9e760b389963ddee3edae778ef3986add5778dd644ab643527670a281bb58623eba38d9ad5ef257a789dd6caf9c12dc3b4c0402a23713d330741d6239bccf2ae8482c22c79bb407fa23c2bc4285265e05771c1689b27602f366d9532adb6c339b856cf2148d851eeff1e08776ff959e6c5fdd99387bf182c945cbcb3a64"}, @generic="b809e49b2049515f19d3a8367e394877ffeb2258a22a5653ca24c3c21860f52a4c88be46a6e93c1272facba3144c526e928bf6f9621864a7e04c544d3531d99a9e911264a17a0270e1d0f3e6e4f9139d50bc60e6cfc6275ec67d69f62c4aae355425d9cb232d6b6204e2cba05ea7f719ae180fd318dbcf0946f86c7dbc3a6a76"]}, 0x400}, 0x1, 0x0, 0x0, 0x400c804}, 0x40000) r4 = socket$alg(0x26, 0x5, 0x0) r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x4000, 0x0) ioctl$EVIOCGSND(r5, 0x8040451a, &(0x7f00000002c0)=""/28) ioctl$TIOCNXCL(r5, 0x540d) bind$alg(r4, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) connect$pppoe(r5, &(0x7f0000000280)={0x18, 0x0, {0x4, @broadcast, 'lo\x00'}}, 0x1e) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) ioctl$KDSKBSENT(r5, 0x4b49, &(0x7f0000000100)="41d58f1906dcff24637047cb3219c14b0b6874847135eff5c2c34de12e913a16163d5843b60631013a8f478ff83eb62e843d421346a0e4633b2aa1bfe8a6b8a50fecc9113ced3078700e6153eb3fe6ee434c12a6724a30906886c90c9d003bba0d8eaef147536bf6f49e883a") r6 = accept$alg(r4, 0x0, 0x0) sendmsg$alg(r6, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r6, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r6, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) fsetxattr$security_selinux(r6, &(0x7f0000000000)='security.selinux\x00', &(0x7f0000000040)='system_u:object_r:dhcpd_var_run_t:s0\x00', 0x25, 0x3) [ 388.254090] ? mark_held_locks+0x130/0x130 [ 388.258340] ? vmx_write_tsc_offset+0x670/0x670 [ 388.263026] ? mem_cgroup_iter+0x514/0x1160 [ 388.267367] ? _raw_spin_unlock+0x3f/0x50 [ 388.271521] ? lock_acquire+0x1ed/0x520 [ 388.275512] ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0 [ 388.280547] ? preempt_count_add+0x7d/0x160 [ 388.284874] ? lock_release+0x970/0x970 [ 388.288855] ? kvm_gen_update_masterclock+0x350/0x350 [ 388.294048] ? kvm_arch_dev_ioctl+0x630/0x630 [ 388.298541] ? preempt_notifier_dec+0x20/0x20 00:13:23 executing program 2 (fault-call:6 fault-nth:26): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 388.303164] kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 388.303176] ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0 [ 388.303199] kvm_vcpu_ioctl+0x5c8/0x1150 [ 388.303213] ? kvm_vcpu_block+0x1020/0x1020 [ 388.303234] ? __fget+0x4aa/0x740 [ 388.303253] ? workqueue_online_cpu+0x80/0xad0 [ 388.303267] ? __f_unlock_pos+0x19/0x20 [ 388.303281] ? __fget+0x4d1/0x740 [ 388.303296] ? ksys_dup3+0x680/0x680 [ 388.303315] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 388.303331] ? kvm_vcpu_block+0x1020/0x1020 [ 388.303343] do_vfs_ioctl+0x1de/0x1720 [ 388.303355] ? fsnotify_first_mark+0x350/0x350 [ 388.303367] ? __fsnotify_parent+0xcc/0x420 [ 388.303380] ? ioctl_preallocate+0x300/0x300 [ 388.303391] ? __fget_light+0x2e9/0x430 [ 388.303402] ? fget_raw+0x20/0x20 [ 388.303418] ? __sb_end_write+0xd9/0x110 [ 388.303436] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 388.303447] ? fput+0x130/0x1a0 [ 388.303459] ? ksys_write+0x1ae/0x260 [ 388.303476] ? security_file_ioctl+0x94/0xc0 [ 388.303488] ksys_ioctl+0xa9/0xd0 [ 388.303501] __x64_sys_ioctl+0x73/0xb0 00:13:23 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x8, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 388.303517] do_syscall_64+0x1b9/0x820 [ 388.303529] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 388.303543] ? syscall_return_slowpath+0x5e0/0x5e0 [ 388.303555] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 388.303570] ? trace_hardirqs_on_caller+0x310/0x310 [ 388.303584] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 388.303597] ? prepare_exit_to_usermode+0x291/0x3b0 [ 388.303613] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 388.303628] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 388.303638] RIP: 0033:0x457579 [ 388.303651] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 388.303658] RSP: 002b:00007fc69ec14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 388.303671] RAX: ffffffffffffffda RBX: 00007fc69ec14c90 RCX: 0000000000457579 [ 388.303678] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 388.303685] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 00:13:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 388.303692] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc69ec156d4 [ 388.303700] R13: 00000000004c003b R14: 00000000004d0108 R15: 0000000000000006 00:13:23 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0xb, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x5451, 0x0) 00:13:23 executing program 1: add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz'}, &(0x7f0000000480)='.', 0x1, 0xffffffffffffffff) 00:13:23 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x501, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:23 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={0xffffffffffffffff, &(0x7f0000000300), &(0x7f00000003c0)=""/254}, 0x18) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f00000004c0)) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000100)={r0}) r1 = perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000040)=0x5, 0x4) setrlimit(0x5, &(0x7f0000000080)={0xd7cb, 0xffffffffffff7fe0}) close(r1) 00:13:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x8, "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", 0x1000}, 0x1006) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000002080)=ANY=[@ANYBLOB="fe5d71ecb8f95bdb293406785cfe0362395d2ea520f45659b5ddd4e34df40bc7fe3fd5b6e6ba764bc9925a1574de519a23e6a710045fca6406a6083ac71923276184541a44c48b6b5c"]) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000), 0x1000000000000040) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x1, &(0x7f0000002140)=[{&(0x7f0000002100)="1a6f6979ba0ff42076195d82be0974a72a33985257f6f0b96fc2548c2bce569d6c2d9d4a7140f7885413ce6232476bbc133c97913da5", 0x36, 0x57a3}], 0x104b0, &(0x7f00000002c0)=ANY=[@ANYBLOB='rodir,uid=', @ANYRESDEC]) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x2, 0x0) recvmsg(r3, &(0x7f00000014c0)={&(0x7f0000000040)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000000180)=""/44, 0x2c}, {&(0x7f00000001c0)=""/190, 0xbe}, {&(0x7f00000013c0)=""/218, 0xda}, {&(0x7f0000000280)=""/61, 0x3d}], 0x6, 0x0, 0x0, 0x7}, 0x0) 00:13:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) 00:13:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x5460, 0x0) 00:13:24 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x1a000, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:24 executing program 3: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x8040, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000000c0)=0x10000000000, 0xffffffffffffff62) fcntl$setlease(r0, 0x400, 0x0) rt_sigprocmask(0x0, &(0x7f0000000100)={0xfffffffffffffff7}, 0x0, 0x8) rt_sigtimedwait(&(0x7f00005a1000)={0xfffffffffffffffd}, &(0x7f00000003c0), &(0x7f00007adff0)={0x77359400}, 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000000)='./file0\x00', 0x0) fremovexattr(r0, &(0x7f0000000040)=@known='trusted.overlay.metacopy\x00') fcntl$setlease(r0, 0x400, 0x2) fstat(0xffffffffffffffff, &(0x7f0000000140)) 00:13:24 executing program 1: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000bc0)='./file1\x00', &(0x7f0000000c00)='trusted.overlay.nlink\x00', &(0x7f0000000c40)={'L-', 0xfff}, 0x28, 0x2) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]}) r0 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000280)={0x9902, 0xfffffffffffffffe, 0x7, 0x1, [], [], [], 0x101, 0x9, 0x0, 0x81, "ab19b05dcf5f02396b046680c62dd4d1"}) fchdir(r0) ioctl$NBD_SET_BLKSIZE(r0, 0xab01, 0x8) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$binfmt_aout(r1, &(0x7f0000000a40)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x4) sendmmsg$nfc_llcp(r1, &(0x7f00000057c0)=[{&(0x7f0000002380)={0x27, 0x0, 0x0, 0x7, 0x2, 0x0, "2bd5bd9cfc072c0781d3a63a90bf7e87d992ec82cfb2659513dc8fea471bdea92fd539c2ef9a83fa002d1cb15ef3dc4a252353464de68194e0334631358c6c", 0x3d}, 0x60, &(0x7f00000056c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="280000000000000016010000faffffff1af0d637aafa45d93b9ec18145de6d70e1767c995a589a0067abddeed140d22ed9e7809a3e31ecde100ae293c39e8cd4a7c5a1eb99ad06f1febdf98b4fec631f73fff452db8d4d18e767926896a868d6ad8a06c67fa2"], 0x28, 0x40010}], 0x1, 0x40) connect$nfc_llcp(r1, &(0x7f0000000200)={0x27, 0x1, 0x0, 0x3, 0x2, 0x1, "1b3ad00e8b6a7d6c1f59da6d4bc8a3825b8800e28197c25fc900dbc33fd4df750920edd583b6560e6fb72b836a6f5fd62988d4d12fa97961e13444a73132ef", 0x27}, 0x60) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f00000003c0)=0x2) setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000b80)=0x80000000, 0x4) sendfile(r1, r1, &(0x7f0000000140), 0xd1) fsync(0xffffffffffffffff) 00:13:24 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000280)={0x2, 0x101, 0x80000001, 'queue0\x00', 0x6}) lsetxattr$security_smack_transmute(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000380)='TRUE', 0x4, 0x1) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x0, 0x0) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x6000, 0x0) ioctl$PPPIOCSFLAGS(r4, 0x40047459, &(0x7f0000000040)=0x4000) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000003c0)={0x0, 0x1fc, 0x2, [0x8, 0x3]}, &(0x7f0000000400)=0xc) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000440)={0x556a, 0x8009, 0x6, 0x1f, r5}, 0x10) 00:13:24 executing program 0: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x5, 0x4000) recvmsg(r0, &(0x7f0000000280)={&(0x7f00000000c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000140)=[{&(0x7f00000023c0)=""/4096, 0x1000}, {&(0x7f0000000040)}], 0x2, 0x0, 0x0, 0x9}, 0x2041) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 389.308649] overlayfs: failed to resolve './file1': -2 00:13:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) 00:13:24 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x9, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x2, 0x0) 00:13:24 executing program 3: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x8040, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000000c0)=0x10000000000, 0xffffffffffffff62) fcntl$setlease(r0, 0x400, 0x0) rt_sigprocmask(0x0, &(0x7f0000000100)={0xfffffffffffffff7}, 0x0, 0x8) rt_sigtimedwait(&(0x7f00005a1000)={0xfffffffffffffffd}, &(0x7f00000003c0), &(0x7f00007adff0)={0x77359400}, 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000000)='./file0\x00', 0x0) fremovexattr(r0, &(0x7f0000000040)=@known='trusted.overlay.metacopy\x00') fcntl$setlease(r0, 0x400, 0x2) fstat(0xffffffffffffffff, &(0x7f0000000140)) 00:13:24 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x7, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 00:13:24 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x5, [0x300, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:24 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x4000, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f00000000c0)=0x5f) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f0000000140)=ANY=[@ANYBLOB="05000000000000000d000040050000a900000000000000000000004000000000010000000000000025000000fff0ffff04040000000000000a00000006ed"]) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000000)={0x2, 0x0, [{0x186, 0x0, 0x4d564b}]}) 00:13:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) [ 389.698383] kvm pmu: pin control bit is ignored [ 389.709079] kvm_pmu: event creation failed -2 00:13:24 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x600, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 389.849738] overlayfs: failed to resolve './file1': -2 00:13:24 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0xe1) ioctl$DRM_IOCTL_WAIT_VBLANK(r1, 0xc018643a, &(0x7f0000000100)={0x20000000, 0x7, 0x2c}) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) fcntl$notify(r2, 0x402, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000140)=0xfffffffffffffffb) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x16b, &(0x7f0000000bc0)=""/45, 0x2d, 0x9}, 0x0) connect(r0, &(0x7f0000000000)=@generic={0x5, "eda4bac24032db0cb8a99780df47e7bd9c6aececa2dd6e866aafe23d69fe8c9f761203a65085e603524ea4eac4d73f82420751e902cda87bd93202e41cad40ed60c57bc069dd31b34f5565dd2c1433b9d87bbb0bf5076b814de8b7102bc92c62a9b6550d1973ece467c52940a02c3f699175d2d676f5dc4abd81b017cdae"}, 0x80) 00:13:24 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000100), &(0x7f0000000140)=0xc) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x10002, 0x0) getsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000240), &(0x7f0000000280)=0x4) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e00adbb2e34130002000000000000000000000105000600200000000a00000000000000000500e50000070000001f000000000000030000000000000200010000000000000000020000000005000500000000000a00000000000000ff1700000000000000000000000000170000000000000000"], 0x80}}, 0x0) r2 = request_key(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f00000003c0)='/dev/qat_adf_ctl\x00', 0xfffffffffffffffa) add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, r2) sendmmsg(r0, &(0x7f0000000180), 0x400000000000117, 0x0) 00:13:24 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x2c0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000003c0)='reno\x00', 0x5) sendto$inet(r0, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local}, 0x10) 00:13:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) 00:13:24 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x305, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:24 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000000)) 00:13:25 executing program 0: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r0, 0x8250aea6, &(0x7f0000000280)=""/218) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) write$binfmt_misc(r1, &(0x7f0000000040)={'syz1', "ace0b25f188b8f3b82d3546ae7fdd3c66f7d51dd7dba42e2965e02da70df9b6b7e7a818b"}, 0x28) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'tgr160-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f0000000000)=0x18b, 0x0) pipe2(&(0x7f00000001c0), 0x4000) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fstat(r2, &(0x7f0000000040)) fchmod(r0, 0x100) recvmmsg(r1, &(0x7f0000001bc0), 0x24f, 0x0, &(0x7f0000001d00)={0x77359400}) bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-serpent-avx\x00'}, 0x58) 00:13:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 00:13:25 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x900, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup\x00syz1\x00', 0x200002, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000000)) r2 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) r3 = eventfd(0x0) openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000240)='pagemap\x00') timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000)) pwritev(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f00000004c0)}], 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) sendfile(r3, r4, &(0x7f0000000000), 0x1000000008) tkill(r2, 0x14) mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x0, 0x0, 0x0, &(0x7f0000000040)}, 0x20) 00:13:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) 00:13:25 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x8, {0x2, 0x4e22, @broadcast}, {0x2, 0x4e23, @multicast1}, {0x2, 0x4e21, @multicast1}, 0x0, 0x8, 0xebc, 0x9, 0x377, &(0x7f0000000000)='ip_vti0\x00', 0x5}) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:25 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0xa00, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:25 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) kexec_load(0xffffffff, 0xa, &(0x7f00000003c0)=[{&(0x7f0000001000)="787e5d76cbb9a0e7370199ae5ea890d3e7a384707e6896e3aad6755536ecf6b1ef72e604c50b70b917cf8aa7ebe8b85d4ccc0230fca814329ad7cf1e6c0e7eb167c5a1ee6b589f90caec280159e27e9756b2c0a822e599b6e0b11faa9aaca7f93b3802ca1b3070115f4f46628ee8c9ae4e76029416908c38560cf17d428376cd8ee6baf74fde792e0a250d4c0ababebf6ca06503a01d859fd8a6ce79bdd20c9e3b11c8fb1a107d680216a33e5d62a3fd09e2784983a04517f32ab6927189e358c2554b0d9ec7b21171955e17be3ec5679193cd95f60f8ed5a2cac265e3671bd00a66c852a17ac61a9a7b8c7641684299a6d88b7c04444571f550acff5e52653242963276a5daea4c79388ed069fd0bf69842266b177b90dacab280d2b510c1f93f551ae428b582064c239185495763100e7230f0786c35a35169268197a5587ab2d8f8d1869a1442cfe5480f15f4629180c9f8e95a286bdb285c29cd9027b343d3ec8b292c7dfc7707e42caf3d186ec3043af17b83e3f6aa2a6a9f2d525e8b52c220f93eb68f29b0f05db0c3771ad94e7f93ae18886ee118620c6468afb389eafc9915a7a097bb7bd78ca8363d54371a205518d426342922d3ca987493755ced4c5a3a1fe9e1a813cb9d90adabd0b085dff3b4fe4a484def21be77501784114e7a71c38f6da5cf4039e3a7bbb42eb66dfedd6785538077136c4db771d1c574c7a102a43266400f3a210f6538df54db5d50a91404d25d97a12cc1926173235d356e564e582509d166916796a818cf346c4a462d02502ddb1f5e2841131fd2f8dcd12590cf2db09b6d2c2966f591afa22920bd21c36532c7ea725b9c9af54519db10dd40c3a2fb0fa3dcc10a887621fb9be6575c0991c260a74e7d3a639c34c95e35eb3eb787f39d0d7ab5118a160abcd71fc450f5e7cbc2c487c07c1dd1f5cb41142181197127ffac048a0ebe4a2e4bdf9dbd42378c3a4d9b2df63742e3e54d7353231f330496468971192d265d5c23ab634eee51af761afe1fbc1ad230219d3f6b9aeb03ddc37757142e0a810bd6437deee07564acf344a7e7075d648ec1cdf27fc6d98295d0e9792a0f8c14d474c37eaa194c27d3ac570365d8a1d6c1c3ad9eb39bb6b3cb856e08368ad951a0388aefc93cec4568b3de733154cd7910339f3ed31298ce7c1648759aeb9e837c626c9eb55ca29514722191bed928c547f6e1e5c05334c79e4f7e4022012b0697003cb21d3748573f33d6d9555d94c098371a3af0013c85bf14c8adcadf0283ba0044d8d066dbb624bd97ef77a136a92f6e846faf1795d790fc0e91a9d0d0911234874c0b0c0adc42dd0228082e589ee5fe711ecc28e76eb489b255805aa6745b51a852ad449ea317fb4170f310477f85e8afe5cc5c8da5e1d9260a5cd07f92ec09701dd21ab37372bedcd9647996ba3594c04016038716fc686f1b348f3d9ab9c6dced48979b00b7bef2bc44c2841f8930620fd8e53936097cbf22a0f5854da772488c91689a01fc187490c7aedbf0d5b18604618dcb59ea37f41757d90f81a8c7a19e1c3a98ec4ff42ab4c3525c7048f1290da1598f08d523ac43a0231208192354318fd458062535f0ab02b5629f29f436aa086c906d60119a6741ec06ac8fcda465801e048db39b3327d50cf32256b3dd15fe61350867bf2ac419de96c859d298a52dd1dafb0957e681ec466ac5d72b10972a4cd0add75181dfea13b7cfbfe199587628327931153000d2babd43a825afde3debfc2697b409bc26059b5d8a42bfceaa1c527471a39daecbd9ed5187b84b843f5434249b726be0647237e1e881745efd593a135049039c126bd2208006392f1068cb9f97fd4864d672e9e17cacdcc55ec736e9ac237bdfdebbc7b56e45b1b4267c6c77c5737088bed130e6c6192e75e4d6f1784d2fdfdb1fb43d9d4375b92065f5bd2dbc396e54c44f6630e50c6fd427ed8163b52c26121c42fad4cbc6c108cd4688238b933e2735db0702d7b3e400e7f4b2f8213f84cbbb0e6616e02f0b777819ec80a3fb10ce12748f7084c2529272a0f64a7a8950e89d42a3debf3bb858f86198784b88980882184c02c613dd2ecf72a310e0ae2bd63c7ed35006da1b8a5ab3adf28df9c3fbe0d53e7844edfd804418a220e32ea3815e5dafcbcb0eb16ee63ff4e2707f35477e9b6aff850f045691493076019e9a740fbd111ddf5a9f4087e4c7ef9d039f83f7b9df2d722959e674af0be29bd96e3b751ef26fc92c92a822ec6d18c3d32ed7af5d4db4bfdf6284ced9f0df36a14dd501558b667b875945786bedeee0bc4b136a5c4ff6641f6302b800f674ecaff5b217486fef61471c48ba60238bdf744ec707a18fa146135353716848843c002305d510ccdcb35eb8458db24e9d2f1557dca4cb900edd81ce28b210053c75cdb0d3206fe5d861aed0f3eb01a9cb6d27ccf10cb04abd01136d472c5168bdae3b339abee5b775f7fcbde69a5fe004217a166dc3432a631dab409ba85e40608dc0219808d3f7942c2103fce17a2109df0df2bd5ff525099d64b4de40c03bfe3a5600218de961412b96a62ea262f708c8837d8487c68cd1fe79b21669b95df805ce04723eb5fd8852210796d270d5a397a4959441107c7cb189fb3cc57461dfbb6181fab09daed56c0b64a1d802fe8b51a182b248393674e7f0e6569eb37f3e37e4595d7e3d7dcffd9d4e736a83a08d713413cc250129eb9c3e0d7b10f14ad0ae5a532d82cf57fee6f7c87ad0dddf0ef8ad89e2d605f793f6e2d49d1b7f2b9bcc0ff17691e269d38397a2341e6f3ec175e322742386a0cae5d082f7e16d645ef89439e83307841584c31b3b8eb474f451ec636976c5e88f29dbfda5da4d570244a646d27b29590b932923b8b595dfe35c9d8f330d98447c577eb3759cd8c49b9230f690ff03d3e44455bcad40d8398686d35f833adaec275509c475a14672d7b6f359ba025b1693ab19030dc917aceaf2c8c9e4477c2d417650a14caf7590b8d13b25f4f1f1dc488b63f8e17cb957d15ef0a800951b9c34e47161f5eb08790029ec15926f595615ce86306d3b66a31d41d76850175e6aeff95684c32375663b66e07089eb1770f3182fe62f677e090da3dd32028bd08316dd497c9753c0bc15b045838a37626b721a4f284c08096d0c5717225bd3e0d9cdf2e6995a3414e42b716b963abc9276021201193d5805f843d3475b418ac3a8ca29d7168da3d639b1f475f1397a42a29beee2208b5829ea87189b82eb9d0c37378c6251d5c8bad154b10d71afa3f371a52a27729f7646a432c35f21034049c0d5f8b19de9fea996e7c2ba6e1e69f150e32413ef5fd4824b9452cc611dfd2dbf343fecb5ac6b097839ab1361d2b83f105a62794c83c6d07f70c6c4f885e917fa79ac404238a2b7b792285f1236eaf75dc8ca8ba00458e2114183a7719d58fc2b558f819d9a27985fa8eb4549a60514e7bd1100ed5733f919fee0fc74b2996794217c136baba4c85dc46e25d7e39f39a5f02142eb5499524c0eb732f7cbc46dd6536201a6c7008847a5f0b075a09850b0d76b415a03ded5a256608437bb3be67e1340207c2a2ea2d5a79e2674dd10e1c28fc2f152e76a82e4315f7d57c83f71d5997ec27f3c0b83c4b696091113ce07dfbbce2f966f45077c4737d381943644be5676ad1e540cdaa49cc6fc48550ac45f459814ec2b9e739de7d42524e4e451807abf21b8caac2c858f3a999edd465739525d62a46b414bedd5d73a476e6afcbb68d916eee95c8b6c11a0bd55f788bcfb3ecf68ed8211db3e3e6588e34c10d61eb2d18f01424bcabac735dd6174f96f8fd76f928e66b1d3835170b52a912233555d0eb24c9cccc4b2ea3a05f066a375af208575f4e865fc9abcb517266dfe3c6e8a618337d75d125275fbcdc567241b83a4d9936ee22da3a5897d58018cfe0340a92ef0057d7945110836d00d23d3abda96432750e3a837b07984d029ffae93f8a0d93e88a6a727989577e2088e2babe3f0e9a70e884579901cceb864e5f4a7d4d2a1688acb842932edb2ce0d3e26ad46d0578fea7759051e78e4213dd219b38f881cafa19002d725925dc55f9e2686ed6e5cdfac10f397b39d2bbd843be97d8ec5b5ae376d2513a09ee249eaeb62dba2e58f4bb5642f00bd2f71c2c095414992f4f06d52eb2ca7c300f8d4a64c3d60ba42c5c0eed5c5965f0d9396fa5fa1b8a3cec3253efa702a0d2f65d187e3d0338db8d65a36136c4c3578af328ad97e9def5b60c7ad96a01c8fc31bc74d10645c04391502888fba6e54d51d6c6a1d6350701225772d957a8d4b90cec7ff06a1e6c151aa1b4739779243f105ab83a78a68cd56a9aed3f5ac05fb1f9f5cb3c93953841ae2c59222f8f43650c86fadccfc01fe46f18f6e0f108c1e80cd4459fd36a47f4014fc6b68a0267f9272ea894925a5c087f1d4ba181a2facbd9e59ff4eb4db43517a6f960b12e709840fb48e9e0ffc206b30db1bb794b84d49a63cd15243c8395cf54b1e7c74a15ad87264dd202f20311892ae9fc23fd49d832cba17cb5aa08e2a08dd99f05fc98f97261db88a9dbedb79647e8b9b024a2699a6327340b6db0b0030679080455effe56aad40f1e08b9c66cfc444929ed85dd636042a139679dcbfc44e4abe72de5bf54bff135ee7830fd6c81645d35a743589b27ee0648df327e0a5b4dddf69fedfbc45f9582239f743cf04f6b814fd297d7df7f512261d398852cc9e9738f147c1b037c6cab206a7dde59d1a9cf0354a69311d8dd6d2e880a6d7d960719cb2b6159cd9ced15801764ead31197ae5aeb12fb663800d5df4ff3b03af41b8624fcaa8318dc858ade1ac7c1c8f03153e33ab7c80661843b949f3ec09133f63613024d41c020b22c5fa179bdbc47f16a2a6a68f0da680a304cd76f089a87d25f9c75e4c82a46a8d317ee929abdaa96d9cc8845bec5d85bbde118b2d3758108e7e32b5e751572a6e5cbe45a1c0af68d4b693e6fde12e5498a2cd82712bb2852973935b08cf98f79a6c5c286ecd2c1639766636df54c9f24b51bfa1c5d597b7ec0a6ab982c920acde821c31c2ea05e4ae4e09762e448ecddd2955c7b0192a3a0a246033a22db082cf90c40d94e91a79343755810add7884d62e0f0be0f3e826aa565e891f879d88aa3a225993cc4f07f5ec29fe47e463d8d4723ec2c8f8c87952f178f2a33461e62797c5c256e5b2823664684bea488d4192920165c65fe122260d3269fb44ef14e540bb4739de98814e74ee4fa4a2605b09586a7958afd730e8b6c9263901f730c9c8a98efee25d62953f28731bebdba4b8410dc13ba31a71b58083d2086ba1eb23cbdb31f75e1374c8233680ff8e8e287db125f7a2960bcee54957eebe6f450b75c8c2ff9b04da5247694831df3489b0c2f50cea5376abc507983ff5cd0571817de9109a1a2a532253ee54905328fb94ed955d2732f3519664f4ac085b98f2cebebdb4f12e7fde6ecda8fdbe09d832db95650aa1cc59376438a716b17656dc8be2beb11fe1a9092df905cb9413d2067dec382d493938812ce65feb08ba8ddebcfa0e698192ccef808d501af66f9a2a740d45d14e1522834abb28ab29fc210e58f39839de4b64797e125b579c9a19d2c6e7cdc0621f123e0a1d012a03ec7e7032b30acfb92689c852169668f8dd9c81058dbec8e592ad2416c5e50ad1a5a9b433519aed89decaa72fb0e82b00536f83e4a56cbfc73a0a9d76d6f9470b9d0199b0ee78c9c0d3671621708cefe7fb64f0e910423fb3884381ff4c0f", 0x1000, 0x313d, 0x800000000000}, {&(0x7f0000000040)="9be22b8b2d608e743dd1733be2a085a43ce1ab536af0acdafee8e15b26", 0x1d, 0x8, 0xfffffffffffffffa}, {&(0x7f0000002000)="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", 0x1000, 0x8, 0x6}, {&(0x7f0000000080)="e7841d26b8d6c9", 0x7, 0x3, 0x10001}, {&(0x7f00000000c0)="de80c538c78af08f8f9ef2273f7edcdef741f9477f95ca6f2056dbbe607e3a2f7f620964d1a79754b2574074", 0x2c, 0x2, 0x7f}, {&(0x7f0000000100)="8bb3b39f63262ac28eef093a448b3b27d320ba576b14fbbe7438009977e3ae8c6257e84f0ebe9b8c1bfd9a01e0939a837a090ee2b1055cfbd713dc14864a007849dff633546a7f03d1aa2ff413b750a694a401146bb5acb783ac3c47949a9bfe0f26851ffb695a73f14c90976d571f3a7d7ec9d27a5d53546c65d0bf5771b59fd9f6d2", 0x83, 0x9a98, 0xffffffffffffffa3}, {&(0x7f00000001c0)="f14dbf415424e0ebfb2212866419f08950e60ca134df0569a2b9f2d264f7c6fe1808f6251712479fd361d855fbed1c3afe30236c2a", 0x35, 0xffffffffffffff66, 0x225}, {&(0x7f0000000200)="8de9951f09951766d53f149a3791483d6b48a0dd2830d9de39bfe7b0e72305244c07f59c9ee1d3cb02cf0c4898e638200d9440b21080500d370e7297c17ed758d0775ff2f74aeecf701df8cc7fe61b123f1a2dbdf4907243756c64b0de5fb61eb0b645baae29af9147b05de60bf161d8bc3d1e5289cd73a7476a9a809f35247edef6725bbf627937a5f927b440fc1d028f362dcc81ca3e732e24492bcf38abbf7a763a0c7266e14da048434b095de0ba5c4c0390d3dcd20318efac43df65c7af3e545e890bb8f4cf916387230f60f3348e345f9cbf83246b40c7d8e5ef0999288060c820f8f75fc31d", 0xe9, 0x6d8a, 0x57}, {&(0x7f0000000300)="12b16b07c7f79c4b2d4fd2f15019cdae5d368153605249fd8e385e446b9887c50b6cbebb8f69455a2af0c882", 0x2c, 0x0, 0xff}, {&(0x7f0000000340)="600f50e9ba501ff5c41e6217a902116d1066824de8ba483a501786b69fe2c107ef90ea722d4e4dfbf00e792d9ba70a894e13d04ed3c1af9be413e7c388c5480bf712ef9e5d45096e868225472e54cddea2de3d80130a6e955d0e8f3e5fc36a32992edf1cd0a2b9f4e62978fcb77a", 0x6e, 0x8001, 0x8}], 0x3e0000) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)="2f70726f632f7379732f0000000e000000000000072f6578706972655f6e6f646573745f636f6e6e00", 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x28, 0x6, &(0x7f0000581000)={{{@in=@rand_addr, @in6=@mcast2}}, {{}, 0x0, @in=@rand_addr}}, &(0x7f0000000000)=0xe8) mknod(&(0x7f0000000ffa)='./bus\x00', 0x1000, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x80801, 0x0) 00:13:25 executing program 1: pipe(&(0x7f0000000080)) syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000580)='status\x00') openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x400, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000180)={0x6, 0x5, 0x5}, 0xc) bind$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, &(0x7f00000000c0)) connect$l2tp(0xffffffffffffffff, &(0x7f0000000140)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x4, 0x4, 0x0, {0xa, 0x0, 0x9, @ipv4={[], [], @remote}}}}, 0x3a) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, r2, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f00000001c0)="66b80829a5710f23d00f21f86635300000030f23f8ba200066ed66b9c40800000f3266b98704000066b89b00000066ba000000000f30f30fbdc92ed2770c0f01cb0fc71fb800008ec0baf80c66b85fe6228b66efbafc0cec", 0x58}], 0x1, 0x54, &(0x7f0000000240), 0x100000000000016d) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000004c0)="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") ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$inet(0x2, 0x5, 0x2) 00:13:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 00:13:25 executing program 3: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540)='/dev/loop-control\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_CAPACITY(r2, 0x4c07) r3 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'veth1_to_team\x00', 0x8}, 0x18) ioctl(r0, 0x8916, &(0x7f0000000000)) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x501000, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000080)={0x2}) ioctl(r3, 0x8936, &(0x7f0000000000)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 00:13:25 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) sendmsg$alg(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xffffffaa) bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha256\x00'}, 0x58) write(r0, &(0x7f0000000280)="f7638953bb3a2adf995389896146438449a80011291b16a9559032cf161c09203c4509115d01c1aadf7d3207d0dfb5983d91cb83693ef632779789714e634dda5dd58adb6c2f128423b2b7", 0x4b) recvmsg(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$sock_ifreq(r0, 0x894a, &(0x7f0000000000)={'veth0_to_bridge\x00', @ifru_map={0x15c14000000, 0x9, 0x7, 0x9, 0x9, 0xfff}}) 00:13:25 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x700, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x5452, 0x0) 00:13:26 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x80, 0x0) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000040)=0x20, 0x4) 00:13:26 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x7, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000), 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x9}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000100)={r1, 0x1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r3 = socket$inet6(0xa, 0x80003, 0x800000000000006) ioctl(r3, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070") r4 = socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000140), 0x4) r5 = userfaultfd(0x0) prctl$setendian(0x14, 0x0) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000002000)) ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000012000/0x3000)=nil, 0x3000}, 0x1}) setsockopt$inet_mreqsrc(r4, 0x6, 0x2000000000000008, &(0x7f0000013ff4)={@remote, @rand_addr}, 0x6) close(r4) dup3(r4, r5, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x40086610, &(0x7f0000000040)={0x7ff00, 0x0, 0x200, 0x6}) 00:13:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) [ 391.422984] EXT4-fs (sda1): resizing filesystem from 524032 to 524032 blocks 00:13:26 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) time(&(0x7f0000000000)) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000040)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d, 0x3}, 0x0) 00:13:26 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x306, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x5421, 0x0) 00:13:27 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_open_dev$usb(&(0x7f0000000140)='/dev/bus/usb/00#/00#\x00', 0x9, 0x10000) ioctl$RTC_IRQP_SET(r2, 0x4008700c, 0xae1) sendmsg$nl_generic(r1, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x20, 0x1d, 0xffffffffeffffffd, 0x0, 0x0, {0x7592da11}, [@typed={0xc, 0x3, @u64}]}, 0x20}}, 0x0) r3 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x6a, 0x2001) ioctl$UFFDIO_ZEROPAGE(r3, 0xc020aa04, &(0x7f00000000c0)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}, 0x1}) 00:13:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 00:13:27 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x304, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:27 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x301200, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f00000000c0)={'mangle\x00', 0x2, [{}, {}]}, 0x48) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) [ 392.175543] EXT4-fs (sda1): resizing filesystem from 524032 to 524032 blocks 00:13:27 executing program 3: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0x1c, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000480)="2f67726f3c23fb57e6c60f1f4b45b74d999a9a8c2ce15b26e518a4cb3a9cd12dcea440d899c22c652b3a471b4a7db7f3fef6e02e2be389de133945a385bd81e9bdeeee03000000000000005b540745df4b1dee483b157624c5bc719a099e6a3509000000398c34", 0x2761, 0x0) timer_create(0x5, &(0x7f0000000040)={0x0, 0x34, 0x4}, &(0x7f0000000080)=0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) timer_settime(r1, 0x1, &(0x7f0000000100)={{0x77359400}, {r2, r3+10000000}}, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x6611, 0x0) getsockname$inet(0xffffffffffffffff, &(0x7f0000000640)={0x2, 0x0, @local}, &(0x7f0000000680)=0x10) [ 392.247926] netlink: 'syz-executor1': attribute type 3 has an invalid length. 00:13:27 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x303, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:27 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) request_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz'}, &(0x7f00000000c0)="d13ff3d776", 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x40, 0x11) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000140)={0xfffffffffffffc01, 0xd3, 0x7, 0x7ff, 0x5, 0x40}) 00:13:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) [ 392.293532] netlink: 'syz-executor1': attribute type 3 has an invalid length. 00:13:27 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) bind$llc(r0, &(0x7f0000000040)={0x1a, 0x11b, 0x5, 0x10000, 0x9, 0x2, @dev={[], 0x13}}, 0x10) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r1, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c) 00:13:27 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xff, 0x20000) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@dev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@remote}}, &(0x7f0000000040)=0xe8) sendmsg$can_raw(r2, &(0x7f0000000380)={&(0x7f00000000c0)={0x1d, r3}, 0x10, &(0x7f0000000140)={&(0x7f0000000100)=@can={{0x2, 0x5, 0x1, 0x17bd10a2}, 0x2, 0x1, 0x0, 0x0, "d849d2d5852144d4"}, 0x10}, 0x1, 0x0, 0x0, 0x4000}, 0x4004845) 00:13:27 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x0, &(0x7f00000000c0)}, 0x10) sendto$inet(r0, &(0x7f0000000200), 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) syz_open_dev$sndmidi(&(0x7f0000000300)='/dev/snd/midiC#D#\x00', 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x921b527a62bfd8af) r1 = syz_open_dev$amidi(&(0x7f0000000180)='/dev/amidi#\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000bc0)={0x0, @in6={{0xa, 0x4e20, 0x71f73245, @dev}}}, 0x84) rt_sigprocmask(0x3, &(0x7f0000039ff8)={0xfffffffffffffffa}, 0x0, 0xe7) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r1, 0x810c5701, &(0x7f0000000880)) timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040), &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1}, {0x0, 0xe4c}}, &(0x7f0000040000)) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x7, 0x0) read(r2, &(0x7f0000000080)=""/128, 0xae3f1a6) timer_delete(0x0) gettid() recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, &(0x7f00000002c0)=""/20, 0x14}, 0x100) perf_event_open$cgroup(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0xde, 0x4, 0x5, 0x0, 0x0, 0x0, 0x927a, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9, 0x7f, 0xfff, 0x374, 0xfd2, 0x0, 0xf99, 0x7, 0x100000000, 0x0, 0x5, 0x0, @perf_config_ext={0x7ff, 0x3}, 0x0, 0x1, 0x0, 0x3, 0x4, 0x0, 0x401}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$RNDZAPENTCNT(0xffffffffffffffff, 0x5204, &(0x7f0000000b00)=0x7) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="7f454c4600706a5ce1a2ee467d3bca22f507643a066104010000000000000200000020000040000000000000000c02000000000000a6d10000030038000200ffffffff468051e57464030000000300000000000000bc08000000000000f9ffffffffffffffff7f0000000000000600000000000000000800000000000005000000020000006f000000000000000000000000000000ea2b000000000000080000000000000003000000000000000800000000000000f8d1cf6bc8252c025b5f92a84bb4d5efd7201c0b3858f135eeae2dc7f0e87b4cb7c2ebe8e1bf26d90204e8796ae2234ab4507f89e0a927c56e06ac8486242f23306477b3ced713f3ccd7a0f1572c2cfeceaf21bfb67974157e7a4e10510b1d74ca0f796a92f62c8102c33ef139e0cf2ccd4388e8404194afc7dcb3c0580904a76736e493f5c3e2c8d91d510485793916f26e041f6b30857e8c9b55fe64259328116a71513c065b05319d42f98f000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000008f000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000012c30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001d000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff00000000000000000000000000000000000000000000000000db0000000000000000000000000000000000000000bb4243dbcbc2188b0017487b2e533a58643fe24b175f8e919e52849e39389043525d3ddd494ae985e53468473c711971a0f1c6201ef789867a6a6a43da1331e65f4e1a7c88aea52f23a6494510e240ed0b839a8ffb1e95afe210cd60467c1192a1c88027aed995e0b380cfde5b43203edc98da95e2a230873df201f1d2c5b9afa2a163e85dd75b2733d7061889089388ca552942e1daf09ced67f63454488474926f7c2159861e"], 0x450) write$binfmt_elf64(r0, &(0x7f0000001400)=ANY=[@ANYBLOB="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"], 0xbbb) 00:13:27 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x308, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:27 executing program 3: sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000000000009) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000440)={0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc}, 0x14) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x210200, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000180)={0x2, 0x4e24, @rand_addr=0xd6c1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f00000000c0)=0x201, 0x4) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(0xffffffffffffffff, 0x8008ae9d, &(0x7f00000001c0)=""/35) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) listen(r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000200)='bbr\x00', 0x4) sendto$inet6(r3, &(0x7f0000000280), 0xfffffffffffffedd, 0x20000004, &(0x7f0000000080)={0xa, 0x4e22, 0xfc, @empty={[0xe00000000000000, 0x0, 0xea03000000000000, 0x0, 0x0, 0x0, 0x0, 0xd9050000]}}, 0x1c) creat(&(0x7f0000000080)='./bus\x00', 0x0) open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0) r4 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000340), &(0x7f0000000180)}}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000)) prctl$setptracer(0x59616d61, r4) get_mempolicy(&(0x7f0000000280), &(0x7f00000002c0), 0x5, &(0x7f0000fed000/0x10000)=nil, 0x0) tkill(r4, 0x401104000000016) 00:13:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x40049409, 0x0) [ 392.834635] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 392.885816] audit: type=1804 audit(1538698407.670:61): pid=19363 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor3" name="/root/syzkaller-testdir014723795/syzkaller.TZwfUh/555/bus" dev="sda1" ino=16565 res=1 00:13:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) [ 392.963346] audit: type=1804 audit(1538698407.750:62): pid=19363 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor3" name="/root/syzkaller-testdir014723795/syzkaller.TZwfUh/555/bus" dev="sda1" ino=16565 res=1 [ 392.987327] audit: type=1804 audit(1538698407.750:63): pid=19354 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor3" name="/root/syzkaller-testdir014723795/syzkaller.TZwfUh/555/bus" dev="sda1" ino=16565 res=1 00:13:27 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_GETXATTR(r2, &(0x7f0000000040)={0x18, 0x0, 0x5, {0x100000001}}, 0x18) recvmsg(r0, &(0x7f00000000c0)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000023c0)=""/4096, 0xfffffffffffffe20}], 0x2, &(0x7f0000000bc0)=""/45, 0x1b2}, 0x0) 00:13:27 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x307, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:27 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000480)='/dev/audio\x00', 0x2000, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f00000004c0)={0x0, 0x8, 0x0, 0x8001, 0x10001, 0x9}, &(0x7f0000000500)=0x14) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000540)={r3, 0x3, 0x7, [0x800, 0x1ff, 0x100, 0x4, 0x89, 0xfff, 0x81]}, &(0x7f0000000580)=0x16) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000180)=0x0) fcntl$setown(r0, 0x8, r4) stat(&(0x7f0000000640)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_rdma(&(0x7f00000001c0)='127.0.0.1\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='9p\x00', 0x0, &(0x7f0000000340)={'trans=rdma,', {'port', 0x3d, 0x4e23}, 0x2c, {[{@common=@noextend='noextend'}, {@common=@access_client='access=client'}, {@timeout={'timeout', 0x3d, 0x3}}, {@rq={'rq', 0x3d, 0x409}}, {@timeout={'timeout', 0x3d, 0x1f}}, {@sq={'sq', 0x3d, 0x8}}], [{@appraise_type='appraise_type=imasig'}, {@dont_appraise='dont_appraise'}, {@smackfsfloor={'smackfsfloor', 0x3d, 'eth1bdeveth1]!'}}, {@appraise='appraise'}, {@context={'context', 0x3d, 'system_u'}}, {@fowner_eq={'fowner', 0x3d, r5}}, {@subj_role={'subj_role'}}, {@appraise_type='appraise_type=imasig'}]}}) clone(0x802502001ff4, 0x0, 0xfffffffffffffffe, &(0x7f00000000c0), 0xffffffffffffffff) pipe(&(0x7f0000bbc000)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x5, &(0x7f0000000000)) r7 = dup2(r6, r1) write$P9_RXATTRCREATE(r7, &(0x7f0000000040)={0x7}, 0x0) r8 = getpid() ptrace$getregset(0x4204, r8, 0x203, &(0x7f0000000140)={&(0x7f0000000080)=""/62, 0x3e}) 00:13:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) r4 = socket$inet6(0xa, 0x1, 0x0) r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200000, 0x0) ioctl$EVIOCSFF(r5, 0x40304580, &(0x7f0000000040)={0x52, 0x4, 0x1f, {0x8, 0xcb5}, {0x9, 0x40}, @const={0x4, {0x6, 0x2, 0x7, 0x100000000}}}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="05000000000000100d00004005006e0000212e3b0b23e3a9ef0000400000f74c3da7691a56f0000000000000000000000a00000006edc40d0000000000000000"]) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000004c0)=ANY=[@ANYBLOB="01000000000000008601000000000000003040"]) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000100)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1}) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r5, 0x84, 0x6d, &(0x7f0000000140)={0x0, 0x57, "c68d8cc06b53405dfe8a2874326e403f1205fec1ca1b8be3cf15f806392128b734c651705898739f8a66aa63be5b23b549f0ebf2f8bab465d53c26c427edc1cd82e98abad5f7ccd5a25878084331ac91e625c36ef2ff4a"}, &(0x7f00000001c0)=0x5f) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000200)={r6, 0x400}, &(0x7f0000000240)=0x8) 00:13:27 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndtimer(&(0x7f00000b5ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000040)={{0x0, 0x0, 0x7, 0x0, 0xffffffffffffffff}, 0xce7e, 0x7f}) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000100)={{}, 0x1}) [ 393.108441] kvm [19385]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0x186 data 0x403000 00:13:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x5450, 0x0) [ 393.150966] kvm [19385]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0x186 data 0x403000 00:13:28 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) fadvise64(r0, 0x0, 0x5b, 0x2) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:28 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0xb00, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:28 executing program 3: socketpair(0x1, 0xb, 0xcf, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000000100)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x4, 0x67, 0x9, 0x11, 0x0, 0xffffffffffffffff, 0x7}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r3, &(0x7f00000002c0)="5625a06b156b53754de0cf2ff9c7450572c2c2c7bc19aadd9082eb7678a0799bb62093d0", &(0x7f00000000c0)="04"}, 0x20) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x8000, 0x0) ioctl$IOC_PR_RELEASE(r4, 0x401070ca, &(0x7f0000000200)={0x0, 0xffffffffffffa334, 0x1}) close(r1) signalfd(r2, &(0x7f0000000280)={0x5}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000240)={0xf5162958e51bc33f, 0x2, 0x5, 0xfffffffffffffffb, 0x5, 0xffffffffffffffff, 0x7}, 0x2c) 00:13:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 00:13:28 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000040)={r0}) setsockopt$inet_sctp_SCTP_RECVNXTINFO(r4, 0x84, 0x21, &(0x7f0000000080)=0x600000000000, 0x4) getsockopt$inet6_tcp_int(r2, 0x6, 0x12, &(0x7f00000000c0), &(0x7f0000000100)=0x4) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x21, &(0x7f0000013e95), 0x4) setsockopt$inet_sctp6_SCTP_INITMSG(r3, 0x84, 0x14, &(0x7f0000000000)={0x0, 0x2}, 0x8) close(r3) close(r2) 00:13:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000200)="ad360fc7f3260f00d5d8163200baf80c66b8348be98b66efbafc0c66b8ea1de44666ef660f3adf80c0003566b94c06000066b80000000066ba008000000f30660f3a6350ee052e0f01c9670f00905a3b0000", 0x52}], 0x1, 0x0, &(0x7f0000000280), 0x0) time(&(0x7f0000000140)) r3 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x48f2bec0, 0x80000) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000100)=0x14) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000280)={0x7b, 0x0, [0x48a, 0xfffffffffffffffe, 0x4]}) [ 393.682748] QAT: Invalid ioctl [ 393.694339] QAT: Invalid ioctl 00:13:28 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhci\x00', 0xa0040, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000200)={{{@in=@rand_addr, @in=@remote}}, {{@in6}, 0x0, @in=@multicast1}}, &(0x7f0000000300)=0xe8) r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cgroup.stat\x00', 0x0, 0x0) ioctl$sock_inet_SIOCRTMSG(r2, 0x890d, &(0x7f00000000c0)={0x8, {0x2, 0x4e24, @broadcast}, {0x2, 0x4e21}, {0x2, 0x4e24, @multicast1}, 0x110, 0x80, 0x3ff, 0x5, 0xffffffff, &(0x7f0000000080)='veth0\x00', 0x2, 0x0, 0x9192}) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000140)) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0x9) get_thread_area(&(0x7f0000000340)={0x6, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2, 0x1f, 0x7, 0xac4b, 0x800, 0x4}) sendto$inet6(r3, &(0x7f0000000100), 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) ioctl$TIOCCONS(r2, 0x541d) r4 = socket$inet(0x10, 0x3, 0x4) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000380)={0x0, 0x6}, &(0x7f00000003c0)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000400)={r5, 0x100000001, 0x10}, &(0x7f0000000440)=0xc) sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000004e22000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 00:13:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) 00:13:28 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x360, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:28 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x5, &(0x7f0000000440)=[{&(0x7f0000000280)="6f770697c143f8510bd779cb3998de0d3588c8c2b98aef804c1d538f8779a0ddd697771d1fe73a1276ca95181a366125b6fa161dbd8c0269f72dc8e808a5fb9bfefc2a64ce92b7a54f8d6b62947c795512ac0b44f40bee99ae850ae18d6aab237df01ef029d9f72c16cc476ee373294607a2abd736543f599091e122b5b274070058d632a9c65c324e039255777e3bf43f38ce518d5bad6abb9fffe032ced52d", 0xa0, 0x8f9}, {&(0x7f0000000340)="60d2fef52dbc20f305df9e562016f0fcd38f1128013ad97c42d2a20eebe53c6c2bc316932b7924c4a92b56366fc7e3010b533b8a9eece8957ac29ef134ad9296c4b44fac11d424f618635edd5aa894802b19ca9bc6e31bcf7b", 0x59, 0x1}, {&(0x7f0000000140)="452c3ec4653784505487d662ec", 0xd, 0x80}, {&(0x7f00000003c0)="88d6f41102776664eeae1921c519c6d67aed775f79ee36e6e01595638d2150e40638e8537cca9792727b9522efe5535a419f9421d46157e835deb49146d60eeed081f702a87d5fa9d4d965a43416f30c69c174689929eb21472c759cff16433f6310c2e81c3f659c5a523cc09fe7ba45e6b5f113c3744ac671", 0x79, 0x5}, {&(0x7f0000000500)="588c122b261736199acd232292eace0911efdd42f6933da292b081fe2c54abb3713e59431002fa30b87f56ad76326f6ccb1f42416be17a416f1aa26a8bf0c37872447ea9c1d1ce8640279b71a17e9f7e371f1d96c2030c6173e1ecc87dd6f64864ba907efd697edc872b1f853f67c8e804aeacfa93fd79a9199bbb4c8c7a20d01dd564cd8c82f5ab05", 0x89, 0x100000001}], 0x2000000, &(0x7f00000005c0)={[{@ssd_spread='ssd_spread'}], [{@measure='measure'}, {@subj_role={'subj_role', 0x3d, 'morus640\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'self-}{self^%proc)[vboxnet1'}}, {@fsmagic={'fsmagic', 0x3d, 0x3}}]}) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) exit_group(0x1b) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0xc00, 0x0) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000040)=0x9, 0x4) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:28 executing program 1: mkdir(&(0x7f0000027000)='./file0\x00', 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f00000000c0), 0xffffffffffffffff) mount(&(0x7f0000000040)=@nullb=':6evQnullb:\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='ceph\x00', 0x0, &(0x7f0000000140)="50f073656c696e75786367726f757000") 00:13:28 executing program 1: clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x2, 0x637, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001100], 0x0, &(0x7f0000000000), &(0x7f0000001100)=ANY=[@ANYBLOB="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"]}, 0x6af) [ 393.956702] libceph: parse_ips bad ip ':6evQnullb' [ 393.967967] libceph: parse_ips bad ip ':6evQnullb' [ 393.967987] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 394.078373] kernel msg: ebtables bug: please report to author: EBT_ENTRY_OR_ENTRIES shouldn't be set in distinguisher [ 394.112702] kernel msg: ebtables bug: please report to author: EBT_ENTRY_OR_ENTRIES shouldn't be set in distinguisher 00:13:29 executing program 3: syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x804, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="b400000000000000a500000000000000000000000000000000950000000000000000000000000000"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0x3e9, &(0x7f000000cf3d)=""/195}, 0x48) 00:13:29 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x310, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) 00:13:29 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ab553fec94248c32e27d04060000288a2fc7e5a6639423007a3c2aaacd7feca4fea699ccac5380a0c7", 0xfffffffffffffeb6) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) socketpair(0x11, 0xf, 0x9, &(0x7f0000000100)={0xffffffffffffffff}) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000140)={@loopback, 0x5, 0x3, 0x0, 0x2, 0x9, 0xfffffffffffffffc, 0x5}, &(0x7f0000000280)=0x20) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:29 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = dup2(r0, r0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000002440)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x1008) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=r2, @ANYBLOB="00000400d0f204ffe3000800"], 0x10) r3 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x7, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='reno\x00', 0x5) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r4 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r4, &(0x7f0000000300)=ANY=[], 0xffffffaa) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f0000000280)={r2, @in={{0x2, 0x4e20, @multicast1}}}, 0x84) recvmsg(r4, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000140), 0x0, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:29 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x2}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000000)) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f00000000c0)={0x30}, 0x30) lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='system.posix_acl_default\x00', &(0x7f0000000200)=""/208, 0xd0) readv(r1, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/21, 0x15}], 0x1) r3 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1000000000016) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x22000, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r4, 0x80dc5521, &(0x7f0000000300)=""/230) 00:13:29 executing program 3: r0 = socket(0x40000000015, 0x805, 0x0) getsockopt(r0, 0x114, 0x5, &(0x7f0000af0fe7)=""/13, &(0x7f000033bffc)=0xf0) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="5462ffff00a8eaa122108aeb6a0000009e4adfd723f6c1deeee3975477350cfdaf4d", @ANYPTR=&(0x7f0000000000)=ANY=[@ANYBLOB="9cd46c90fde97792faa31a2a5507824f2fdfadaf137ffe179eb59b7211050663be4b7f8b53a102d2f4e0ab8be24d811f2dd2be5e30682009c8b82455299d28aadb71a47d0b2047347ff16b65e2a70703479fb390c8ef7263c9538adde6286c080fb5ed72120441d7ea6e78d3badf4e40ac31c8fcaac4fe8454f90aafc3a5be567958a568e9ebfcda4e04ffd65acb870d4f413a553c6c00436be5beb6b12544459a57ba748db73a5f6f729e40cc"], @ANYBLOB="3f000800aa6001000000000002000000e78dafb280a87f1f97c653cb801567ddce9b29e3b2c8fa8d47ec6bc7fc693cb53162b1cc51002c8ee6060ed62605d3279a2767410bf81f47d484e38c4c80a44e7c377ce0fbcc3e343bf86d8fe11505c05f04bac175c974054e28e36a4bbecc41f3fdacd153a7d18a1618e3b8317564c552"]) getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000180)={"4e45544d41502d0000000000060000000000000000c500"}, &(0x7f0000000140)=0x1e) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=0x0) syz_open_procfs$namespace(r1, &(0x7f0000000240)='ns/pid_for_children\x00') 00:13:29 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x40) getpeername(r0, &(0x7f0000000580)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000480)=0x80) connect$packet(r1, &(0x7f0000000340)={0x11, 0xf6, r2, 0x1, 0xb5d, 0x6, @link_local}, 0x14) recvfrom$inet(r1, &(0x7f0000000380)=""/101, 0x65, 0x10000, &(0x7f0000000400)={0x2, 0x4e21, @multicast2}, 0x10) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) clock_getres(0x3, &(0x7f0000000280)) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x800c0, 0x0) getsockname$unix(r4, &(0x7f00000000c0), &(0x7f0000000040)=0x6e) 00:13:29 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0xffffffffffffff7f) r1 = socket$inet6_sctp(0xa, 0x2, 0x84) sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) write(r1, &(0x7f00000000c0)='D', 0x1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000900)={0x0, 0x0, 0x20}, 0xc) write$binfmt_misc(r1, &(0x7f0000000240)={'syz1'}, 0x34000) ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f00000001c0)="424d802a66b1a69e4108335e88") write(r1, &(0x7f0000000040)='0', 0x1) write$binfmt_misc(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="80"], 0x1) r3 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r3, 0x0, 0x48c, &(0x7f0000000100)={0x2, 'ipddp0\x00', 0x4}, 0x18) inotify_init1(0x80000) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000140)={0x3}, 0x20) sendmmsg$alg(r1, &(0x7f0000005d40)=[{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000002c0)="ca", 0x1}], 0x1}], 0x1, 0x0) r4 = accept4(r1, 0x0, &(0x7f0000000300)=0xffffff2b, 0xffffffffffffffff) shutdown(r4, 0x1) 00:13:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 00:13:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x70e000) 00:13:29 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x3db, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:29 executing program 3: r0 = inotify_init1(0x0) r1 = inotify_init1(0x0) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f000045fff8)={0x0, 0x0}) ptrace$setopts(0x4208, r2, 0x0, 0x0) fcntl$setown(r0, 0x8, r2) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) ptrace(0x4207, r3) ptrace$setregset(0x2, r3, 0xffffffffff600000, &(0x7f0000000100)={&(0x7f0000000140)}) 00:13:29 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000005c0)={'vcan0\x00', 0x0}) r2 = socket$xdp(0x2c, 0x3, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x101100, 0x0) getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000080), &(0x7f0000000140)=0x4) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000000c0)=0x2, 0x4) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000600)={&(0x7f0000000000)=""/17, 0xfffc, 0x1000}, 0x18) setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000180)=0x8, 0x4) setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f00000002c0)=0x80, 0x4) bind$xdp(r2, &(0x7f0000000300)={0x2c, 0xfffffffffffffffe, r1}, 0x10) 00:13:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc0) 00:13:30 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) fsetxattr$security_selinux(r0, &(0x7f00000002c0)='security.selinux\x00', &(0x7f0000000040)='system_u:object_r:iptables_conf_t:s0\x00', 0x25, 0x3) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x50002, 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000100)={0x0, 0xffffffffffffeb6d}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000280)={r3, 0x5}, 0x8) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:30 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x311, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:30 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x80100, 0x0) futimesat(r0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={{0x0, 0x7530}}) r1 = memfd_create(&(0x7f00000002c0)='nbd\x00', 0x2) getsockopt$inet6_int(r1, 0x29, 0x10, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000000)={0x7, 0x8, 0xffffffff, 0x3, 0x5}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000040)={0x0, 0x113000, 0x3ff, 0xfffffffffffffff8, 0x5}) syz_genetlink_get_family_id$nbd(&(0x7f00000001c0)='nbd\x00') 00:13:30 executing program 1: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f00000000c0)=0x0) process_vm_writev(r0, &(0x7f0000001200)=[{&(0x7f0000000100)=""/14, 0xe}, {&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/186, 0xba}], 0x3, &(0x7f0000004540)=[{&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000002240)=""/4096, 0x1000}, {&(0x7f0000003240)=""/241, 0xf1}, {&(0x7f0000003340)=""/4096, 0x1000}, {&(0x7f0000004340)=""/1, 0x1}, {&(0x7f0000004380)=""/181, 0xb5}, {&(0x7f0000004440)=""/108, 0x6c}, {&(0x7f00000044c0)=""/69, 0x45}], 0x8, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = mq_open(&(0x7f0000000040)='eth0\x00', 0x42, 0x0, &(0x7f0000000000)={0x0, 0x6, 0x4}) mq_unlink(&(0x7f0000fc4ffb)='eth0\x00') mq_timedsend(r1, &(0x7f00000e6000), 0x0, 0x0, &(0x7f0000e0b000)) mq_timedsend(r1, &(0x7f0000307ffd), 0x0, 0x0, &(0x7f0000fbc000)) close(r1) 00:13:30 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) iopl(0x10) 00:13:30 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x803000000000000) 00:13:30 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='pagemap\x00') getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000080)={0x0, 0x5}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000100)={r1, @in={{0x2, 0x4e20, @broadcast}}}, 0x84) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x0, 0x0, 0x0, 0xc, 0x1}, 0x2c) 00:13:30 executing program 1: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x200000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000080)="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") ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) ioctl$int_in(r1, 0x800000c0044dff, &(0x7f0000001000)) 00:13:30 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x30a, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:30 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet6(0xa, 0x1, 0x8) getsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000000), &(0x7f0000000080)=0x4) getitimer(0x3, &(0x7f00000001c0)) openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x28c280, 0x0) 00:13:30 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a911993f0265df5cf1cdd8b55", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x6, 0x18040) ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000100)={@my=0x1}) ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f00000000c0)=0x9) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(r1, &(0x7f0000000400)=[{&(0x7f0000002d80)=""/4096, 0x1000}], 0x1) write$binfmt_elf64(r1, &(0x7f0000000880)=ANY=[@ANYBLOB="7f454c460000000000000000000000000000000000000000000000000000000040fffb9eeb9004adee0000000000000000000000000038000000000000007f00000000000000000000f2b8301650b68904e1b45ed56a00000000000000060000000000000000000000000000000000000000000000000000"], 0x78) 00:13:30 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x500, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:31 executing program 0: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000040)={'gretap0\x00', {0x2, 0x4e22, @local}}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000000)="ab5504000013288a0000000000000000", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc000000000000000) 00:13:31 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f00000004c0)={0x0, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000140)="db", 0x1) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) getxattr(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)=@known='security.capability\x00', &(0x7f0000000380)=""/88, 0x58) mkdir(&(0x7f00000009c0)="131377c5fc35d41454d5d41d29ad1a6029598146e6be166e41ad0dbd4054033c9f33bbda8224a2f3d772e7636e48b33cbf708372e8f1b9933ec5127743be2206209ef02df9cbf2f6e880d3382f00", 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/ip_tables_matches\x00') pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)='./file0\x00') fanotify_mark(r1, 0x0, 0x8030010, r1, &(0x7f0000000440)='./file0\x00') bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r1, 0x28, &(0x7f0000000180)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000400)={r2, 0x8001, 0x10}, 0xc) rename(&(0x7f00000001c0)="131377c5fc35d41454d5d41d29ad1a6029598146e6be166e41ad0dbd4054033c9f33bbda8224a2f3d772e7636e48b33cbf708372e8f1b9933ec5127743be2206209ef02df9cbf2f6e880d3382f00", &(0x7f0000000040)='./file0\x00') 00:13:31 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x2b00, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:31 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes192\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r2 = socket(0xb, 0x3, 0x1) setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000280)={@in6={{0xa, 0x4e24, 0x6, @loopback, 0x9}}, 0x5, 0x0, 0x3, "3449d55d27c1855fb6c4ba95e9b792146f621493235f47771298297396a2984c2d3163766fcfa68547bafda6efcce85d5a0b42b63ec6df4c92792bee2de353371d90e31d7c1e306a9242cec833977447"}, 0xd8) getpeername$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000001c0)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000380)={'team0\x00', r3}) write$binfmt_script(r1, &(0x7f0000000140)=ANY=[@ANYRES64=0x0, @ANYRESDEC], 0x4c1f) getsockopt$IP6T_SO_GET_REVISION_TARGET(r2, 0x29, 0x45, &(0x7f0000000000)={'HL\x00'}, &(0x7f0000000040)=0x1e) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:31 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="b7f2288a911993f0265df5cf1cdd8b55", 0x10) r1 = accept$alg(r0, 0x0, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x6, 0x18040) ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000100)={@my=0x1}) ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f00000000c0)=0x9) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(r1, &(0x7f0000000400)=[{&(0x7f0000002d80)=""/4096, 0x1000}], 0x1) write$binfmt_elf64(r1, &(0x7f0000000880)=ANY=[@ANYBLOB="7f454c460000000000000000000000000000000000000000000000000000000040fffb9eeb9004adee0000000000000000000000000038000000000000007f00000000000000000000f2b8301650b68904e1b45ed56a00000000000000060000000000000000000000000000000000000000000000000000"], 0x78) 00:13:31 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0xfe89, &(0x7f0000000280), 0x10000030}}], 0x1ac, 0x0, &(0x7f0000003280)={0x0, 0x1c9c380}) syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000240)={'eql\x00'}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0) preadv(r4, &(0x7f0000001ac0)=[{&(0x7f00000006c0)=""/21, 0x15}, {&(0x7f00000008c0)=""/153, 0x99}, {&(0x7f0000000980)=""/4096, 0x1000}, {&(0x7f0000001a00)=""/138, 0x8a}], 0x4, 0x0) r5 = timerfd_create(0x2, 0x80000) finit_module(r5, &(0x7f00000005c0)='mime_typeInodev)vboxnet1nodev#nodev\\vmnet1/\x00', 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000400)="66b9800000c00f326635000400000f300fc71e4425749e66b8eab9ffdd0f23d80f21f86635400000100f23f866b8ef6700000f23c00f21f8663501000f000f23f866b9860b000066b80300000066ba000000000f306666660fd5ef66b8ca9300000f23d00f21f86635100000010f23f8ba6100ec66b80d0000000f23d00f21f866351000000e0f23f8", 0x89}], 0x1, 0x0, &(0x7f0000000180), 0x0) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r1) perf_event_open(&(0x7f000001d000)={0x1, 0x3ec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000680)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00003e2000/0x2000)=nil, 0x2000}}) prctl$intptr(0x29, 0x2) clone(0x0, &(0x7f0000000240), &(0x7f00000001c0), &(0x7f0000000140), &(0x7f0000000200)) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x2}, &(0x7f0000000100)=0xc) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000200)={r6, 0x80000001}, 0x8) semget$private(0x0, 0x0, 0x40) read(0xffffffffffffffff, &(0x7f0000000400)=""/100, 0x64) clock_gettime(0x0, &(0x7f00000001c0)) 00:13:31 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2000, 0x0) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = geteuid() mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='fuseblk\x00', 0x28028, &(0x7f00000003c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r3}, 0x2c, {'group_id', 0x3d, r4}, 0x2c, {[{@default_permissions='default_permissions'}], [{@subj_type={'subj_type'}}, {@euid_gt={'euid>', r5}}]}}) 00:13:31 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x3b3, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7f040000) 00:13:31 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x30e, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x400000b7) 00:13:31 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x8c02, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000040), &(0x7f00000000c0)=0xb) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x1ff}, &(0x7f0000000140)=0xc) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000280)={r3, 0x6e2978ec}, &(0x7f00000002c0)=0x8) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:31 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x5) bind$inet6(r0, &(0x7f00004c0000)={0xa, 0x4e23, 0x0, @ipv4}, 0x1c) listen(r0, 0x4000000043) r1 = socket$inet6_sctp(0xa, 0x4000000000000001, 0x84) shutdown(r1, 0x2) r2 = accept4(r0, 0x0, &(0x7f0000000240), 0x0) shutdown(r2, 0x2000000001) sendmsg$kcm(r2, &(0x7f0000003880)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000380)="9b", 0x1}], 0x1, &(0x7f0000000500)}, 0xc041) ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000000)) add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa) r3 = dup(r2) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x20, 0x5}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, &(0x7f0000000140)={r4, 0x2}, 0x8) connect$nfc_llcp(r2, &(0x7f0000000040)={0x27, 0x0, 0x2, 0x6, 0x3, 0xfffffffffffffff8, "2394b7500967b2af3dd03fa60771421a8147510240283af88e15da33f7d6d8882baa0eb5774c85a40d38030e1303ef97d01daa1e84fdb65760c02aa41af2c5", 0x1d}, 0x60) 00:13:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000009f) 00:13:31 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x302, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:31 executing program 3: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f00000001c0)) mount(&(0x7f00008deff8), &(0x7f0000000100)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000)) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x200, 0x80000) ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f0000000180)={0x7, 0x1f}) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={0x0, r0, 0xe, 0x1}, 0x14) 00:13:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500000000000000) 00:13:32 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$netlink(0x10, 0x3, 0x9) setsockopt(r1, 0x10e, 0xb, &(0x7f0000f67000)="9adc01ce", 0x4) sendmsg$nl_route(r1, &(0x7f0000002280)={&(0x7f0000000240), 0xc, &(0x7f0000002240)={&(0x7f0000000000)=ANY=[]}}, 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@loopback}, &(0x7f0000000040)=0x14) write(r1, &(0x7f0000000140)="2200000018007c4e47d7b1ccff652186979f580700f417e512b87cba48c1cb65d145", 0x17) 00:13:32 executing program 5: bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmsg$alg(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x27e4446f8fbf48c, &(0x7f0000000000)=[@op={0x18, 0x117, 0x3, 0x1}, @iv={0x58, 0x117, 0x2, 0x44, "2618aba9c3b901456fdb47eef72255bfc250d4f465346cc4dacd8083f1940260cc0e25f273bb4a82c8588bdf96035f7d322d53f4737c7987a0e15b3bdfb428624b4e71d0"}], 0x70, 0x4}, 0x800) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x14882, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000100)={0x0, 0x8, 0x1, [0x0]}, &(0x7f0000000140)=0xa) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000280)={r2, @in={{0x2, 0x4e23, @broadcast}}, 0x3}, &(0x7f0000000340)=0x90) write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r0, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:32 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x309, 0x0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:32 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) readv(r0, &(0x7f0000000540)=[{&(0x7f00000000c0)=""/54, 0x36}, {&(0x7f0000000100)=""/92, 0x5c}, {&(0x7f0000000180)=""/239, 0xef}, {&(0x7f0000000280)=""/187, 0xbb}, {&(0x7f0000000340)=""/124, 0x7c}, {&(0x7f00000003c0)=""/184, 0xb8}, {&(0x7f0000000480)=""/136, 0x88}], 0x7) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20) r1 = accept$alg(r0, 0x0, 0x0) io_setup(0x1, &(0x7f0000000080)=0x0) io_submit(r2, 0x1, &(0x7f0000738000)=[&(0x7f0000f73fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f000079a000)="16", 0x1}]) 00:13:32 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x100000c7, 0x0) r0 = getpid() r1 = syz_open_procfs(r0, &(0x7f0000000280)='net/route\x00') preadv(r1, &(0x7f0000000480), 0x1000000000000117, 0x0) 00:13:32 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha384\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) write$binfmt_script(r0, &(0x7f0000000280)={'#! ', './file0', [{0x20, '\'posix_acl_access+proc-'}, {0x20, 'wlan1'}, {}, {0x20, 'drbg_nopr_hmac_sha384\x00'}, {0x20, 'rng\x00'}, {0x20, "5d232821a676626f786e65743176626f786e65743076626f786e6574302b73797374656d08252d5d73656c662b"}, {0x20, 'drbg_nopr_hmac_sha384\x00'}, {0x20, 'lobdev'}, {0x20, '+mime_type'}, {0x20, 'system,@]'}], 0xa, "a1a8ed4dfff54430e0ac4bfccbf95d12e16c83eb6d1f177f875e2bba64f6074afd937c3b81e433b879f730c798f585"}, 0xd6) sync() r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:32 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:32 executing program 1: socketpair$unix(0x1, 0x4000000000000002, 0x0, &(0x7f0000002640)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) seccomp(0x1, 0x800, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x81}, {0x6, 0x0, 0x0, 0xffffff7f7ffffffe}]}) socketpair(0x3, 0x3, 0x800, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5387, &(0x7f0000000180)) getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000001c0), &(0x7f0000000200)=0x8) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x100, 0x0) getsockopt$llc_int(r2, 0x10c, 0x4, &(0x7f0000000040), &(0x7f0000000100)=0x4) listen(r2, 0x8) 00:13:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x80000) 00:13:32 executing program 3: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) close(r0) r2 = openat$userio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/userio\x00', 0x80000, 0x0) fstat(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x40000, 0x0) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000780)='9p\x00', 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@msize={'msize', 0x3d, 0x5}}, {@dfltuid={'dfltuid', 0x3d, r3}}]}}) 00:13:32 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xb3, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:32 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) syz_execute_func(&(0x7f0000000000)="0fae4e01d2e3c4a2350d4e246766f0f79864000000c421e563fb66450fd4c1c4631d0c4a5d00478055009c0f183936664a0f3a6126e9") recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:32 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='attr\x00') mq_open(&(0x7f0000000000)='}@^\x00', 0x880, 0x8, &(0x7f0000000040)={0x47, 0x7, 0x0, 0x1000, 0x3, 0x40, 0x0, 0x8}) fchdir(r0) sendmmsg(0xffffffffffffffff, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0x8, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x2, 0x0) r1 = gettid() ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000100)={0x3, 0x80000000}) syz_open_procfs(r1, &(0x7f00000000c0)='autogroup\x00') 00:13:32 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis256\x00'}, 0xfffffeb2) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1b000000) 00:13:32 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x500000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:32 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000180)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0063404100000000000000000000000000000000000000000000000007000013bf364c00", @ANYPTR=&(0x7f0000000200)=ANY=[@ANYBLOB="852a627300000000", @ANYRES64=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], @ANYPTR=&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']], 0x0, 0x0, &(0x7f0000000580)}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x2002, 0x2) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f00000001c0)) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x4, 0x0, &(0x7f0000000080)=[@enter_looper], 0x48, 0x0, &(0x7f0000000480)="f27aec438116cefc2a394072b6ad8809e53ac6553db7f225a4e47722a00ba8846454ad779316094e4bee8cab76761555d3676404fb3c728f045f7d9ecc9b2662539500d7df7d1802"}) ioctl$BINDER_SET_MAX_THREADS(r2, 0x40046205, 0x9) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000040)={0x44, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="002340400100000000000000000000000000000000000000000000000000000000000000000000005a6e00000000000000000000", @ANYPTR=&(0x7f0000000280)=ANY=[], @ANYPTR=&(0x7f00000002c0)=ANY=[]], 0x0, 0x0, &(0x7f0000000080)}) timer_create(0x0, &(0x7f0000000280)={0x0, 0x5, 0x0, @tid=0xffffffffffffffff}, &(0x7f00000002c0)=0x0) timer_settime(r3, 0x0, &(0x7f0000000340)={{0x77359400}}, &(0x7f0000000380)) 00:13:32 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x2) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") write(r0, &(0x7f0000000440)="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", 0xfffffffffffffea4) r1 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r1, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c) [ 398.172982] binder: 19764:19765 unknown command 1094738688 [ 398.187681] binder: 19764:19765 ioctl c0306201 20000000 returned -22 [ 398.241794] binder: 19764:19777 unknown command 1077945088 [ 398.247893] binder: 19764:19777 ioctl c0306201 20000040 returned -22 00:13:33 executing program 0: socketpair(0xa, 0x80002, 0x6, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r0, 0xc08c5334, &(0x7f0000000280)={0x7fffffff, 0x63, 0xffff, 'queue0\x00', 0x7ff}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) sendmsg$alg(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000023c0)="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", 0x1000}, {&(0x7f0000000040)="c7abe7baa0178dc90d58ff003b03d2e3a70cdbe18656e770e1220c5b5ab5d716d139597e27d1559fd32ebdda0cb57bb520fe87ba", 0x34}], 0x2, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1f8, 0x8014}, 0x20000001) pipe2$9p(&(0x7f0000000000), 0x4000) 00:13:33 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 00:13:33 executing program 3: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) socket$kcm(0xa, 0x5, 0x0) socketpair$inet6(0xa, 0x80000, 0x2, &(0x7f0000000280)) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000480)) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000002e0000001c000000000010009500000000000000"], &(0x7f0000000180)="4550d4001f91eb2f57b73224433025039c3096b20c6b439348bf689c08608537d6223e63adc0624fbae2e109359dce6922324ccc13160b68cae6430697259dd52d1f73e16adc3592d02925dffae85e9cd2398c6c67c87fb5b12602f145b484be45912966e8b7e2f66069c56dd76c1dc112013c3a6b4de999cdcdc8855aee3437dcc87580cfbe546fbbfbc0eb56d8bbbea2904a7c73c2", 0x0, 0x60, &(0x7f0000000000)=""/195}, 0x16) r2 = syz_open_dev$amidi(&(0x7f0000000300)='/dev/amidi#\x00', 0x1, 0x141100) setsockopt$inet6_buf(r2, 0x29, 0x2f, &(0x7f0000000500)="d71194c263996abbee34dc0a9a96e6ed3b10a70cd5f8563059234e449ebac2770f6bb019fa6163df98d7c9d2e82613a412eda997ffc5669881397277011e2effe0f01947bcfd9b58bb5373aa942e519efd10479312d8d059d64daaa5e70ea37e64b24c10d7e456e0bbf9a757fb0e760cbf05951d7a33f7247da314536fd22320a6", 0x81) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0xe, 0xe1, &(0x7f0000000240)="d59c3ecee7a6a0344bd000c9d084", &(0x7f0000000340)=""/225, 0xf000}, 0x28) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r3 = getpgid(0xffffffffffffffff) sched_setscheduler(r3, 0x2, &(0x7f00000005c0)=0x20) 00:13:33 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x40030000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00) [ 398.963927] binder_alloc: binder_alloc_mmap_handler: 19764 20001000-20004000 already mapped failed -16 [ 398.984109] binder: BINDER_SET_CONTEXT_MGR already set [ 398.988927] binder: 19764:19802 unknown command 1094738688 [ 399.004838] binder: 19764:19802 ioctl c0306201 20000000 returned -22 00:13:33 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x6000000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:33 executing program 3: r0 = socket$inet6(0xa, 0x4000000000000001, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000400)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in, 0x0, 0xff}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, 0xe8) close(r0) io_setup(0xc000, &(0x7f0000000000)) r1 = open(&(0x7f0000000100)='./file0\x00', 0x20000, 0xa8) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x408000}, 0xc, &(0x7f0000000300)={&(0x7f00000006c0)={0xe0, r2, 0x200, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x18, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x40}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x1a, 0x2}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x2}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x77a}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x80000000}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x54, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x8000}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x9}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x10000}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x100}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3ff}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x81}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8d5}]}, 0xe0}, 0x1, 0x0, 0x0, 0x804}, 0x4044000) openat$audio(0xffffffffffffff9c, &(0x7f0000000240)='/dev/audio\x00', 0x800, 0x0) syz_open_dev$audion(&(0x7f00000003c0)='/dev/audio#\x00', 0x6, 0x220000) syz_open_dev$mice(&(0x7f00000005c0)='/dev/input/mice\x00', 0x0, 0x4000) r3 = request_key(&(0x7f0000000040)='rxrpc_s\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='bdev\'lo/eth1vmnet1+nodevmd5sum,loppp1,\x00', 0xfffffffffffffff8) keyctl$describe(0x6, r3, &(0x7f0000000140)=""/232, 0xe8) syz_open_dev$dmmidi(&(0x7f0000000680)='/dev/dmmidi#\x00', 0x3ff, 0x400000) [ 399.006758] binder: 19764:19777 ioctl 40046207 0 returned -16 [ 399.027123] binder: 19764:19814 unknown command 1077945088 00:13:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc100000000000000) 00:13:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000080)) [ 399.064177] binder: 19764:19814 ioctl c0306201 20000040 returned -22 00:13:33 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xfe80, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) 00:13:34 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f, 0x1009}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f00000000c0)={0xa, 0x4, 0xfa00, {r1}}, 0xc) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:34 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={&(0x7f0000000040), 0xc, &(0x7f0000000080)={&(0x7f0000000340)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@local}, {@in=@broadcast, 0x0, 0x6c}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0xa, 0x4, 0x0, 0x7472}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0) socketpair(0x3, 0x80800, 0xb9, &(0x7f0000000000)={0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, r2, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2d}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x40000) 00:13:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700) 00:13:34 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x5, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:34 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e23, @rand_addr=0x3ff}}, 0xc6, 0x7}, &(0x7f0000000040)=0x90) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@sack_info={r1, 0x1ff, 0x1}, &(0x7f0000000100)=0xc) getsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f00000000c0), &(0x7f00000005c0)=0x4) 00:13:34 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') ioctl$UI_SET_PHYS(r1, 0x4008556c, &(0x7f0000000040)='syz1\x00') getsockopt$inet_tcp_int(r1, 0x6, 0x36, &(0x7f0000000280), &(0x7f00000002c0)=0x4) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'tgr192\x00'}, 0x58) openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x101000, 0x0) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:34 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) pread64(r1, &(0x7f00000001c0)=""/111, 0x6f, 0x0) setsockopt$inet_buf(r1, 0x0, 0x30, &(0x7f0000000100)="305ae9df56b33f3471d4bce35dab7ab252f797ef7787d5b93a6f105675e6b938da1d3ea3473b150b2e1996c7a25c341551cb0aa21ce2592389f564398e010f40b1e30ba3844fd1b7fc55264f656a404cabd1438b7a925ff5340bb11552832dc92dfe83d7e86584a4f223d05a6554a074dd5abaa48b5f828f4a96577b74a3a1a6872f436915242d8e451a85cf2b9e7058", 0x90) syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x80000001, 0x1) r2 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x9, 0x0) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000000)='trusted.overlay.nlink\x00', &(0x7f0000000040)={'L-', 0x36}, 0x28, 0x3) ftruncate(r2, 0x0) 00:13:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xff02) 00:13:34 executing program 3: setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000180), 0x10) r0 = syz_open_dev$rtc(&(0x7f0000000100)='/dev/rtc#\x00', 0x8, 0x408002) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000140)={0xa439, 0x1000, 0x10000}) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) r2 = socket$inet6(0xa, 0x80000080003, 0x800000000000006) syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x0, 0x100) ioctl(r2, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") getsockopt$packet_int(r2, 0x107, 0x1f, &(0x7f0000000000), &(0x7f0000000080)=0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) 00:13:34 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x9, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:34 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x100008912, &(0x7f0000000100)="025cc80700145f8f764070") socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000500), 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x4e21, @rand_addr=0x7112}, @in={0x2, 0x4e24, @broadcast}], 0x20) r2 = socket$inet_tcp(0x2, 0x1, 0x0) socketpair(0x11, 0xb, 0x4, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNGETFILTER(r4, 0x801054db, &(0x7f0000000480)=""/113) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f00000002c0)={0x0, 0x20000000000, 0x401, 0x10001, 0x9, 0x1, 0x1, 0xbaa60000, {0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x401, 0x7ff, 0x2, 0x0, 0xffffffffffff8001}}, &(0x7f0000000380)=0xb0) getsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f00000003c0)={r5, 0xfffffffffffffff9}, &(0x7f0000000400)=0x8) bind$inet(r2, &(0x7f0000dc9ff0)={0x2, 0x4e20, @rand_addr}, 0x10) r6 = socket$packet(0x11, 0x2, 0x300) write$binfmt_misc(r6, &(0x7f00000014c0)=ANY=[@ANYBLOB="73797a311e0fe0739e26677b474083a98f8f20b3e380307307ba37de72549d132ca2294b586bc0dc2ca8780e8ffa3bc3ff48e6c51a57995cd4866c91133c3a3388e587069c713485cc736919b03a4e123722fdd11663e943bee5e1e8367dca374954b007e737022d16df5a43df0cd43065673a0ecceed23541b85501ddbcd85ea3c06f23659c18994c7e94d2de09024f7e7a128f04b487729bdb2ca624a811fd60e5795fbb947f9266d262ec70be0be0f0fd03f1a927ba5e26a5b7b1cfdb4290edf1e47b65127d68ad90ab68885ecd7ef704d059c298a44d241550bc2864f242b300e241498bbd3fc4f81077e13f1fe656d4cbc3235d2b8d4ad557cde6615069b5b787aaa971030f2f54853dc4fe1afeee151225b0dd69e5b55463ddef09447332bc47ea6b6ec3394089ac1d6fc575a814f4f062e11aa5e6168950662b5a9459037b5be4fbb0fb7d578cea20d9870df1611ae97d63d038f39946a3505c27e3f7ed7b426756d86ef4e5ec61ede50933021b5c69778137c5615404a6191f55487bddc2466bcccc7609f43d14e15884fec1a73c9515bc165e5972fa96413d79fa88001f854b933594f456fbd6ff4ed87813eab92266892b426fbc517e734a6d662216322f1dbf9070a4e4a7a0004b9a7d760a031139de4c60e1aef70412df9900237d51e943938a8294056ee5b99eca25f2ca36c715c3d30c92bebb0d3feaa983dc06f33ce24f9c3a09f06dcbfc6e23947404263a827d7a5d52b311874f77034f98b9654465b598c611768fdef9b9687f10f018eade10654ba76e2e8ad508478d2d4d926a5041e27b07a1a6aafd7ec10a506dbf2013bff178f3427e24dd53b28344e3effb078c4343d61a00c1ea91dfd172870e2e25e8874b76af1dcad342831d5fa545a7c2e34214f109cd1235145b1948c3c48760c266284b9060ce271e93b787a62f423187f19b2bcddb14477c8b8c32aafef09cae7c7853d937e30c7c1910c1689bc1099e8c59584f16945e801e9ecc895041fc0b91c5b25c39a97dbd24f92137792777d5f7e6ad6042c9e21be1e87e9e90e1eef71bfd1e6f31150a61afc886d7449682a94266736421a87efdf68a74da0ae4e50909fb61aea71f9ad7b0b48266e8a29f94fbe20ae25e7a10ad4581469d89be06fe59e5eb27c74b065eacab3311d25a3469cea50fa07fa66b14272de30219558dad6c70c5dcf873915ece2abf07f469ca85c301a847c7bce8dc6eb0725af515abe5f529f82b7dddb1f4d653032fcff89994abc08cff5c3b3998b72c315495a789dd89292a7b5a343d90a9b41cc31ea88311bde380d77a81a8ae2b8519a18faca501bfe43471712c706e5f8379aded6547741d715e3f3b24c915b01c2b1dd213434063eeae5cf530b4b4c89a7c8fcfbb0dc8829bb9ef701a0102bce5a15dcc8fe38d345158a8f784065c1669e99e24db74238c0f5319453064e2dac3b240f9aa1faeebb222c4e394f2ec6418a1a70927a4757aade0094fa86a355427be86772181ecf5dc9102e67059aaad68ff9787cd529181eeea590d80ead1849e7669d8e71d08756064caaebe9115980434d63efba42ae8756033a8f4e1b4f3432fe64277e744e215b4b9cf1633ec2b066ad79f5bca44ac07a0870977971a74e7431c87d108ffdf532ebb8931438126e579c3bee6e86b5890cad02557b2ff9af922dce432677589b126fefc58d55a327068099c9739e94596fe35335cbe503fd20b87db134dcec093207c090e664c330fc170c595f6855555f77b6f2b440fcd115d4017307e73f1cd2b1abe973995ba438cd0a0fe16d4285f1f34bc3e0092e84814e78ec089f19cdfe98afd52ad7df39b2c4d010349ac08440139594114118b30a2f1e80633363b2d0a19b2cc658e2f765f37adeff779d2a33cd4ccc98c3a922c078f7975c56e8e9f5d1c6f17e19a990b76ba005b915f6fe8c485732cbc889f0dde3ebb2405ad264a24085242cb926876aa1788e10ce227ecf71333e0c4796e71a4f396a659242a972f67d310d644c5a7f816764e16d7a5eef3ae61f5466bae0ae793184c9355db1d6dc244b7b6812a5a011746afb72b7632f9edbae434430aa4cb5e1f487c2f133dc17c12e45094a34301da8075a7f98f4c927cb743a71e78646457184e727fae7fd152b0adbceec4ead57ce89a413c5771a5a69b6646641bd4e41c7c4600d5b95dd190602dac601562f5014dd635a662fb1f25afc6685d991eb9fe604444ad9ab7a1f7690ef5ddab07c072adf6ceb6d2f41c7a34b4cf2174d0d42bc6917c2bcb2a4b3358d226a2a47cca2b6bee99517de2b8a34cd3fabc5d4b4b7065200a7d1292ada71a651920a140b4e86660997f5b065373b1bd7820ba27fc21380ace01beb9eede848d8b71e26e092cc0e837da1215f13ce7bde25be23b10d0fe93568c3709b9a16cf30adf70e3e0268fbd777bcb3c5115b7256ba9c55940438e2df499402aebc904eed1604a747b6ab9e98d2836b3c5cbf4aaffc47be75f1a888875864dbe071caefac5cd03f227223d01baca0f784ff7aa62ac57e8e6c7b9ae500fcbed7d70a1ff70c079d583de81b3b530456bb79205ec0100ec3221ead1159aa5f5398277283315139b6d5a8f7e9356ca990292331023ae1dc3ee0948d7a32b6ac083fe0fdb126d4a8a6500a07429dd66a58bea5f087259650eeab86359ecf4df3631676db5f6fa50ed578a994c73aecc13c114cb07e92e76a55144329cee9a97d5ac65200640174ba797195faa103083a0a5fb8dbaa811c81d9de9fe82a18657c67970316053c9577b6659f5112c90f2c675fc8f2cce287ba9ec4e229c4a946b9dc6ef45a45883b8d41f6f70c9259a0f1c86383e1fa9c9683fd1ee681210120eb7c0651a98dccbeec46b73fed5699f5f1a75406c6911f56674d7eb86406fd05696e87c3b93ae60e4d7b1e9fd0d69667b86fde66b2b8633b4cb1da0e2fdc92fe443832d34a4ea3db3212f33fb6a47bc943442ccff2e6cdb348cffd1b1a8cc05d67818d4e4e3bddf9ce1aec3853071e468c13229a4aa4259d2655e491c1cbb29b21f025c7bbf351fba7b71e0bab02f219b4231508c1c7c5e58e90c1188fa91b75b66ca630b3415df0b22ac11b6df93bd5069cac9e055ba1039bf776b45263b8d5c4fcaf12fe68dceb36c99681469713ad7d4a831137e334ecea059f8ddc8d4e00d055822a3a992e8491deaa03788fde413c6a41963f661d1a473fc1b91a9d4f39cced57516c2ac353a4aadda1a29fb48ec20ccb2a10156be26d1007c44fd68c02c97242fe2d85d1bd4d657b81115fde74c21d23992f3b91909a930f12d8b3b5d00bcb0e9af701a5793fe40990b9be757581bf648f8284fe9022e098e4e84f3bc42e1f3c9e8ae2931a9377f27f4eea986d0e5f168cb8e466a3684c8757d348181b0553fa2caa31b03d2a7e93ccacfd2eb6e1ed7946268deb30bec9c5bb2cf4bd517d5c5a979c03290f9c5449c8f1c515b515ef9fe732fe233a2f92bf4e85a0bfd7dd467d9a4f2c2049a9ec018e06f03a132e73929f9a140f3dd9e25fdc1015e5071093c16e70978843bdd3f60ff3c09fd4acf19232a8dd8098d9a611c3d262394b9c02bc51fa40dac783b8d5bc6a2da589342ca6230bed37452d833ab5dbcaf520e6590fe13f5cbae398c2af68d718d5b86a193b45cb101d9c5c02579555caa6985121118ddea7672ee2918a1bb52264b7986f4ee085939829765eda8ac1badf50e198010e1d4f33dad6ea20764b72453d7b8225fb3f9a38fa68123056864bfff1db8622dfb79ef2a42e86dc583e69bfc07ad3cabce50d7d0cef048cb3994ffb62ef24b0b394ca691d43b1f98c5f98cdf0959a1c4d8e69c661cf997f5445c2227d46932dee1310f7e1551bdb1255a3e73bfaffd0b84e64c956af8e8dc349b98b5c13544b5e92ec0fa6e4e7fe0adf022f993a259c9326468d16d48eec85b90f4656415322558406ce32b3aab18fcd0e373fd83890c1adab4466cf0a6d381012f36a75e33fa49be8d87e1ec404815cef78727b797a47c46435064003ff351bfa89b60dec4375eee9a4af6af605c025240bd2f292c750e3ebb1ae6ea45aa4b8f46c31a4ffc0bb1b58e74cc454007d2a7639a16dbcb221237921a0eaeeae605cc7750eafce7053811157766fd39351b664b0c21eff1f420b592f8d472da9bf7ffffffffffffff1be8a86bce0f8a536620eb58d1243a43348835a8bfdeca6e1cb8b5cfc0fca389720118459e9b208be4ede3f20cc5d1fd6d289b4503ddc63ae6a6dceec9fe52c7afa0ea1f3d5335b2ac078707d398c9a61dc8e1cce60baa31b0f9c539ce584bd38964f46196b1e47ee5acec46c45e13a6543a740fdd562f947208ce6148655d2efedddf4ee52d09864284a3621ee1882c9c89b16a2506e90149731f689063cd7faef5cb7f2ea3613e305bbcf36b7a01eec437f827e557cc9e8225e7fa7d5bef4c191ceb345573460b4c26e7da05e5b12cca842ae14c00f19ec481f97200a7dade18dde5cca638a478579227fef17db044b639eada388b778f91c5cfd01f3207cfdf96278121ed1495ee780abd22ada79f45556b3fd1bbb8366f1416fa7152351b1828c5e31662e52e26400b8d87e35c56831691bec6c1a189efa4ed00aa6ff2cd765c52de2d70a34a2081a3e39c05a920188770b810851e6e47abbdb5f91ea403f3c359b60806a36f2a3cd8cf93701c24b925cb115b2ea729da07d3c0aff73cf5d763b989609b0754eeb07b8d114571e1144b724947cd093d22da3a64976296725b5d8320b9a5e697f26c6cb20aea2c00e416c638c71c6cbcce25c021089d9f5a2f311b2362906fc86e6699e57e07670926cd635825fc46c70d7c5c8e3938dffbeb570b0bce8d48066dbb092029984b56255c2e49cce62cf537002d88dcb5b40f335184e08998e879e2d282fefa4ba7160d9ab10d6c66976025343b240c1eb95854d3c9378511c38aded2ae2cd63c754752ab42d4910148ebfb9d90f5896fe89467988ef8bc00f6bcef3ab00ff09c63138209552750080cf409641c5c9c32f0c509c1f23ec89bd9848f33038fda3462d88c286c1994d374c028e00b99cc36fa8f26d16b69ac7cb98b17befae08681f4a91e73a9bc6727d5edfbcb9f458b640d2081ff6bb09d7c80b644a9e20dfd6109b43a3d2a6a2b64d69691b8a63b0a56bdb664d9785deaac9a5268bb6b847f1c44f495a340f87a9125e2d13cc8e14adb3566e6061c48852e83884cb1de7a6fc1657b849dc23112b88e92798c239984f718fa4bf0db5ced2e245d50f4f39802dea479462b79693856366b9fc9cc005ae997c133f9cf0781b272e4860c0f4009be4b83dd7eb5153876af870cd744afd3b01b8e253877e90c357aa07d239c827339b39fce5272c683338f8781be0bcf41f86b42aaa98b7614659dfa6d13223f0a44d1361a7501c3fa80d24899a62e74e10f4f7b01510b837b7a019a01346e937d288c7da5b890312a4d05a92f05bfa44f794e6b067151d72d0a71f66f9eaf3c4a358526a7f2b77b36bbebc761025fdc2ca164fc7794f43271cfd301d3698839ab277b77dc30ead48b92d6755a3c7c1b7cbc121b574e2ca19481e514934ccad926bbbc4ab2595064158f6ca563861576dd0634c0d908be7cd6f94f81fee63f2e83b0f7fc101129a3785aeaf3831116fc36a238d3aa614edbfaa81ea5d138ae4a08c1f3be8f9651f403c77a7f60e39b4879e8b936dae98a83a3807c1c4315f86e471f0640ea538244cf392bb2a1abab79372849e6f05333fc5f6bad715904bd051a43269d85c465fd38922af70265bdf41633b04c312009f4e4e014af41b38cd1755b98a2df3aff7a5b8bfb4b6e3bfa8ee79a3180160f407bfb659139108f79f125e4ae8805e58ffce2de03546fa5b7a14947999650451eed34541c029c7166308f000b94c86a6fe0df3292563e34db3e491d09ede096"], 0x1079) getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev, 0x0}, &(0x7f0000000040)=0x14) write$P9_RSETATTR(r4, &(0x7f0000000440)={0x7, 0x1b, 0x1}, 0x7) socket$packet(0x11, 0x1000000403, 0x300) syz_genetlink_get_family_id$ipvs(&(0x7f0000000580)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r3, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000002}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="a0a928bd7000fedbdf25100000003c000300080001000300000014000600fe80000000000000c916364348000000000000001c0800030003000000140002006772653000000003000800030004000000080007004e24000030000100080005000200000008000100140003007efff8010000000006000000000000000800060064680000000000000000000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0xc0}, 0x40004) setsockopt$packet_drop_memb(r6, 0x107, 0x2, &(0x7f0000000100)={r7, 0x1, 0x6, @broadcast}, 0x10) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000180)={0x0, 0x10000}, &(0x7f00000001c0)=0x5) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000000200)=r8, 0x4) setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f00000000c0)=0x17f, 0x163) getsockopt$packet_int(r6, 0x107, 0x17, &(0x7f00000005c0), &(0x7f0000000600)=0x4) setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000d4effc)=0x1, 0x4) sendto$inet(r2, &(0x7f0000000100), 0x0, 0x20000000, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) sendto$inet(r2, &(0x7f0000000100), 0xfe6b, 0x4008000, 0x0, 0xb4) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) 00:13:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xd004) 00:13:35 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:35 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x200, 0x0) ioctl$LOOP_CLR_FD(r1, 0x4c01) openat$tun(0xffffffffffffff9c, &(0x7f0000000340)='/dev/net/tun\x00', 0xc000, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000280)={@my=0x0}) write(r4, &(0x7f00000001c0), 0x1000001be) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0}) pselect6(0x40, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)={0x1f}, &(0x7f0000000200)={r5}, &(0x7f0000000300)={&(0x7f00000002c0), 0x8}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 00:13:35 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x200000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:35 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc0011022) 00:13:35 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000333f88)=ANY=[@ANYBLOB="02010009080000000000000000000000030006000000000002000000e0000001000000000000000003000500000000000200c9960d59c4d13951000000000000"], 0x40}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0x200000000000013e, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x10000, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x400) 00:13:35 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0xc0, 0x0) ioctl$DRM_IOCTL_GET_CAP(r2, 0xc010640c, &(0x7f0000000040)={0x7fff, 0x400000000}) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:35 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10a) 00:13:35 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xf0ff7f, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:35 executing program 1: sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000289000)={&(0x7f0000cf1ff4)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000058000)={&(0x7f000023f000)=ANY=[@ANYBLOB="84000000001d33a33a000000000000fffffff1000c00000000000000000000005b01000080000000002dbedc5e9f17e1a04810d4647cd5291cb4e2bf501db1bb94c29c4d914ddf26fe111af818b1b32ac545425e66cd4d23000bc1700612dbc3080c91745fa158cf0d70309f74a77f1969136edfd73294c035667518a3f299a60000"], 0x82}}, 0x800000000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000020, &(0x7f0000000000)=0xa, 0x4) 00:13:35 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc001001b) 00:13:35 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xe00000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:35 executing program 1: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000012000/0x1000)=nil, 0x1000}, 0x1}) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/vhost-net\x00', 0x2, 0x0) r2 = dup(0xffffffffffffffff) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f00000127c0)={'team0\x00'}) ioctl$VHOST_SET_FEATURES(r1, 0x4008af25, &(0x7f00000000c0)) close(r0) 00:13:36 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="765207cf55f860f211cfcfdf78991861d47a819953e335c6498d70c676084fcdf08d2e3290eb99d6eb4f6f856a09e4279d131faa2797043f7979a3b178090d613d2d6a7cd4c68e3ac7ec4364b31d66d6be1a02575ff54a022153cc9d7cdcb1355c7833c989b77f93fd2f9004a7084e25a116fc5bbb2fb4d2aec3696d9576595ab9cf387ad6e3dda1c59443eae27be6ba00d4c3e8086d615e539a6903efa72a99eb4956363ca70d840ec7da7e410fd3ee9fed7478dc915f0149b6eaecf0e5a4f660bdab0f25856abb3ac78e70c02087e71fb712f590ee8cc7003c0ce52ed6ed0e187d", @ANYRESOCT=r1], 0xfffffffffffffd33) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x200000, 0x0) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000100)) truncate(&(0x7f00000000c0)='./file0\x00', 0x8) write$P9_RRENAME(r2, &(0x7f0000000040)={0x7, 0x15, 0x2}, 0x7) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/78, 0xf}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x0, 0x80300) getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000100)=""/202, &(0x7f0000000240)=0xca) socket$kcm(0x29, 0x5, 0x0) syz_mount_image$hfsplus(&(0x7f00000009c0)='hfsplus\x00', &(0x7f0000000cc0)='./file1\x00', 0x0, 0x1, &(0x7f0000001040)=[{&(0x7f0000000e80), 0x0, 0x20}], 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="63726561746f723d358b5b6132726965722c666fc3450047f432e00eb7e52b7263652c62e8b647b824f9605c32c579adf2fc7272718c42"]) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000280)={"b61d3bbe52d75028290785806c026a89b9b1f382d910b3a4aa7b7a3be01627489bc78960dc4a8d8006367a195b9537b7da7acbd83e0c7d61ff9ee151c07b4a894822001e51c79ea8d975f519bd4c83773fab6d212d3bc009fdbe498bc54a964bc215400866865357fa8e35ef56474dc150404bf29ed0456914aa67901bf3d7bb3ba29e324fca8bd4a0b1b2bd278ea3a0576d82c8ae7d8e1fa5e723eee2bb10337bbd3c66f17e7948f81d8da2527dde4a2cd834303701ba103fd94a0c993fa9b5aa87cac21aa20bbe3c531f3c9e8669beca073b815e7c537fa9be19d59d746dda736ce163d030baae4f0950b5b23c7075cf9d19230bc6bf00eb1f130720d75a0f79ba1dd1d46a35bb539fc1d8a9393157a475375c53ed18909358365b478f1fbbea0a1ca9f467747ffb219a8c84c16bc5eb0f2799ef3bb223983ae829346b4f97dd22a040076fcd796b6c96b69b772fc9647ccfb451421195eab4dcec01a0ae5cf1eeb88cbf60a9a58a252997574fa4d3fa15bd5730bcb6b3dcbd030a02b62adf0c5f9b866d768f638248db923b0360cb0ebee0377228f71abe62f9c8b381f7d43be979417a721d041799eaddcaf7f92ffc2b207469251cab19ede5712a340c7c809ae5071851eae8307e464c4c9f04a6be73b0131401cbead4c9772e1bff9a75610e5ef0f22ea700bdac176d1d303bc4fc45f1a80cf38dd8cc2040c0fdec25243ab41e2d5b4371e25c4374926e7ef808821f05ff339ceca62ad91e010389279989f4146fe45ed09b80d32bce8176eeb5b00ef3c7cc5594f59d0dc9e48a4744f6d380ffb7dd8a7f662c1487e78c6941dd35a8d17c29d2c6905a770da057b33ee6e7a03a228ba26b3b9d703548ee6b2a680ee570919d73055421056009ad7f97409b83769aa2be3cbde957d65ea0396d045ad838d993ead88f01649a9c0e868ca9ee0fdd32fe11d1d18fb37bb61537f83680a80aa67c3a7b1bc26025b0286042bc453c3487fabc7d173a4edc3cb978f55cbdcc8d84d85dbaff93970e623f235b40485ca6ffdea0d56c9b87879fbcbea0f1e3e3d70d6d804d4de7e09bfa292d63b68139abe327863c86f559c3933ddc3651fd6fe5552e1654b1bca74f0dd11734a38f4de120a13f5a28fa4a16bc886c47f2a1c47572ec37de795a9aa8c943ee5162219171c3f78603e3ffeec37c20fbbd1394eda40b7e9d8a6b863f1ba8bfe778bb98527aa6e65f8d192f1b50b6d9890ae25c1ffc8e0fa432fe93d4cc7cd80d2715722a8e65f811f20176bc92e5cb1845824fc21c65d654e2d5f7d2810bcaefd14b26fb183f48606343fc981b35133d50f125bdc32f7510a7bb866b9f7d57c393ea253834ca0726e00640ebf77cffcd343dd203946443b16f59d43e59dff2e35701bc5852fafa68c03d486e2a4a65a0ef69fe29931828d5ba94ce954f3b21b493db"}) syz_read_part_table(0x0, 0x0, &(0x7f0000000200)) syz_mount_image$vfat(&(0x7f0000001200)='vfat\x00', &(0x7f00000006c0)='./file0\x00', 0x9, 0x1, &(0x7f0000000b80)=[{&(0x7f0000000ac0)}], 0x8, &(0x7f0000000c40)={[{@iocharset={'iocharset', 0x3d, 'cp949'}}, {@uni_xlateno='uni_xlate=0'}, {@shortname_win95='shortname=win95'}, {@shortname_win95='shortname=win95'}, {@uni_xlateno='uni_xlate=0'}]}) 00:13:36 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7f04000000000000) 00:13:36 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xa000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:36 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000780)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000080)=0xffffffffffffffeb) r2 = msgget$private(0x0, 0x163) r3 = getegid() r4 = getegid() r5 = gettid() r6 = getpid() msgctl$IPC_SET(r2, 0x1, &(0x7f0000000000)={{0x5, r1, r3, r1, r4, 0x8, 0x8}, 0x10001, 0x4, 0x5, 0x1, 0x3ff, 0x1f, r5, r6}) bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x0, "e91f7189591e9233614b00"}, 0xc) r7 = socket$netlink(0x10, 0x3, 0xe) writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000100)="4c0000001400197f09004b0101048c590188ffffcf3d34740600d4ff5bffff00e7e5ed7d00000000c8550000000000002758d60034650c0326356cdb47f6aaaa956086cbfe0db35200af4486", 0x4c}], 0x1) r8 = dup(r0) write$P9_RATTACH(r8, &(0x7f0000000180)={0x14, 0x69, 0x2, {0x0, 0x2, 0x8}}, 0x14) 00:13:36 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x100, 0x0) accept$nfc_llcp(r1, &(0x7f00000000c0), &(0x7f0000000140)=0x60) r2 = accept$alg(r0, 0x0, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="df69b84565fadb65b271d1f76899907f", 0x1) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000280)={'veth0\x00', 0xfffffffffffffffa}) 00:13:36 executing program 0: openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{}, {}]}) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x14100, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x14, 0x14, "1c68b1b8f0f03e0cdf22aa62253e00e29748c3b9c1a0da87b3f471de5e4b164876aa640118dc38b001013896b6e38fad09fd51542bafbc7e8d3759f6a58c13c3", "ec4774fa03d77c6c7e1e23dcc4a15c028b5dcf42a157b32028c3bac395e35d0c6e447bf696f044b72a282d1a706c02a7fd3b09f5a97c8bf219ee517a210502e5", "6d5d4c0f8e87ff08f51733d68851eddf7884c4c339fafc27d98bb2a01c66be93", [0x6, 0xb3]}) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000200)) ioctl$TIOCMSET(r0, 0x5418, &(0x7f0000000080)=0x4) 00:13:36 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) write$P9_RSYMLINK(r2, &(0x7f0000000040)={0x14, 0x11, 0x1, {0x25, 0x3, 0x3}}, 0x14) 00:13:36 executing program 0: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000240)={0x30, 0x5, 0x0, {0x0, 0x5, 0x6, 0x3}}, 0x30) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x101000, 0x0) r2 = getpid() lsetxattr$trusted_overlay_upper(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='trusted.overlay.upper\x00', &(0x7f0000000340)={0x0, 0xfb, 0x53, 0x2, 0xa1de, "eb9f6576c3015286d3c601606a2680b0", "48da2e12aeeb69f92f8f50c1620ff9cfe0270fd0bdd930f094e5a43ae18e9565a1c06653a7d4a70daaa54469322fea949b5d61a2ed9673afeafc5fa99d7f"}, 0x53, 0x2) ptrace$setregset(0x4205, r2, 0x3, &(0x7f0000000200)={&(0x7f0000000140)="e9e4778a9e8638880efb0e21230b285697ef0bd4783edff6f8e48eb25d0eeb0252a46dfaac51b4c75d784852fbe3394b857e5033486de25b9a23d78512f5f3ffa35182e594a401e0fea7c993409fbc130f524a0d1b46b06f6c072439743eaf490f816b06bac891ad97c6d4b8e2f28780d2ea6450f757e30940854edfcf2c2930e6ca4a87a0ab39f944cbfb2ed72c158ae704b1dc763a343a8dd2766f6010f276", 0xa0}) ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f0000000100)={0x5, 0x0, 0x4de, 0x545f, 0x4800, 0x61bc, 0x78a5, 0x2, 0xbd0, 0x6, 0x4, 0x8000}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='3']) 00:13:36 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x7ffffffff000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:36 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000007c0)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000440)=@allocspi={0xf8, 0x16, 0x31d, 0x0, 0x0, {{{@in6, @in6=@ipv4={[], [], @multicast2}}, {@in6, 0x0, 0x33}, @in, {}, {}, {}, 0x0, 0x0, 0xa}, 0x0, 0xfff}}, 0xf8}}, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0x3006, 0x4000}) 00:13:36 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) 00:13:36 executing program 0: socket$xdp(0x2c, 0x3, 0x0) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/2, 0xfffffffffffffffc, 0x800, 0xffffffffffffffff}, 0x18) [ 401.697413] hfsplus: creator requires a 4 character value [ 401.718103] QAT: Invalid ioctl [ 401.724668] hfsplus: unable to parse mount options [ 401.731441] QAT: Invalid ioctl [ 401.803589] hfsplus: creator requires a 4 character value [ 401.832742] hfsplus: unable to parse mount options 00:13:36 executing program 3: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="3fbe4be71ea6f2e4"], 0x8) getsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f00000001c0)=""/101, &(0x7f0000000180)=0x65) 00:13:36 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x18) 00:13:36 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xf0ffffff7f0000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:36 executing program 1: socketpair(0x4, 0x4, 0x6, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$RDS_GET_MR(r0, 0x114, 0x2, &(0x7f00000003c0)={{&(0x7f0000001d40)=""/193, 0xc1}, &(0x7f0000000380), 0x20}, 0x20) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4) connect$inet6(r2, &(0x7f0000000080), 0xfffffffffffffe28) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x541b, &(0x7f0000000400)) setsockopt$inet6_buf(r2, 0x29, 0x2b, &(0x7f0000000180)="08830418bad42d790bca8cd7c11cb79eada180c4c857f14e5b0e1de3d5385a1ae4f175d6075ef78513f8afb81422222702beedb8fd0eb113ad1dba10bc9cbfa1a59a68763a429a06d112a5fcddc90464fec468a73e8af6b45b6b87a0c369750c09038cccbdf4035477717759723c6846f68791172347cafdac94772e54b8ff0d10607f16f6f0edf4d49af46b67c4de228eab1b2a38626db7479ca78f056691ffe7f69bd57819f0d4d1124141c3426240f2b764b131c4c6190631b225b114faaa04f587287f0ae56e47f0903b8bda0cbb0c8a094da5", 0x3d) setsockopt$inet6_tcp_int(r2, 0x6, 0x17, &(0x7f0000000040)=0x9d1, 0x4) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000001800)={0x0}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r1, 0xc010641d, &(0x7f0000001840)={r3, &(0x7f0000001b00)=""/148}) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000001880)={0x0, 0xc2, 0x6, 0x8, 0x3, 0x9, 0x100000001, 0x3, {0x0, @in={{0x2, 0x4e23}}, 0x7, 0x5, 0x0, 0x7ff, 0x3f}}, &(0x7f0000001940)=0xb0) pipe2(&(0x7f0000001c00), 0x800) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000001a80)={r4, 0xcc, &(0x7f0000001980)=[@in6={0xa, 0x4e23, 0x258d, @ipv4={[], [], @remote}}, @in6={0xa, 0x4e23, 0x80000000}, @in6={0xa, 0x4e20, 0x9a5, @loopback, 0xbd8}, @in6={0xa, 0x4e24, 0x49, @mcast1, 0x5}, @in={0x2, 0x4e20, @broadcast}, @in={0x2, 0x4e24, @rand_addr=0x2}, @in={0x2, 0x4e22, @broadcast}, @in6={0xa, 0x4e23, 0x80, @mcast1, 0x6}, @in={0x2, 0x4e22, @loopback}]}, &(0x7f0000001ac0)=0x10) clock_gettime(0x0, &(0x7f0000001bc0)={0x0, 0x0}) setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000140)={r5, r6/1000+10000}, 0x26) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000640)={0x0, 0x9}, &(0x7f0000001680)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000001780)={r7, 0x94, &(0x7f00000016c0)=[@in={0x2, 0x4e24}, @in6={0xa, 0x4e24, 0x2, @loopback, 0x4000000000000000}, @in={0x2, 0x4e20, @multicast1}, @in6={0xa, 0x4e22, 0x0, @mcast1, 0x1}, @in={0x2, 0x4e20, @multicast1}, @in={0x2, 0x4e24}, @in6={0xa, 0x4e21, 0x9, @loopback, 0x8}]}, &(0x7f00000017c0)=0x10) setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000100), 0x28) recvmmsg(r2, &(0x7f0000004bc0)=[{{&(0x7f0000004940)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000004a80), 0x0, &(0x7f0000004ac0)=""/197, 0xc5}}], 0x1300, 0x0, &(0x7f0000004dc0)={0x77359400}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb01001800000000000000d4000000ec000000ffffffff71d692e9c61e4bd0ad158e8076ebd287e9c517e786fe35a3c2447ca5c1c7e01909b8015086bf5d8722309d5e144eacaffa5f58f099176694cfc332c2ebb2d73d4f0447dcc7df2f29da7c3836324bfea8962cc0f52f47d926bfd09e234db9050c8a6cb5989b271eba542f129ec75c99634d7f582b0c01df3b34b43d936c532778b0aa99e591014638e0dc670afc2d08c7fc86ce8b9378d3c1cd19ad906057e76613c726e510a17ae8719eeaa9b59c8aae7e738d32156272899feeb77d252a7deb66396c84df75b4e17ead37d25f74e3136592ab0d1a8569761fa100104d000000002f15f19724b6e38357d9"], &(0x7f0000000680)=""/4096, 0x103, 0x1000}, 0x20) getsockopt$inet_mreqsrc(r0, 0x0, 0x0, &(0x7f00000005c0)={@remote, @loopback, @loopback}, &(0x7f0000000600)=0xc) 00:13:36 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)) getdents64(0xffffffffffffffff, &(0x7f0000000700)=""/242, 0xf2) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000400)) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000300)={'ip6_vti0\x00', 0x200}) ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x7003, &(0x7f0000000040)) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)="2e2f8167726f75702f737b7a3100", 0x1ff) signalfd4(0xffffffffffffffff, &(0x7f0000000180)={0x7}, 0x8, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0xfffffffffffffffc) pread64(r0, &(0x7f00000001c0)=""/205, 0xcd, 0x0) setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000100)={0x7f, 0x0, 0x0, 0x3}, 0x8) 00:13:36 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7, 0x82001) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(hmac(sha256-generic))\x00'}, 0x146) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1000000000016) 00:13:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8) 00:13:37 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs\x00', 0x40, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000380)=0xe8) r3 = syz_open_dev$dspn(&(0x7f00000003c0)='/dev/dsp#\x00', 0x1, 0xc80) getsockopt$bt_l2cap_L2CAP_LM(r3, 0x6, 0x3, &(0x7f0000000440), &(0x7f0000000480)=0x4) connect$can_bcm(r0, &(0x7f0000000180)={0x1d, r2}, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000005d40)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, r4}, 0x10, &(0x7f0000000040)={&(0x7f00000000c0)={0x5, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x8, @can={{}, 0x0, 0x0, 0x0, 0x0, "c4d981ae211e6951"}}, 0x20000108}}, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/hwrng\x00', 0x4400, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000000500)={0x0, 0x1, 0x8, 0x80000000}, &(0x7f0000000540)=0x10) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000580)={r6, 0x7, 0x4}, &(0x7f00000005c0)=0x8) sendmsg$can_bcm(r0, &(0x7f0000000400)={&(0x7f0000000080), 0x10, &(0x7f0000000680)={&(0x7f0000000640)=ANY=[@ANYRESOCT=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES32=r6], 0x6}}, 0x0) remap_file_pages(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x4, 0x40010) 00:13:37 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x10000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:37 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = dup2(r1, r1) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000280)=""/234) ioctl$EVIOCGNAME(r2, 0x80404506, &(0x7f0000000000)=""/91) ioctl$KIOCSOUND(r2, 0x4b2f, 0x6) 00:13:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ppoll(&(0x7f0000000040)=[{r2, 0x1}, {r2, 0x4000}, {r0, 0x4000}, {r0, 0x10}], 0x4, &(0x7f0000000080), &(0x7f00000000c0)={0x40}, 0x8) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0x17b]}) 00:13:37 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x638, 0x8083) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000040)={0x0, 0x0, 0x1000, 0x0, [0xfffffffe]}) close(r0) r1 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000300)={@local, @local, @ipv4={[], [], @rand_addr=0x92}, 0x4, 0x0, 0xfffffffffffffff9, 0x100, 0x0, 0x2000004, r2}) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000002c0), 0x4) setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f0000000140)={0x0, 'bridge_slave_0\x00'}, 0x18) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000200)=0x1) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000015c0)='ip6_vti0\x00', 0x10) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x200, 0x0, 0x0, 0x8001, 0x0, 0x10001, 0xc04, 0x0, 0xff}, 0xb) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000380)={0x0, 0x24}, 0x10) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000500)=ANY=[@ANYBLOB="5c000000d07e891ef14af8874fc6ea88c889af02510bcdcf6020768deb375d49ec668b6a8d986a904e09c54ef24f745ffe9a2c7018fa1ca2177af08c1eeab549d274c8c2ffc6017b48b4724fc02c1d1c9d7db9eb90d9786686bf01ac6105ec711f016b53b53a573dc22f782501b24343517a9971942c3375acdbdf5ee9aa52eb4d15c170195d84255a95ec158706894ec5666bf7848817b59b1a4ec68009d6f4e0e5e460e638e6de61c84160adef5653177dbff1eeea", @ANYRES16=r3, @ANYBLOB="040028bd7000fedbdf250d00000014000100080002002f000000080002002c0000000800050005000000140003000800030040000000080003000100000008000600f7ffffff08000600000001000800040004000000"], 0x5c}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0) 00:13:37 executing program 1: syz_emit_ethernet(0x7a, &(0x7f0000000300)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "184431", 0x44, 0x0, 0x0, @mcast2, @local, {[], @gre}}}}}, &(0x7f00000000c0)) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x200000, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) 00:13:37 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x3f00, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:37 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f00000000c0)) r1 = add_key(&(0x7f0000000300)='user\x00', &(0x7f0000000340)={'syz'}, &(0x7f0000000380)="df", 0x1, 0xfffffffffffffffe) keyctl$restrict_keyring(0x1d, r1, &(0x7f0000000140)='big_key\x00', &(0x7f00000001c0)='\x00') r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x8000, 0x0) getsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000100), &(0x7f0000000180)=0x4) 00:13:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1a0) 00:13:37 executing program 1: r0 = socket$inet6(0xa, 0x80003, 0x800000000000006) ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234488dd25d766070") clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000200)) getitimer(0x0, &(0x7f00000001c0)) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x5, 0x1) ioctl$DRM_IOCTL_AGP_ACQUIRE(r2, 0x6430) 00:13:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000340)={r0}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000380)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe1000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f00000001c0)="0f20e06635000002000f22e00f30bad10466b890c8559666eff3acf3a766b83d0000000f23d00f21f86635200000050f23f8440f20c066350d000000440f22c0baf80c66b8da05e98766efbafc0cec642cce66b9080b00000f32", 0x5a}], 0x1, 0x0, &(0x7f00000002c0), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000180)={0x77359400}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x0, 0x2, &(0x7f0000000140)=@raw=[@jmp={0x5, 0x1, 0x9}], &(0x7f0000000080)='syzkaller\x00'}, 0x48) ioctl$RTC_PLL_SET(0xffffffffffffffff, 0x40207012, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xffffffffffff51bc}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000240)="66b91c0600000f326766c7442400000000006766c74424029e0fc71e6766c744240600000000670f0114240f01c93e0fc76c0a670f0058ff0f01ca8fc9500193ecbf2ef26d0f12573566660f3a0e259d", 0x50}], 0x1, 0xfffffffffffffffe, &(0x7f00000000c0), 0x0) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/sequencer2\x00', 0x800, 0x0) setns(r4, 0x42000000) lsetxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0)='trusted.overlay.opaque\x00', &(0x7f0000000300)='y\x00', 0x2, 0x2) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r4, 0x10, &(0x7f0000000540)={&(0x7f0000000500)=""/7, 0x7, 0x0}}, 0x10) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000000840)=0x3) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000740)={r4, 0x10, &(0x7f0000000700)={&(0x7f00000005c0)=""/242, 0xf2, r5}}, 0x10) ioctl$sock_bt_hci(r2, 0xc00448de, &(0x7f0000000440)="11892ad628ff6c91c8262b310b608e4b1d7746909f6bcc67199f4b137cfad68ca6c1400c620664a0b843ef92ba4d874be872d5530874373460f24ccc0a8ade7509905a9dfae87f62c72d12a40e78f9") ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000780)={0x0, 0x2}, &(0x7f00000007c0)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000800)={0x8, 0x9, 0x8000, 0x2, 0x4, 0x9, 0x1, 0x1, r6}, 0x20) 00:13:37 executing program 3: r0 = socket(0x10, 0x803, 0x0) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x1c, &(0x7f0000000000), 0x20a154cc) socket$inet6(0xa, 0x800, 0xfffffffffffffeff) 00:13:37 executing program 3: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000200)='ns/ipc\x00') r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x8000, 0x18) dup2(r0, r1) r2 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r2, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) listen(r2, 0x9) r3 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x9, 0x40) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000080)=0x1) r4 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r4, &(0x7f0000419000)={0xa, 0x4e20, 0x6, @loopback, 0x401}, 0x1c) r5 = accept4(r2, &(0x7f00000000c0)=@alg, &(0x7f0000000140)=0x80, 0x0) close(r4) recvmsg$kcm(r5, &(0x7f0000000000)={&(0x7f0000000180)=@alg, 0x80, &(0x7f0000000340), 0x307, &(0x7f0000000380)=""/106, 0x6a}, 0x40002021) 00:13:37 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = getpgid(0x0) ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r1, 0x10, &(0x7f0000000000)={0x8}) bind$alg(r0, &(0x7f0000000340)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-clmulni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="0affefff7f000000001e6ea64aa8e1c9", 0x10) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0x2000008c, &(0x7f00000001c0)={&(0x7f0000000100)={0x14}, 0x14}, 0x8}, 0x0) [ 402.870756] *** Guest State *** [ 402.874207] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 402.902990] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 402.925381] CR3 = 0x0000000000000000 [ 402.935910] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 402.942464] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 402.948442] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 402.955198] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 402.963434] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.971935] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.980045] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.988016] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 402.996022] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.004037] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 403.012148] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 403.020141] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 403.028110] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 403.036108] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 403.042547] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 403.050039] Interruptibility = 00000000 ActivityState = 00000000 [ 403.056257] *** Host State *** [ 403.059498] RIP = 0xffffffff811f3597 RSP = 0xffff88018970f350 [ 403.065470] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 403.071889] FSBase=00007fdc2f879700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000 [ 403.079705] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 403.085576] CR0=0000000080050033 CR3=00000001c6bf9000 CR4=00000000001426e0 [ 403.092602] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87c01360 [ 403.099289] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 403.105325] *** Control State *** [ 403.108766] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca [ 403.115458] EntryControls=0000d1ff ExitControls=002fefff [ 403.120988] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 403.127896] VMEntry: intr_info=80000003 errcode=00000000 ilen=00000000 [ 403.134591] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 403.141178] reason=80000021 qualification=0000000000000000 [ 403.147482] IDTVectoring: info=00000000 errcode=00000000 [ 403.152944] TSC Offset = 0xffffff25f4ea9a5d [ 403.157262] EPT pointer = 0x00000001cdb7701e [ 403.198962] *** Guest State *** [ 403.202340] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 403.211261] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 403.220166] CR3 = 0x0000000000000000 [ 403.223893] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 403.229901] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 403.235880] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 403.242630] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 403.250652] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.258618] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.266617] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.274628] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.282623] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.290637] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 403.298619] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 403.306611] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 403.314637] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 403.322641] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 403.329080] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 403.336510] Interruptibility = 00000000 ActivityState = 00000000 [ 403.342770] *** Host State *** 00:13:38 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x4002, 0x0) ioctl$KDDISABIO(r1, 0x4b37) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:38 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xdb, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x810000c000000000) 00:13:38 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x4) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x5, 0x40000) ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000100)) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)="580000001400192340834b80040d8c5602067fffffff81000000000000dca87086a5c000004f6400940005891550f4a8000000006700008000f0fffeffff09000080fff5dd00000010000100000c0900fcff0000040e05a5", 0x58}], 0x1) 00:13:38 executing program 3: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x1d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000180)='fou\x00') sendmsg$FOU_CMD_GET(r1, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x62000200}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="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"], 0x5c}, 0x1, 0x0, 0x0, 0x40}, 0x51) r3 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x0) readv(r3, &(0x7f0000000000)=[{&(0x7f0000000440)=""/128, 0x80}], 0x1) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000080)) r5 = dup2(r0, r3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) fcntl$getownex(r5, 0x10, &(0x7f0000000040)) r6 = socket$inet6(0xa, 0x3, 0x800000000000001) ioctl(r6, 0x8912, &(0x7f0000000100)="153f6234488dd25d5c6070") tkill(r4, 0x1000000000016) ptrace(0xffffffffffffffff, r4) [ 403.345959] RIP = 0xffffffff811f3597 RSP = 0xffff880183c8f350 [ 403.351978] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 403.358431] FSBase=00007fdc2f858700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000 [ 403.366359] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 403.372293] CR0=0000000080050033 CR3=00000001c6bf9000 CR4=00000000001426e0 [ 403.399985] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87c01360 [ 403.406682] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 403.439049] *** Control State *** 00:13:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) [ 403.448447] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca 00:13:38 executing program 0: ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000180)) syz_mount_image$msdos(&(0x7f0000000500)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000540)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x18, &(0x7f0000000580)=ANY=[]) r0 = open(&(0x7f0000000800)='./file0\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f00000002c0), 0x8) fchdir(r0) socket$inet6(0xa, 0x6, 0x8) r1 = open(&(0x7f0000000140)='./file0\x00', 0x141042, 0x0) write$UHID_INPUT(r1, &(0x7f0000000980)={0x8, "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", 0x1000}, 0x1006) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000200)={0x3, {{0xa, 0x4e24, 0xef5, @empty, 0x1000}}}, 0x88) sendfile(r1, r1, &(0x7f00000000c0), 0x8080fffffffe) ioctl$KVM_X86_SET_MCE(r1, 0x4040ae9e, &(0x7f00000001c0)={0x8100000000000000, 0x13000, 0x1ff, 0x1, 0xb}) [ 403.470882] EntryControls=0000d1ff ExitControls=002fefff [ 403.485182] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 00:13:38 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x2000000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 403.513094] VMEntry: intr_info=80000003 errcode=00000000 ilen=00000000 [ 403.520818] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 403.527521] reason=80000021 qualification=0000000000000000 [ 403.544729] IDTVectoring: info=00000000 errcode=00000000 [ 403.566910] TSC Offset = 0xffffff25f4ea9a5d [ 403.599150] EPT pointer = 0x00000001cdb7701e [ 403.624055] *** Guest State *** [ 403.630365] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 403.640069] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 403.648978] CR3 = 0x0000000000000000 [ 403.652693] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 403.658680] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 403.666538] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 16) [ 403.671157] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 403.682509] FAT-fs (loop0): Filesystem has been set read-only [ 403.696763] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 403.702465] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000020) [ 403.714201] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.724048] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.725343] audit: type=1804 audit(1538698418.510:64): pid=20177 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir576630731/syzkaller.TwOBtz/311/file0/file0" dev="loop0" ino=10 res=1 [ 403.732096] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.762232] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000ff0) [ 403.774045] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 16) [ 403.780530] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.798598] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 403.806849] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 403.814892] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 403.823099] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 403.831095] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 403.839079] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 403.845469] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 403.853025] Interruptibility = 00000000 ActivityState = 00000000 [ 403.859265] *** Host State *** [ 403.862439] RIP = 0xffffffff811f3597 RSP = 0xffff88018970f350 [ 403.868397] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 403.874815] FSBase=00007fdc2f879700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000 [ 403.882626] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 403.888499] CR0=0000000080050033 CR3=00000001c6bf9000 CR4=00000000001426f0 [ 403.895564] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87c01360 [ 403.902243] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 403.908363] *** Control State *** [ 403.911825] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca [ 403.918475] EntryControls=0000d1ff ExitControls=002fefff 00:13:38 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0xa, 0x1, 0x0) getsockopt$inet_opts(r1, 0x0, 0x11, &(0x7f0000937fed)=""/16, &(0x7f0000000000)=0x162) 00:13:38 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x84302, 0x0) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000040), &(0x7f00000000c0)=0x4) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe(&(0x7f0000000000)) lseek(r0, 0x1, 0x7) sendmsg$nl_generic(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x34000, 0x9effffff00000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x20, 0x29, 0x82d, 0x0, 0x0, {0x1}, [@typed={0xc, 0x0, @u64}]}, 0x20}}, 0x0) io_setup(0x7, &(0x7f00000000c0)=0x0) io_destroy(r1) 00:13:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x170101c0) 00:13:38 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x11000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:38 executing program 0: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) socket$kcm(0x2, 0x3, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000440)='pids.events\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000480), &(0x7f00000004c0)=0x4) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xa, 0x2, 0x910, 0x2, 0x2}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r2, &(0x7f0000000000), &(0x7f0000000440)}, 0x20) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r2, &(0x7f0000000000), &(0x7f0000000100)=""/25}, 0x18) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r2, &(0x7f0000000000), &(0x7f0000000180)}, 0x20) [ 403.924044] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 403.931004] VMEntry: intr_info=80000003 errcode=00000000 ilen=00000000 [ 403.937736] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 403.944348] reason=80000021 qualification=0000000000000000 [ 403.950711] IDTVectoring: info=00000000 errcode=00000000 [ 403.956234] TSC Offset = 0xffffff258c65e00e [ 403.960948] EPT pointer = 0x00000001d49ae01e 00:13:38 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000140)={0x1f, {0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x7}}, 0x8) 00:13:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000) 00:13:38 executing program 3: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000200)=ANY=[]) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]}) mkdir(&(0x7f0000000240)='./file0/file0\x00', 0x0) chdir(&(0x7f0000000300)='./file0/file0\x00') socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f00000001c0)={0x3, 0x3, {0x1, 0x1, 0xa9d, 0x3, 0x7}}) open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0) 00:13:38 executing program 1: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write(0xffffffffffffffff, &(0x7f00000001c0), 0xffffffea) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ppoll(&(0x7f0000000140)=[{0xffffffffffffffff, 0x0, 0x3f000000}, {r0}], 0x2, &(0x7f0000000180)={0x77359400}, &(0x7f0000000040), 0x8) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fchdir(r0) close(r1) getpid() ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000600)) r3 = gettid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000780)={{{@in6=@local, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f00000005c0)=0xe8) r5 = getgid() sendmsg$unix(r1, &(0x7f0000000640)={&(0x7f00000001c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000240)="a7d04f36d019ee7d5254b5e6d2fab00b1cd50ef9b20858d807f4fc7ea5fbe6e9859acf662acf1350727991b4a068f90ac38f31ebf46aa13c66a5b4f62dca6d7e984a24e4642a296ae89055724b8cc03c23f506a6c0aee45e9b9c288f91a1304d9ef869da65d9ab42", 0x68}, {&(0x7f0000000100)="7f4abace2184007eb7692ed585fcb13f", 0x10}, {&(0x7f00000002c0)="fc48392307e9331bf1299b54e2925a1ea04b0db789adcbee82c93c03a9fff71f74357b7afb20475bd04e383c640c74a1930e8d52fec5222f79ac082f6c2c333c7571f50501c35b57a738f0e9bc57f4a868fb32470039a31993401ddf9449ca0134c82eb0a1b7dc1b9e64664b428b84c3227c93a45be0ccccd9c527a6168f33a98476aafd60d51140f44643eed7071c493164eff2b9c20c232162b487b5a8339f053bea92df9f544f0240586abb29904a095fe2dd963837113c469ae7803b05f776723efd2f4d6d1cefc366ab1c2acf921a3709bd9d466421a8d47fcf9339c6ee66a1a1f48058687b9c21a233", 0xec}, {&(0x7f00000003c0)="ed0253239121e401b1ab87ded46aa2bcd0ae53b80373646041fa4a8004a6", 0x1e}, {&(0x7f0000000400)="9eedc735e22974711e5410f33dd4b8d9890841d47c08ef459806430841ede81cb3cf39673c96417af7847d0a5506b7e887", 0x31}], 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="2000000000000000010000000200000078335c416394164d0d24a198b5923158c5c976cb38a5bdf9ac98919fccbb9485ba73d5893135a5584ce365ca18442414b849bcb9bcc44e40ac4f629c4b63d373926b7b428bcf174481cbe72c53ce63dfadfb3de22ad8d4a1e6fbc20758f46e5f529efb2935b6663376fa8377b0ed3260c053a4159eb2777f04d687edf2f74bb315011d0070880a0ab6da72e3eaef67ce027d61f034fad3ea26af3738eb1a46549edc07e5", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00'], 0x38, 0x9444e08427cae50f}, 0x10) 00:13:38 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x100000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 404.136428] ntfs: (device loop3): ntfs_fill_super(): Unable to determine device size. 00:13:38 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") socketpair(0x13, 0x2, 0x400, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000140), &(0x7f0000000180)=0x4) r2 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r3 = socket(0xa, 0x7, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) ioctl$void(r0, 0xc0045878) setsockopt$inet_group_source_req(r2, 0x0, 0x29, &(0x7f0000001400)={0x0, {{0x2, 0x0, @loopback}}, {{0x2, 0x0, @broadcast}}}, 0x108) 00:13:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc0000083) [ 404.213217] overlayfs: filesystem on './file0' not supported as upperdir [ 404.243882] ntfs: (device loop3): ntfs_fill_super(): Unable to determine device size. 00:13:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 00:13:39 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x700, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:39 executing program 5: socket$netlink(0x10, 0x3, 0x1d) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000000)='teql0\x00') setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:39 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000180)='rdma.current\x00', 0x0, 0x0) modify_ldt$read(0x0, &(0x7f0000000200)=""/220, 0xdc) r2 = socket$inet(0x2b, 0x1, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) clock_settime(0x5, &(0x7f0000000040)={r3, r4+10000000}) syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x40, 0x2000) sendfile(r2, r1, 0x0, 0xb) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3}) 00:13:39 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x10, 0x5, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x48, 0x1, 0x2c}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0xfb, &(0x7f00001a7f05)=""/251}, 0x14) r0 = accept(0xffffffffffffffff, &(0x7f0000000040)=@ethernet={0x0, @link_local}, &(0x7f00000000c0)=0x80) getsockname$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000000140)=0x1c) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x10000, 0x0) ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f00000001c0)=""/178) 00:13:39 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup2(r0, r0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000140)={0x0}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={r2, 0x3ff}, 0x8) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000001c0)={r2, @in6={{0xa, 0x4e21, 0x80, @mcast2, 0x4}}}, 0x84) sendmsg$nl_generic(r0, &(0x7f0000018000)={&(0x7f0000000000), 0xc, &(0x7f0000013ff1)={&(0x7f0000000080)=ANY=[@ANYBLOB="180000002f0001000000e98c28e700000200000080000000"], 0x18}}, 0x0) 00:13:39 executing program 1: openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x585a00, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070") r1 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x0) readv(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/7, 0x7}], 0x1) ioctl$int_in(r1, 0x8000008010500d, &(0x7f0000000040)) 00:13:39 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x451, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x47e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0xff, 0x0, 0x0, 0x800000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$bt_hci(r0, 0x0, 0x0, &(0x7f00000000c0)=""/26, &(0x7f0000000200)=0x1a) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040)) ioctl$KVM_SMI(r0, 0xaeb7) mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000480)='/dev/vcsa#\x00', 0xbb, 0x10400) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000280)={0x81, 0x0, [0xfc00000000000000, 0x100000000, 0x6, 0x7c]}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000640)={'filter\x00', 0x7, 0x4, 0x470, 0x0, 0x270, 0x140, 0x388, 0x388, 0x388, 0x4, &(0x7f0000000000), {[{{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@random="6994ffcb546b", @mac=@dev={[], 0x13}, @broadcast, @rand_addr=0xfffffffffffffffc, 0x6, 0x1}}}, {{@arp={@remote, @empty, 0xff000000, 0xff000000, @mac=@local, {[0x0, 0xff, 0x0, 0x0, 0xff, 0xff]}, @mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, {[0x0, 0x0, 0xff]}, 0x0, 0x40, 0x9, 0x9, 0xafc4, 0x9, 'veth1_to_bond\x00', 'veth1_to_team\x00', {0xff}, {}, 0x0, 0x11}, 0xf0, 0x130}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x95f5, 0x4, 0x6cc}}}, {{@uncond, 0xf0, 0x118}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0xd68000000000000}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4c0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000100)={0x6, 0x0, 0x5, 0x9, 0x9}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f0000000140)="360f303e0f01df6766c7442400090000006766c7442402020000006766c744240600000000670f011c240f20c06635200000000f22c0263356470f0764f30f2a342e260f0f970a008e0f08660f5808", 0x4f}], 0x1, 0x0, &(0x7f0000000200), 0x0) setsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000600)={0x0, 0x0, 0x1, 0x9, 0x4, 0x0, 0x8, 0x7, 0x4, 0x100000000, 0x80000000}, 0xb) 00:13:39 executing program 0: r0 = socket$inet6(0xa, 0x1000000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x1, 0x2001) write$P9_RLERRORu(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="1c0000000701000f002f6465762f76686f73742d6e651c0026000000ef4d58cbc566db69bd2f5ba979838cf07ff88cf15f5a908746f5cf2b07126f6c57f8e00535ff16b7ee4b0558e5076fc3f0ad1753772e0392852d01077da22a84347d45cacacb5c5f8af58e43"], 0x1c) r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x9, 0x800) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x0) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000004700)) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000012000/0x1000)=nil, 0x1000}, 0x1}) r4 = openat$vnet(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/vhost-net\x00', 0x2, 0x0) r5 = dup(r4) ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}}}, &(0x7f00000003c0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000400)={'team0\x00', r6}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r5, 0x4008af10, &(0x7f0000000200)={0x0, 0x4000}) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r5, 0xc058534b, &(0x7f0000000100)) ioctl$KVM_SET_BOOT_CPU_ID(r5, 0xae78, &(0x7f0000000000)) close(r1) 00:13:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7501000000000000) 00:13:39 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x4000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001a80)=ANY=[@ANYBLOB="f0000000000000000000ffffffffffff000000003200000000000000000000000000ffff0000000000000000000000000000000000000000000000000000000000000000000000007b9628e799a1000000000000000000000000000000000000000000000000009e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004800020065636228636970686572000000000000000000007a000000000000000000000000000000000000000000000000000000000000007941e51a7798252578e2c41e5a2cfde5cbbd3e7da96ebe4c39921b9775ea4a5dffd5e8f67b4a2c59fa0c10f06ab8bb49a8014ab04ee94bb94b114c8a019c7924951d9d8a3e1afed907ba3f5cea1ec40c62e9954f2697b64ff98d393b3270fd067fe355b0cb698ea59e8cb86e58f44996fd82381d5af81101a0713d61996e109caf1c8374db5a66bc3ad91dc666234f0f115bf5da6dfab7689f3b147d3bf232da875d39e3b571c85bd0d277309e3dbe35148720667e35ba91f73e81c611c22c7330ffe5ea5c222596082418"], 0x1}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000002700)={&(0x7f0000000140), 0xc, &(0x7f00000026c0)={&(0x7f0000001c40)=ANY=[@ANYBLOB="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"], 0x14}}, 0x0) r1 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f0000000080), 0x0, 0x0, 0xfffffffffffffffe) r2 = syz_open_dev$dmmidi(&(0x7f0000001a40)='/dev/dmmidi#\x00', 0xfffffffffffff800, 0x0) ioctl$VT_WAITACTIVE(r2, 0x5607) r3 = add_key$keyring(&(0x7f0000000400)='keyring\x00', &(0x7f0000000a00), 0x0, 0x0, r1) r4 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$lock(r4, 0x6, &(0x7f0000000240)={0x1}) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000580)='/dev/hwrng\x00', 0x200, 0x0) ioctl$KVM_ENABLE_CAP(r5, 0x4068aea3, &(0x7f0000001600)={0x79, 0x0, [0xfffffffffffffff8, 0x1, 0x22d5, 0x3]}) r6 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r6, 0x2285, &(0x7f00000001c0)={0x400000053, 0xc804, 0x6, 0x0, @scatter={0x0, 0x384c8, &(0x7f00000004c0)}, &(0x7f0000000100)="482e2cf215c6", &(0x7f0000000600)=""/4096, 0x0, 0x0, 0x0, &(0x7f0000000080), 0xfffffff6}) r7 = add_key$keyring(&(0x7f0000000680)='keyring\x00', &(0x7f00000003c0), 0x0, 0x0, r3) r8 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000000c0), &(0x7f0000000280)="19", 0x1, r7) r9 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040), &(0x7f0000000580), 0x1b8, r1) r10 = creat(&(0x7f0000000100)='./file0\x00', 0x80) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) pipe2(&(0x7f00000016c0), 0x0) write$evdev(r10, &(0x7f0000000440)=[{{}, 0x5, 0x8, 0x3}, {{r11, r12/1000+30000}, 0x17, 0x7fff, 0x5}, {{0x0, 0x2710}, 0x16, 0x0, 0xf1}, {{0x0, 0x7530}, 0x0, 0x1, 0x4}, {{}, 0x17}, {{0x77359400}, 0x16, 0x2, 0x1}], 0x90) ioctl$KVM_DIRTY_TLB(r10, 0x4010aeaa, &(0x7f0000001800)) keyctl$dh_compute(0x17, &(0x7f00000001c0)={r8, r9, r8}, &(0x7f0000a53ffb)=""/5, 0x3ca, &(0x7f0000000180)={&(0x7f00000002c0)={'sha1-generic\x00'}}) r13 = syz_open_dev$midi(&(0x7f0000000340)='/dev/midi#\x00', 0x1000, 0x8000) ioctl$EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f0000000500)=0x1) getsockopt$inet_IP_XFRM_POLICY(r13, 0x0, 0x11, &(0x7f0000001940)={{{@in=@dev}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in=@rand_addr}}, &(0x7f0000001680)=0xe8) sendmsg$nl_xfrm(r5, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000540)={&(0x7f0000001880)=@getsa={0x9c, 0x12, 0x20b, 0x70bd2c, 0x25dfdbfb, {@in=@local, 0x4d6, 0xa, 0x3c}, [@algo_comp={0x6c, 0x3, {{'deflate\x00'}, 0x120, "b2641766e658b32354e35438c31142a3564e9f398ddb167f2a033a9e58b58c778eccffc3"}}, @tfcpad={0x8, 0x16, 0x1f}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000004) 00:13:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x170101c000000000) 00:13:39 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x6000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:40 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0) ioctl$KDDELIO(r1, 0x4b35, 0x1) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) accept$alg(r0, 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000000)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x87010000) 00:13:40 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000440)={0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc}, 0x14) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x210200, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000180)={0x2, 0x4e24, @rand_addr=0xd6c1}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f00000000c0)=0x201, 0x4) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(0xffffffffffffffff, 0x8008ae9d, &(0x7f00000001c0)=""/35) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) listen(r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000200)='bbr\x00', 0x4) sendto$inet6(r2, &(0x7f0000000280), 0xfffffffffffffedd, 0x20000004, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty={[0xe00000000000000, 0x0, 0xea03000000000000, 0x5000000000000, 0x0, 0x0, 0x0, 0xd9050000]}}, 0x1c) creat(&(0x7f0000000080)='./bus\x00', 0x0) open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000340), &(0x7f0000000180)}}, &(0x7f0000000280)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000)) prctl$setptracer(0x59616d61, r3) tkill(r3, 0x401104000000016) 00:13:40 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00') r2 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r2, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r2, 0x4) r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f00000000c0)=0x1, 0x4) socket$inet6(0xa, 0x0, 0x0) mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x400000000000, 0x1012, r3, 0x0) r4 = perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mlockall(0x0) close(r4) sendto$inet6(0xffffffffffffffff, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000005c0)=0x5, 0x4) setgid(0x0) inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0x10000000) add_key(&(0x7f0000000480)='rxrpc\x00', &(0x7f00000004c0)={'syz', 0x2}, &(0x7f0000000500)="339411e828910459776ab24f9081d077868035adae3b02ea115886d23373604c11b601f8207e8ffc7a3cd8e0321073fa79b7fc40a38775d222766b931780b95091a0b7fbaa57ec361616a2051254de51764915ac976f0a5c3a7dc567b756b6dcfc362dad2d12a87dc4065000416111bba5c8bfe9e8f2ac5539eeac26fa36fe429fc84d858cf06d13d297dd7522f6baff0c6e4ef3895d726fc7f453e337098a438e7d4bcb35", 0xa5, 0xfffffffffffffffb) ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000240)) bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x7f, {0xefa, 0x3f, 0x0, 0x7ff, 0x1, 0x7}, 0x3, 0xc2}, 0xe) dup3(r0, r1, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000400)={0x0, 0x0, 0x40}, &(0x7f0000000440)=0x14) 00:13:40 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x6, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:40 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x24}, 0x2c) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'vcan0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xe, 0x13, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xeed}, [@ldst={0x0, 0x3, 0x1, 0xb, 0x3, 0x50, 0x8}, @generic={0xfffffffffffffffb, 0xcb7, 0x1, 0x9}, @generic={0x4, 0xe0a, 0x1, 0x1}, @generic={0x6, 0xe2, 0x8, 0x100000000}, @initr0={0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x8}, @alu={0x7, 0x401, 0x9, 0x7, 0x1, 0x0, 0xfffffffffffffffd}, @jmp={0x5, 0x0, 0xce6623346b75ec6c, 0x2, 0x5, 0x18, 0xffffffffffffffff}, @map={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='syzkaller\x00', 0x7fff, 0x85, &(0x7f00000001c0)=""/133, 0x41100, 0x1, [], r1, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x10, 0x5, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0xffffff85, 0x7, 0x2, 0x1}]}, &(0x7f0000f6bffb), 0x0, 0xfffffe21, &(0x7f00001a7f05)=""/251}, 0x18) 00:13:40 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000140)='/dev/snd/pcmC#D#c\x00', 0x4, 0x4200) bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)={&(0x7f0000000100)='./file0\x00', r0}, 0x10) munlock(&(0x7f0000006000/0x3000)=nil, 0x3000) sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000640)=ANY=[@ANYBLOB="14012abd7000fcdbdf25110000000400030008000400ffffffff0800040081000000240002000800090000010000080005000900000008000b00010000000100000006000000"], 0x1}, 0x1, 0x0, 0x0, 0x40000}, 0x40) set_thread_area(&(0x7f0000000600)={0x1, 0x20000800, 0x0, 0xa1d, 0x0, 0x4, 0x8001, 0x1, 0x0, 0x6}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000740)={{{@in6=@local, @in6=@mcast1}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in=@broadcast}}, &(0x7f0000000540)=0xb3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff) keyctl$set_reqkey_keyring(0xe, 0x1) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r0, 0x28, &(0x7f00000002c0)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000380)={r1, 0x3ff, 0x18}, 0xc) add_key(&(0x7f0000000880)="6b657972696e670036f9126c12054f5c0e18c6522573dd79f1a0a3a60957d6c729ad856cd8f0df9c04d18e57904b1c05209dee12f5ccc12d98a70037673436610faac88bcf9681918789c2ad473665984b17868d9c5e90813e9ec1f73fdebf5638f9c01f8821f1f78ebac984e3852ee10000000000000000000000", &(0x7f0000000840)={'syz'}, &(0x7f00000002c0), 0x1d3, 0xfffffffffffffffd) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={0xb764, {0x2, 0x4e24, @broadcast}, {0x2, 0x4e22, @multicast1}, {0x2, 0x4e24, @local}, 0x35c, 0x0, 0x5, 0x1, 0x7, &(0x7f0000000200)='ip6gretap0\x00', 0x1a, 0xffff, 0x80000000}) request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz'}, &(0x7f00000000c0)="d13ff3d776", 0x0) [ 405.730764] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 00:13:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4800) 00:13:40 executing program 1: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp\x00', 0x400000, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2cdc, 0x1, 0x1d, 0x0, "1dd816ff263489993d842a77c491a643702607db3b3f0178de545d297d8950cc86cc0f3647867ec32b8fff112aa3664681a327a947076bdd8d49813d89bdcf02", "0d5c00b729c24bfbb3e7cd7cba16177b26b6b11b316d17f2f2f82ff7f7ec195c", [0x0, 0xe9]}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80400, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4068aea3, &(0x7f0000000080)={0x7b, 0x0, [0x3, 0x8001, 0x45e, 0xffffffffffffffc0]}) syz_emit_ethernet(0x42, &(0x7f0000000100)={@local, @link_local, [], {@ipv4={0x800, {{0xb, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @local, {[@timestamp={0x44, 0x18, 0x7, 0x3, 0x0, [{}, {}, {[@empty=0xfffffffd]}, {}]}]}}, @igmp={0x0, 0x0, 0x0, @multicast1}}}}}, &(0x7f0000000000)) [ 405.775060] audit: type=1804 audit(1538698420.560:65): pid=20343 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir576630731/syzkaller.TwOBtz/317/bus" dev="sda1" ino=16556 res=1 00:13:40 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x80fe, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:40 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f0000000200)=0xffffffffffffff28, 0x0) socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) sendto$unix(r1, &(0x7f0000000140), 0x0, 0x8000, 0x0, 0x0) recvfrom(r1, &(0x7f0000001240)=""/4096, 0xffffff7e, 0x0, 0x0, 0x0) r2 = dup(r1) ioctl$PIO_FONTRESET(r2, 0x4b6d, 0x0) 00:13:40 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00') r2 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r2, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r2, 0x4) r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f00000000c0)=0x1, 0x4) socket$inet6(0xa, 0x0, 0x0) mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x400000000000, 0x1012, r3, 0x0) r4 = perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mlockall(0x0) close(r4) sendto$inet6(0xffffffffffffffff, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000005c0)=0x5, 0x4) setgid(0x0) inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0x10000000) add_key(&(0x7f0000000480)='rxrpc\x00', &(0x7f00000004c0)={'syz', 0x2}, &(0x7f0000000500)="339411e828910459776ab24f9081d077868035adae3b02ea115886d23373604c11b601f8207e8ffc7a3cd8e0321073fa79b7fc40a38775d222766b931780b95091a0b7fbaa57ec361616a2051254de51764915ac976f0a5c3a7dc567b756b6dcfc362dad2d12a87dc4065000416111bba5c8bfe9e8f2ac5539eeac26fa36fe429fc84d858cf06d13d297dd7522f6baff0c6e4ef3895d726fc7f453e337098a438e7d4bcb35", 0xa5, 0xfffffffffffffffb) ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000240)) bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x7f, {0xefa, 0x3f, 0x0, 0x7ff, 0x1, 0x7}, 0x3, 0xc2}, 0xe) dup3(r0, r1, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000400)={0x0, 0x0, 0x40}, &(0x7f0000000440)=0x14) [ 405.933983] audit: type=1804 audit(1538698420.720:66): pid=20343 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir576630731/syzkaller.TwOBtz/317/bus" dev="sda1" ino=16556 res=1 [ 406.038132] audit: type=1804 audit(1538698420.720:67): pid=20331 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor0" name="/root/syzkaller-testdir576630731/syzkaller.TwOBtz/317/bus" dev="sda1" ino=16556 res=1 00:13:41 executing program 5: r0 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0xffffffff00000000, 0x10000) sendto$inet6(r0, &(0x7f00000023c0)="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", 0x1000, 0x90, 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r3 = memfd_create(&(0x7f0000000000)='aead\x00', 0x4) write$FUSE_NOTIFY_INVAL_INODE(r3, &(0x7f0000000040)={0x28, 0x2, 0x0, {0x2, 0x1, 0x2}}, 0x28) 00:13:41 executing program 0: syz_mount_image$msdos(&(0x7f0000000500)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000540)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x18, &(0x7f0000000580)=ANY=[]) r0 = open(&(0x7f0000000800)='./file0\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000240)={0x0, 0x40, 0x217, 0x10001, 0x8}, &(0x7f0000000280)=0x14) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x0, 0x3}, 0x8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f00000002c0)={r1, 0x6}, 0x8) fchdir(r0) ioctl$KVM_GET_FPU(r0, 0x81a0ae8c, &(0x7f00000019c0)) r5 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r5, &(0x7f0000000980)={0x8, "7c70ee3800d5ab5f2036f872e0ac57cbd592bca0d671633f50a3102066d6e765f5a64731e3fb8d90d250eda2cc33b60a7ff98074cdc3f1dd1a2df26a381d95974e0925d521c6b48c3dee0d430d398884316091aff6adb6153dc3c92549957d3488efc02d6f6fb172524b095c30c1bd35aae04236bdd42694d613eb54c0b65a338c48dc4c8bad70754fc81d9928e4a1b81f9c77075258a0805b4494867247966b24a023311fd91ef3754b98d3acde6f2ef0617f123c22fccb81c11389fdfa2e21c2365aabfc8916e02151d8643ae21cab7fcbec6142186d3bb57546c106484bc4c28a48da2b75dd82aabe99464558e60cd101f6b65856fabee614d271741a68dd550c8772f06a93cf8e5c0de549c3b75a72f8a590bd50b2af5f64009c969ed7596f0192b0f98b1afac0e8c5f4c653f611b4a71776400a9ae3f18e75f856788c97195749042510735880b9bb0ccb23210832a4f1c6f134d68f8e299837c426e0c9a45d5d2c959446cc363f370c67cd01a063c91254d692fe35abee92fabda4f66d93228c979ebe036c5c2e0028ec76562d67d0919ca28258fec0ed60603142b5c57c4cfb1ea1e892d0fd2f33970142b179c415d6bea344fbcc82d133052e848a885160737c69eb02ca9f544831c8e3ffcf40cb7b415d24795fc8aaeb8e76bec262aea5e28fe5d6495c4b5895a612b1cc2122286add66356f3ecd309f970634f1b09da1507964d35575167317f13c7fd9f11af27ceea86e9a5b3494a27ba98ba38dd1fb72ef2c6163664fd8f7c946935cd4833121f505ff277c03d959d9a12f3389e9eb6701a8b29f72c20c6abb7bd8349dd2e120bdd59dca9f1a2a877f1677b59d7920ddf29b9d94f7c6879b78e31cf1b65b60fe349ef9d4976f46609ee34e33f647aafbf64f6323d18598905f2e73af75661397595b8f9c1e9a4e993946820da5378ca5b363560e95edce316e99bac6e6250efcf1cb58fdcf94c7557c2d7f763a688543462d54b64e178c2e64c6ebba356894973051907fd8de8ba908e822168b171c1707efcd9ac827e64313721876e2ff26ac34e88557a4a0dfde08eda81cf0c1465a89b68429e48966044c767563e1121db48c9b619fd7362afd15ec6aa19b28759d7977be4fbcad0cf8dd5dc5362259bd5cb5089a9d18db969afe1192571f5fcc0c4d6be281d23b9c1f9f32873c058adfa1bf57a3718686957edfd6e4b58aa959541127696d59fb2810d042ced227961eb19a424e4cf45bc6243217bb7561b7ee11f8c0b8f39480343a26f2da5fe79d5e213c01ea47155ffa91e7d7ba0bc8ccb018bd69cfe71dd8565a645d678b404a295397e83ae69dbf8505f6947a836b44823a92861124330fccd4bc4a2e20d9047bd919d82c89623caa87eb09bd584d58f42b35ef55fddc06dfb3957f3f507e5ca9b8b98947cc5bb68846755527ddf32ffa444e1c7a5654d4d377e04a9f22e1069804fdcdb251acb6bd6b32d100feb44286991d779d2b3e2b7f5cc5f8eb3ae166a3b6fb9df11e1867989a6f9b2028e4c73b4d418b51f6e870713cadafddb47a48c9a97283da214f02db3326d42438d9a7db580693ad1887f99d86bb5fafd6d07c2647fc80c2c5a1ed9ea3b95be65ca422080ddefca5b49ccd538f6bc67390f892d9e416f7e835f76dd90edc56256348d20560caeea05c0922cab60dbf0b57ddaaed6ded5a336e01485fd571dc12050461271cee347c31ac245bfee9128630dfcc43b6d88b5ba9937a6f6ab70b7d256784ff72297cfcfd0ffacd09b55fb832bf60f04d87c48c74972b9f18fa178ce4880b025d1c1097ddb929e8f7e02f1c0e03012bec0fa61a49eb1c2a50a45fc0d98b6649de325184006938e421321e8b366649d9b6ebadf77509c9d48844e80f7752fd7daaa5c938b946feaaac0d871203270a747035c7e2f697c84e792a55cbce76c0a25360f7acbeaab60627aa9c37064af75b67f46732844eb2f6b37226004afe451a9fbfbbcf7e72ade67b017e9209b5627fbe16789abd90326751a1fd1d93efc59f2650f979ba71938d784064922bee2874c4b76d5f26e39ea0a98cf175950137feff9456c88c6a295830183fae3a9c2312c25f3d81708d73488d15a587e7e7cdde3b77917eef29c8b5965c916a65c3c5a53b7313c3115d0a8bb4e16f6b80ff6f78adb756aba94ced86047562a2cd2fb25e9a4656f6359c3f2fde8b5ab38852853cbd7221cb4d59b7f0e79bd37f9ade073f62b75edbe63c13c0d02bf076d88f5b750ea640aad47ce97d6a0783398dd3fbb63734ed969470cf45200235650532224fc28caf1e36ca6b402ec4c978add40fc59f2113485875682139f8aa9aeb48d09178de919370b0cd0ebcab5e60e1b0a2fc153db0dae8e50b48561622a677d0f1afc149676f832e016e14007fb298dcb96f11a92a1ac8bd4cc7b34d659d6cd2c9817b586585e72080255b083bc84512277ffb7f561c6a7a08cd128bfe9b525da531f0bf04f11d3de102b3538835807ac0b2f4325fc6765d02d692ec82f5b338c8257029136fcd3427c09874ecc7492becdd6608eac4adf1abc3f7e08868a72e57ce4dcfc288a25af73d19f1118a9254963c1548cdca5fc7c921a7f218f8e71edd7969dfb35beae1091d7530e32236397fa9fcd232b441ff1b0177829468c198d659d247ccca4fbd58c625501e4368075d0e5e69a6f90952f5bbe48e85a303131dedf7f1a513b291598a545784e1013521877c25d6069d3a855652a4bad5b2df2e4da2de756a20e790b756dd2925ce824561e5892b5e064c7c7b996acc4e29597e0cd00956e9c57ec374714f846be7632d3075e38bead499163498810886c78a2cc73fb64fd48e186083ce911e0751b4dc63476859c2824fa532a4b1711c244619e702eeab19380aeb7b17f67fade3dcad8ddddd893a526cd5d04d8ae982c88029ec71bdd0772fd74adbdb378fc204ca411a2d8a50331516a28552be78f9725f32d1b3a6c7bdf3277c5f7e385c7ebbacc419ec7ca3c5b8f46dbefee59b6422a6b22d60527edc012f852077d925619874f7709f283e01678fed36528003a696ee431a817f34f453c143dc56b70e1f810a5380a555cc8c4fc6522ab544ce5d715caa302ebdd0aa8286b7ef5dd6dd48a8ad9566818f7509daf02db0b98b432f57f1d107ee95a86228728cab4062e27922381e1e2ee351af5e2ea0fd6d1cea70b3b8f4a50f0776fc9aa2a7d2dff6e1ea3769864104f09137b99960b69af13895d842649eacaed8ddf183beba3323640af8deb52b902c0974d685d19fc87c93eb80ad5d28e54363705ad39231d989522e94f000256bc8d93af138a45d67dad3e21fa9fb31d9327c6e71f61956d9daf4f97333112704136d3d1bf6fe0e4c002e10b684d2344300ec70fae0b50532ebace58f0e8318354a172cceacf27d01ff41cc8fef42443f62b0e15b5fcc0728630b96fb2c2b59634f4993bb1ce2eace6fb0f53e5f84bc5f58b1b66d59e3c75a98670496f105a703607211aa9e882e72f13e9fe07f0767ad4e5ac5c732b65301d8ceab36b5ff2f71958fb1b51d2e703ac506e68d4026160fd3f60440b8b8f554f1feeba5d53f71cbe60d143620f8fa779acb94c965b729207a5ab11f4a51b694c31606171da44a28d80cde296dff5724ff718d6377eb8534e616cff39af943ee4ce87b4fadded30c702d370a71072ab3e20f19b8c1b73fdbbb9c675352bb73ee85e22597fc0c439a33f5febe1629bd084af7193f8d1a1415b02ca54706711505cbae11ec6411b012cc3a3eddcfb002901b6e7565b9fbf4d605c147031888ceb590c14697d00970ce9095c6f7fee41ec6a15d7ef52dfedfff2a0d3dbb387b61232aee6ca202787038021e6aabda18e2adf6fd89aa491e65f9813d73412fbfff089752d713d7efa690ec4fc254b56908d3057f65997acf81aea589e272f8fa852849e488f1e0c0cb6cdb5f46ca92e36d39224e704850056d2e9b91909aed0f55d054e274415ecc39b8958335a14cfb0a42d7f26ef8e82592dfd03b3550b5193fba077994c682951968869574fd94976760d9bd9b334353eeda836cc8dab244e72095cc46833f02bb2f6df35601b3085664261abb67fc9ab9f27210e6827cd15ce16c55f0f7f5b8ab401f24032b19a53a9299b62ebf4a8cf7f4753d95126f008a8ce349036666de66bcaf40b27fa875efa98873e1ef9302e2a24bfe07bd1054bdf9ba9ad1b1075402f26d682833b947c762513ba5f07537bb712473184a60e04ace5adb8d982d6153b011ae0b2034adc0ff4a64e2c6561c2e0840cdab2120bc916cde9b7a92c4d332d0f83945fe55e3c8f4d93f22e7759c20241d92cca0ae5a3d06a127e5614df708cea1ad3b2f231c81460ff4c3f349c67a87135a4b67589ffce311832923f71796276e81f0537e265404c0ee06d5ed98a5ec5f8ad62db589eb585fc4627173b51fd4e897a3e8d2acbb82ec2996ac3a6823368a1e12a0536a9d1a7b2d31d80c46c292ff51395481d4f65c53fab867e27bec9156ee189d245d94877a1405dc9e1e996822ad47071a9ab36c9bfd02c41ea5ba21591793053b1b64758bae0addfcd69d169849bc1ee6ce5c08f0d3da5ecc1b6ab31e13af2fa5ce4d921163270901264a88ac6350e8fb6371663dd04146932238597258b123a8036250c190fbb3cfc6ebbf9e06c4a9053e8332c95c91a890a3d35ddd35f47e7ab606f3e345e12560e6d52243883da7b8910834042ad12e7fb3f08a0b14ef6aee22251999e6079be2ef5666d7d5ae00d161720262761da3f378c63cb151f4e94d034e9de949dfe796b905804ca555691023c30ea7cf0cb276e1e3ba65793291f8287d1064606bf5787421b9b9bfc05e9c5eac750de92519fe9e2592cd34a2ef6ec18efed5e7c13bfcfce47327cbecac358bbe6d44164849308cf91cd5ea87fa4b02ba4939e28141c7dad42714b019470d91808a8f46150677b6c90f267ecb39ef42afc95de0cbd016775c89d8213ec9d4e061e6493f237296f91abfc64176c0e885ef54af4136a724fadfe89a25d7599998acebc4a27f8fb5b26936bda5c3d5fec3373dcd9a0e99fc939641c50669adc54119582e8835575d1c57fa955cd29d870360620f91c3ff90d264013816352317ae226f7d7bad5db711f8973382f6cebd63cd519ddd08e1772649be75f64f4acc15f828dc0b305584b6dd2213194603c44e2964358d305aa97fb08568a0a955ad7a6f8d042754b4bbf2fb3414052719fd9841bef8360d1d3195c69414be882115c2c64fecdcbdaed3a2e943fdfef9a13520e41d32a787bcfe4f61e2b378d35aa70784a772cf8ebcaaeb105e4627516db2ababfcb8c11f224c3a48c86160d34d0ee59f02c31648ae4b0309b378f0bf63266967dcfb4f1cc1902f613c6d0d48915a9cf28a52b106544cde1b38ff2e2a1275fd0d3899ce7f7c6653c9017f7ac4aaa35bcb2811a8f9dbb56746b45475350e7c13d42abb5692377da7a4045ee644ce00f8699e3251d75621c82cd659ea3add277affe3ff792f7d24a3d0979ef82cfc0d409697ae2e8598854a8327f46974c901d309dc6dbe31913c59d821aa50c0fe95cc822e8f07bbb00e9a09bc9a570b9778d29308740bc336a41258d209c206f87a709aa43415da0096f7d177e509a7d625645fb098ccc45367d82235e952670ac5f82f8ced3f59fd9ee20ac75be609cc832417e807ddc40630cba4c91e0785edcb5f20b9e6dedb1ec172cd16fc034f410e9ce375ea855144aa3076317f649cf4efe4d7abf244984c4e", 0x1000}, 0x1006) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x0, &(0x7f00000006c0)=0x7fff, 0x4) openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x0, 0x0) lsetxattr$security_smack_entry(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)='security.SMACK64MMAP\x00', &(0x7f00000004c0)='fowner<', 0x7, 0x2) restart_syscall() gettid() fcntl$getownex(r5, 0x10, &(0x7f0000000200)) ioctl$TUNSETNOCSUM(r5, 0x400454c8, 0x1) sendfile(r5, r5, &(0x7f00000000c0), 0x8080fffffffe) ioctl$KVM_KVMCLOCK_CTRL(r5, 0xaead) 00:13:41 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1e01000000000000) 00:13:41 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x400000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:41 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(des3_ede)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="de75e1fe7d0e7634b214a3765ba0017995103a08917fc2a1", 0x18) r1 = accept(r0, 0x0, &(0x7f0000000000)) sendmmsg$unix(r1, &(0x7f0000001d40)=[{&(0x7f0000000240)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f00000002c0)="93998810114aa6db", 0x8}], 0x1, &(0x7f0000000a80)}], 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x20, &(0x7f0000000040)=0x9, 0x4) 00:13:41 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x700000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:41 executing program 3: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x20000000003, 0x3) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f00000003c0)=[{{&(0x7f0000000140)=@xdp, 0x3e6, &(0x7f0000000040), 0x0, &(0x7f00000002c0)=""/204, 0x473}}], 0x1500, 0x3e6, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x91) accept$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000100)=0x1c) getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4) 00:13:41 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc2000000) 00:13:41 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x800000c0) 00:13:41 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xf5ffffff, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:41 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x80, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x7) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r1 = socket(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00\x00\x00\x00`\x00', 0x4000, 0x0, 0x700, [], 0x0, &(0x7f0000000100), &(0x7f0000000200)}, 0x78) [ 406.829672] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 16) [ 406.859229] FAT-fs (loop0): Filesystem has been set read-only 00:13:41 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x34000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 406.889617] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000020) [ 406.914124] kernel msg: ebtables bug: please report to author: Wrong len argument [ 407.027497] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000ff0) [ 407.066414] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 16) 00:13:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 00:13:42 executing program 1: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x0, 0x0) r1 = syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x101000) r2 = syz_open_dev$sndtimer(&(0x7f0000000080)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000200)={{0x0, 0x2, 0x0, 0xffefffffffffffff}}) ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f00000000c0)={0x0, 0x4}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000140)={r3, 0x401, 0x10, 0x20, 0x1}, &(0x7f0000000180)=0x18) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000000)={{0x0, 0x2}}) 00:13:42 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0xc0185500, &(0x7f0000000040)={0x7f}) 00:13:42 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x300, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:42 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x10000, 0x0) ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x1a) 00:13:42 executing program 0: r0 = socket$l2tp(0x18, 0x1, 0x1) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x800, 0x0) ioctl$KDSETMODE(r1, 0x4b3a, 0xfb) ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234418dc25d766070") r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x300000000000000, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c000000000000000000000002000900400000000000000000000000030006000000000002000000e0000059d8fd57186fe8a00002000100000000000000000200000000030005000000000002000000e00004000000000000000000"], 0x60}}, 0x0) 00:13:42 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000500)='/dev/userio\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000540)={0x0, 0x20}, &(0x7f0000000580)=0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) close(r1) sendmsg$nl_generic(r2, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB="04009b5f42b781000182ffffe700000000000400da4c44"], 0x14}}, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000000200)={0x2, 0x0, 0x1b, &(0x7f0000000100)="01237290d0665499b8a227f700a0bd28e54b8712c8feb080c8d29c"}) r3 = dup2(r0, r2) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r1, 0x40045730, &(0x7f0000000240)=0x3) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x10}) getsockopt(r3, 0x8004, 0x7, &(0x7f00000001c0)=""/23, &(0x7f0000000140)=0x17) socket(0x0, 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000280)) fchdir(0xffffffffffffffff) 00:13:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xa0010000) 00:13:42 executing program 1: r0 = mq_open(&(0x7f0000000000)='-$\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000664fc0)={0x0, 0x5, 0x71a}) mq_timedsend(r0, &(0x7f0000000200), 0x311, 0x0, &(0x7f0000000040)) socketpair$inet6_dccp(0xa, 0x6, 0x0, &(0x7f0000000140)) mq_timedreceive(r0, &(0x7f00000011c0)=""/4096, 0x11ba, 0x7fffffffefff, &(0x7f0000000080)={0x0, 0x989680}) r1 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000540)={'syz', 0x2}, &(0x7f0000000480)="8e57534ca2ffcfe69d75c656e104744dfd60acfe47448349d2d7563243f30acee081ca4923510e86c64472f8b0a8a2de54873abced9104f8c24011ec709ffa63238aeb458cc2cc9fca9eb3534467aae63e25976ec79e16c48534bc35f7d86c7ab437e305ee7bcca5da6bc5df32ffa4accca8d053bb631acbfd825f20d8fbb74cbef8734f73354acd5c985319128eaafd9d2777d29244fc64c25c0887520c7a42f7", 0xfc44, 0xfffffffffffffff9) r2 = add_key(&(0x7f0000000200)='id_legacy\x00', &(0x7f0000000240)={'syz', 0x1}, &(0x7f0000000280)="a1a8473f80c66c6bee66d83062e0919a7a1250fc463930e64dceac21d4645ca11a2f76e35dfbeb79fd333061f6aa1f11382103b6f03d327bc5b15885a11d32476d26056e789d71680e633f64c2f9efd9543af70ba0326a4503a68c8dd04ab1b6c074f088fae2381ad54f86babc6d582c6fcb3ffabd4bfbd8a12270e11e478ebfadbce1302c5edd44982d3a41df627efffe4d94d5751fca1c4d2b7218d9b880b369cfdd8e536bd9ccfad9c22ad5753d37c1112de59867acde033d62b6f9c336756d", 0xc1, 0xfffffffffffffffc) keyctl$instantiate(0xc, r1, 0x0, 0x0, r2) getpeername(0xffffffffffffffff, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, &(0x7f00000003c0)=0x80) setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, &(0x7f0000000180)=0x80e6a5, 0xffffff82) r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x4) ioctl$RNDCLEARPOOL(r4, 0x5206, &(0x7f0000000440)=0x6) ioctl$KVM_X86_SET_MCE(r4, 0x4040ae9e, &(0x7f0000000380)={0x2100000000000000, 0x2000, 0x1f, 0xc, 0x4}) 00:13:42 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x10, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:42 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = epoll_create1(0x4000000000080000) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000007000)) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400600, 0x0) ioctl$DRM_IOCTL_AUTH_MAGIC(r3, 0x40046411, &(0x7f0000000080)=0x5) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) dup3(r0, r1, 0x0) 00:13:42 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x403e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msgrcv(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1, 0x0, 0x0) socketpair(0x11, 0x80007, 0x9, &(0x7f0000000000)={0xffffffffffffffff}) r1 = request_key(&(0x7f00000002c0)='id_legacy\x00', &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000340)='-security:cpuset\x00', 0x0) add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000240)="da4edef6cc990c6ab206ce268a9c4e3df77e76e21b1eb57a4234a5bf85204a58f69c3d4a450a67c56b10479ab8e903fa0e73457626859e4b435410440ca18057ae70eb3fc04e44806ab2bb1b05709c42b4fbee7da0c7faacb1f208bd733ae2920133", 0x62, r1) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x8000}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r2, 0xfffffffffffff5c0}, &(0x7f0000000100)=0x8) 00:13:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x308) 00:13:42 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xdb00000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:42 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = epoll_create1(0x4000000000080000) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000007000)) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400600, 0x0) ioctl$DRM_IOCTL_AUTH_MAGIC(r3, 0x40046411, &(0x7f0000000080)=0x5) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) dup3(r0, r1, 0x0) 00:13:42 executing program 3: r0 = syz_open_dev$adsp(&(0x7f00000001c0)='/dev/adsp#\x00', 0x10001, 0x121000) openat$cgroup_subtree(r0, &(0x7f0000000200)='cgroup.subtree_control\x00', 0x2, 0x0) syz_read_part_table(0xa0080000, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="030000000000000000000000000000000000000000000000ed793afe00000000020082012600010000006400000000012700fd030c00650000006400000000030d0085043100c90000006400000000043200052020002d010000d306000055aa", 0x60, 0x1a0}]) r1 = accept4(0xffffffffffffff9c, &(0x7f0000000000)=@in, &(0x7f00000000c0)=0x80, 0x80000) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f0000000100)={0x4, 0x0, 0x204, 0x115597a8, 0xfff000000000000, 0x3, 0x7fffffff, 0xff, 0x0}, &(0x7f0000000140)=0x20) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000180)={r2, 0x173}, 0x8) [ 407.832238] loop3: p1 p2 p3 < > p4 < > 00:13:43 executing program 0: socketpair$unix(0x1, 0x1000000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) r2 = socket$l2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGL2TPSTATS(r2, 0x80487436, &(0x7f0000000240)="645f7c8456ce2237cb11ada3f8a4628c87274b011aa5f83283589fe06aec0598509e81fb2bf06d2ea8ad935ad5b8ad0bc2ecad99801f6485e245403e3e757ea8a2c6e5d065e5ee55638879d7568c0662f04c3627075cfe933b6f2dc967345e3111c5166740382490082d5da90b3533afccf1059b6d6bb96506e149c89ed2a9dd22e0646664653d0b6ca36da6677ab553ccbdadbb5a1e632113fd324b1cc182338ea630dfe2483931dbb00eba2c2db4a82f7ea6e589996ba8c004cd7405c2eaaf55f7af009f398779d7aa0cdb202a60d73965889c0f805b75ac8ff9a9c78c6bab23ad69d625a204136517106c") mknodat(r1, &(0x7f0000000180)="2e2f66692e65318c", 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) fanotify_mark(r3, 0x11, 0x2, r1, &(0x7f0000000380)="2e2f66692e65318c00") r4 = creat(&(0x7f0000000200)='./file1\x00', 0x0) write$evdev(r4, &(0x7f0000000680)=[{}], 0x18) dup2(r1, r3) 00:13:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3b) 00:13:43 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x6000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:43 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) lsetxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.nlink\x00', &(0x7f00000000c0)={'L-'}, 0x28, 0x2) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) lsetxattr$security_smack_entry(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='security.SMACK64IPOUT\x00', &(0x7f0000000280)='morus640\x00', 0x9, 0x2) 00:13:43 executing program 3: mkdir(&(0x7f0000000380)='./file0\x00', 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x103080, 0x0) mount(&(0x7f0000000000)=@md0='/dev/md0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='f2fs\x00', 0x0, &(0x7f00000001c0)='posix_acl_access\'.)/vboxnet1+md5sumsecurity]\'lo%\x00') 00:13:43 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x430080, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x400000000000010, 0x803, 0x0) write(r1, &(0x7f0000000000)="240000001a0099f0003be90000ed190e020808160000000000ba0080080001007f196be0", 0x24) [ 408.322357] F2FS-fs (md0): Unable to read 1th superblock [ 408.347695] F2FS-fs (md0): Unable to read 2th superblock [ 408.366993] F2FS-fs (md0): Unable to read 1th superblock 00:13:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xff0b0000) [ 408.387319] F2FS-fs (md0): Unable to read 2th superblock 00:13:43 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0xa2cd, 0x6, 0x0, 0x8}]}, 0x10) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffbff, 0x10001}, 0x0, 0x0, 0x8, 0x0, 0x800000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xffffffffffffffe1, 0x4000) ioctl$RTC_PIE_ON(r2, 0x7005) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000300)={r2, 0x9, 0x65, r2}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f, 0x4b51010000000000}, 0xc, &(0x7f0000000440)={&(0x7f000000a980)={0x14, 0x22, 0x1, 0x0, 0x0, {0x4}}, 0x14}}, 0x0) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000280)={0x0, 0x5, 0x3}, &(0x7f00000002c0)=0x10) lseek(r1, 0x0, 0x4) getsockopt$inet_sctp_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000ac0)={0x0, 0x9, 0x40, 0x1, 0x0, 0xc6d, 0x0, 0x400, {0x0, @in6={{0xa, 0x4e20, 0xfffffffffffffffd, @loopback, 0x4}}, 0x9, 0x4, 0x100000001, 0x7, 0x1}}, &(0x7f0000000400)=0xb0) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000009080)={0x0, 0x7}, &(0x7f00000090c0)=0x8) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000009100)=ANY=[@ANYBLOB="9b000500f5ff0700000000000000"], &(0x7f0000009140)=0x1) ioctl(r1, 0x8007f, &(0x7f00000003c0)="0a43c66d581ffbf31c4b00") getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000004c0)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@loopback}}, &(0x7f0000000180)=0xe8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000005c0)={0x0, 0x0, 0x0}, &(0x7f0000000600)=0xc) write$P9_RGETATTR(r2, &(0x7f0000000640)={0xa0, 0x19, 0x1, {0x9c43e739e848e549, {0x2, 0x2, 0x5}, 0x4, r4, r5, 0x40, 0x4c72, 0x80000000, 0xffff, 0x2, 0xeecd, 0x9, 0x81, 0x29cda95d, 0x7, 0x3, 0x8000, 0x3, 0x1, 0xcb4}}, 0xa0) r6 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x100000000000082, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000080)={0x1}) read(r6, &(0x7f00000001c0)=""/182, 0xfffffffffffffe26) write$FUSE_ATTR(r6, &(0x7f0000000000)={0x78, 0x0, 0x1, {0x800000000007, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}}, 0x78) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000340)) 00:13:43 executing program 3: add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000100)={'syz'}, &(0x7f00000001c0), 0x0, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x800000009) r1 = getegid() r2 = syz_open_dev$audion(&(0x7f0000000300)='/dev/audio#\x00', 0x80000000, 0x440100) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000340)={0x0, 0x97, "6b84476c4fb13ad1e887ed650585eaf0fbc6da2a6428876a4645f081732acb6bcd5d186434f721989323762dd28f631b644f8087c233c0ef180e53f6086db70696ca6709f0106619c36dd8fa6755bd76529704a5fdddf1ada54f3fca01bc8872a3bb186e33f7187818066ab554966b4aa1f801a03f2dc78353d09e517197b03d479e827193a36b8308b7449bc3e38da7e3f455c27d36c3"}, &(0x7f0000000400)=0x9f) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000440)={r3, 0x4}, &(0x7f0000000480)=0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4={[], [], @rand_addr}, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5, 0xfffffffffffffffd, 0x5}}, 0xe8) connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e22, 0x200, @loopback, 0xffffffffffffffff}, 0x8) sendmmsg(r4, &(0x7f0000000240), 0x5c3, 0x0) sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x2, 0x7, 0x0, 0x9, 0x2}, 0x10}}, 0x0) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f00000001c0)='./file0\x00', r5, r1) ioctl$TIOCMBIC(0xffffffffffffffff, 0x5417, &(0x7f0000000180)=0x7fffffff) 00:13:43 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xffffffffa0008000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:43 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @multicast2}]}, &(0x7f0000000340)=0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x0, 0x0, @ipv4={[], [], @rand_addr=0x943}}}, 0x0, 0x0, 0x0, 0x8}, &(0x7f0000000200)=0x98) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000240)={0x3000, 0x2, 0x2, 0xffff, r0}, &(0x7f0000000280)=0x10) r1 = syz_open_pts(0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000700)='./bus\x00', 0x0) ftruncate(r2, 0x208200) r3 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r3, 0x0) read(r1, &(0x7f0000000080)=""/19, 0xffffff5c) gettid() sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040), 0x100000001) 00:13:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000) 00:13:43 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xa, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x410101c000000000) 00:13:43 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x5dc, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:43 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x3, 0x400800) getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000100)={0x0, 0x8000, 0x7, 0x8, 0x1, 0x400}, &(0x7f0000000140)=0x14) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000280)={0xe8, 0x201, 0xffffffff, 0x6, r3}, &(0x7f00000002c0)=0x10) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) r4 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x400, 0x101800) r5 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0xfff, 0x408000) linkat(r5, &(0x7f0000000340)='./file0\x00', r4, &(0x7f0000000380)='./file0\x00', 0x0) setsockopt$kcm_KCM_RECV_DISABLE(r4, 0x119, 0x1, &(0x7f0000000040), 0x4) 00:13:43 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x1000000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:43 executing program 0: setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000200)={0x0, &(0x7f00000001c0)}, 0xfffffffffffffe89) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000480)='/dev/full\x00', 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='trusted.overlay.redirect\x00', &(0x7f0000000280)='./file0\x00', 0x8, 0x3) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000500), &(0x7f0000000540)=0xc) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800", 0x43732e5398416f1a}) socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000080)) sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000380), 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x3000000, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x737}, 0x1, 0x0, 0x0, 0x41}, 0x0) socket$packet(0x11, 0x3, 0x300) dup2(0xffffffffffffffff, 0xffffffffffffffff) 00:13:43 executing program 1: r0 = userfaultfd(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x404800, 0x0) r2 = geteuid() ioprio_get$uid(0x3, r2) write$P9_RWRITE(r1, &(0x7f0000000040)={0xb, 0x77, 0x1, 0x81}, 0xb) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000006000)={0xaa, 0x2}) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4068aea3, &(0x7f0000000080)={0x7b, 0x0, [0x7f, 0x0, 0x7, 0xffffffffffffffff]}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000006ffc)={{&(0x7f0000009000/0x4000)=nil, 0x7ffffffef000}, 0x1}) ioctl$SCSI_IOCTL_PROBE_HOST(r1, 0x5385, &(0x7f0000000100)={0xb3, ""/179}) 00:13:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x830000c0) 00:13:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000001c0)="66400f3881900980000066baa00066b851f966efc4821dacbff0ffff7fb9800000c00f3235000100000f30c4e38d6d3ce9902636660f3881be010000000f20d835080000000f22d864450f09b8010000000f01d92e450f01d1", 0x59}], 0x1, 0x0, &(0x7f0000000240), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000680)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x1810c0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:44 executing program 1: r0 = socket$inet6(0xa, 0x202000000802, 0x0) r1 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x80000001, 0x201) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000100)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffff9c, 0x0, 0x32, &(0x7f0000000040)='vboxnet1md5summime_typevboxnet0em0procvmnet0\'eth0\x00', 0xffffffffffffffff}, 0x30) r2 = getpgrp(0x0) r3 = syz_open_procfs(r2, &(0x7f0000000140)='net/udp6\x00') fcntl$setlease(r3, 0x400, 0x2) sendfile(r0, r3, &(0x7f0000000180)=0x4b, 0x7ffffffe) 00:13:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 00:13:44 executing program 0: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x4, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$FUSE_POLL(r0, &(0x7f00000000c0)={0x18, 0x300}, 0x18) 00:13:44 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x3f000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:44 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x12) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x10000, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000080)={{0x3, 0x7}, 'port1\x00', 0x2, 0x0, 0xfffffffffffffff7, 0x1, 0x7f, 0x0, 0x1, 0x0, 0x2, 0x5}) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000180)=0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) rt_tgsigqueueinfo(r2, r3, 0xf, &(0x7f0000000240)={0x22, 0x100000000, 0x80000000, 0x50fc3b06}) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x1300000000000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=@getqdisc={0x24, 0x26, 0x201}, 0x24}}, 0x0) ioctl$DRM_IOCTL_GET_CAP(r1, 0xc010640c, &(0x7f0000000140)={0xc6b, 0x10000}) 00:13:44 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xfffffffffffffd9f, &(0x7f0000000100), 0x0, &(0x7f0000001580), 0xfcdb}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000003480)="80ffffffffffffff6f6e74726f6c2c65727300", 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000480)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7030000000000006a0a00fe000000008500000026000000b7000000000000009500000000000000"], &(0x7f0000000340)='GPL\x00'}, 0x48) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f00000000c0)={0x8, 0x2, 0x3ff, 0x9, 0xffffffff, 0x759}) listen(r0, 0x0) close(0xffffffffffffffff) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x0, 0xe, 0xd7, &(0x7f0000000080)="3c2dbcd4057b6c6a639a2f0086dd", &(0x7f0000000500)=""/215, 0x2ee}, 0x28) socketpair(0x0, 0x0, 0x9, &(0x7f00000003c0)) 00:13:44 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/current\x00', 0x2, 0x0) 00:13:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x40000) 00:13:44 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r0 = socket(0x10002, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00\x00\x00\x00`\x00', 0x4000, 0x7, 0x90, [], 0x0, &(0x7f0000000100), &(0x7f0000000680)=[{}, {0x0, '\x00', 0x2}, {0x0, '\x00', 0x3}]}, 0x108) 00:13:44 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xffffffff00000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:44 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x1, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x4e22, 0x0, @mcast1, 0x2}}, 0xffffffff, 0x1, 0x7, "06dcf8a35c3f1e7a93e8cbc0262e05fb3867c7e3b4bcf165d52148b9114a85fa887fa46815de1cf4eff5be0804a1f701725d6348484806806007c5e3938b56d4dacf0eae0e66cd2fb85c170ab6ffb7cc"}, 0xd8) sendmsg(r0, &(0x7f00003bbfc8)={&(0x7f0000fdbf80)=@generic={0x10000000001e, "02ff0100000001000000000000000ae77f5bf86c48020002000000f1ffffff009a480075e6a50000de010300000000e4ff064b3f013a000000080000008f00000000ac50d5fe32c4000000007fffffff6a008356edb9a6341c1fd45624281e00070ecddd0206c39750c40000fd00000900000000000b0000db000004da36"}, 0x2ef, &(0x7f0000d1b000), 0x4b, &(0x7f000012e000)}, 0x0) recvmsg$kcm(r0, &(0x7f0000000d40)={&(0x7f0000000800)=@l2, 0x80, &(0x7f0000000c00)=[{&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000000880)=""/236, 0xec}, {&(0x7f0000002600)=""/4096, 0x1000}], 0x3, &(0x7f0000000cc0)=""/71, 0x47, 0xde3}, 0x40000100) write$binfmt_elf32(r0, &(0x7f00000015c0)=ANY=[@ANYPTR=&(0x7f0000000100)=ANY=[@ANYRES16]], 0xfffffd6d) 00:13:44 executing program 3: r0 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=0x60, 0x800) ioctl(r0, 0x8912, &(0x7f0000000000)="0a5cc8070031afa8b40a08d5bd805d55438ca8ca2fb3b088626fc887ca8cdaf34f4b3dfc7281f3a8267ad879e68792") openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0xfffffffffffffffd) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000007c0)=0x800000000000002, 0x4) epoll_create(0x1) write$FUSE_POLL(r2, &(0x7f00000000c0)={0x18, 0x0, 0x0, {0x1ff}}, 0x18) bind$inet(r3, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10) r4 = mq_open(&(0x7f0000000080)='bdev\x00', 0x41, 0xc4, &(0x7f00000000c0)={0x3f, 0x6, 0x94, 0xffffffff, 0x3, 0x10000, 0x1, 0x7}) connect$nfc_llcp(r3, &(0x7f0000000480)={0x27, 0x1, 0x1, 0x6, 0x4, 0x0, "55aee0e1fb6bbfb8a415025f09cf786900a3bb908f9b94301d00ccd5eabcca4f2c0e1366781183600f3140cf061788f901ffc40f7a3261874a3d63be743f5f", 0x16}, 0x60) mq_timedsend(r4, &(0x7f0000000000)="e1bd6cd0afde34321df09a6d21a196923c8789fbec2ea693ba8964b3fe243e2d42cdc1b9eef3721daa36ba559839d6", 0x2f, 0x6, &(0x7f0000000040)={0x1000000000, 0x989680}) ioctl$sock_SIOCDELDLCI(r3, 0x8981, &(0x7f0000000440)={'yam0\x00', 0x100000001}) mq_timedsend(r4, &(0x7f0000000100)="73b3cafec3dbd277099115feb843043bcd21914a3dd770451ca1844af1702112de1c7734850769393d14c839755a14d817df51fee3f9c0eb552a2c2ed1587ddc4541f459edf88ac4aeb604daa86338ecf4a9ac6ff010cf7c5811", 0x5a, 0x5, &(0x7f00000001c0)) mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0) ioctl$int_in(r3, 0x5421, &(0x7f0000000900)=0x6) socket$vsock_dgram(0x28, 0x2, 0x0) sendto$inet(r3, &(0x7f0000000a00), 0x73c5d3417c1b93e7, 0x0, &(0x7f000069affb)={0x2, 0x4e20, @loopback}, 0x10) ioctl$TIOCSCTTY(r2, 0x540e, 0x6) sendto$inet(r3, &(0x7f00004b3fff), 0x0, 0x0, &(0x7f00002b4000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)=0x1) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000300)={0x0, 0x7, 0x8}, 0x8) 00:13:44 executing program 1: perf_event_open(&(0x7f0000001200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000838000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000489000/0x1000)=nil) mmap(&(0x7f0000000000/0xb36000)=nil, 0x7fffdffff000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000040)=',proc\x00', 0x4) getsockopt$inet_opts(r0, 0x0, 0x8606e34f180263a5, &(0x7f0000000080)=""/124, &(0x7f0000000100)=0x7c) 00:13:44 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xfe80000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:44 executing program 1: perf_event_open(&(0x7f0000001200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000838000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000489000/0x1000)=nil) mmap(&(0x7f0000000000/0xb36000)=nil, 0x7fffdffff000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000040)=',proc\x00', 0x4) getsockopt$inet_opts(r0, 0x0, 0x8606e34f180263a5, &(0x7f0000000080)=""/124, &(0x7f0000000100)=0x7c) 00:13:45 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x86010000) 00:13:45 executing program 3: setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000300)=0x1, 0x4) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f00000005c0)={0x0, 0x5a6, 0x30, 0xfffffffffffffffc}, &(0x7f0000000640)=0x18) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f00000003c0)={r1, @in6={{0xa, 0x4e20, 0x3e1, @empty, 0x3f}}}, &(0x7f00000004c0)=0x84) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000480)={r2, 0x200, 0x1}, 0xffffff65) keyctl$join(0x1, &(0x7f0000000580)) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000240)=@assoc_value={0x0, 0x5c}, 0x8) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='bbr\x00', 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000140)=0x75, 0x4) bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23}, 0x10) lseek(r0, 0x0, 0x3) getsockname$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000500)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4000}, 0xffffffffffffff91, &(0x7f00000007c0)={&(0x7f0000000600)=@getqdisc={0x0, 0x26, 0x400, 0x70bd2b, 0x25dfdbfb, {0x0, r3, {0xffff, 0xa}, {0xe, 0x6}, {0xb2ca33fbbeb09d35, 0xffff}}, [{}]}, 0xfebb}}, 0x4000000) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x1, 0x80c2) r5 = syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x3, 0x1) write$nbd(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB="67446698000000000000040003000000"], 0x10) ioctl$BLKTRACESTART(r4, 0x1274, 0x0) sendto$inet(r0, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) pipe2$9p(&(0x7f00000002c0), 0x84800) sendto$inet(r0, &(0x7f0000000000), 0xff6c, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10) 00:13:45 executing program 1: clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000080)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) bpf$MAP_CREATE(0x4, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x4}, 0x2c) 00:13:45 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x80}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000000c0)={r1, @in={{0x2, 0x4e22, @multicast2}}, 0x49a6, 0x3cf}, &(0x7f0000000280)=0x90) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:45 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x800000000000004) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$TIOCSLCKTRMIOS(r1, 0x5457, &(0x7f0000000180)) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000140)) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") setrlimit(0x7, &(0x7f00000000c0)={0x4, 0x100000001}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f00000001c0), 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000005373355a8aa6040742194a17116be4fca78f0a0efd71bea66cbfe15c1892736498bb54825e16a87cb8ad64c8b93a96754dc68774252cdf08f2119694f2ff10fda67cc3e196a85a31d5efce90e103bcf602bbba03", @ANYRES16=r3, @ANYBLOB="788f27bd7000fddbdf250700000008359600000001007776ae3c9196a140fb755ba2e8ce7da313c2d8d4175b115db9a3e2075308a5615f64f75b0ee307e8afd22d5d3cd8720ba5d250572a98cc4fd79c85cff84055a7e3c57b13106710b178f296abd1d6e3ba979524f857c075b9211e277c9262e6667eaa83d094d7ad8ebc6e1312313c5e733bb76e13346f42357b46c760adaeb76badae77084e9b975299"], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x1) r4 = socket$inet6(0xa, 0x1, 0x0) getsockopt$inet6_buf(r4, 0x29, 0x2f, &(0x7f0000000180), &(0x7f0000000000)=0xffffff95) ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000100)) 00:13:45 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000000)) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{0x80, 0xea, 0x3f, 0x7fff}, {0xffffffff, 0x1, 0x3f, 0x28}]}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet_dccp_int(r0, 0x21, 0x3, &(0x7f0000000140)=0xa51, 0x4) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f00000002c0)={@remote}, 0x14) 00:13:45 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x3000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:45 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8501) 00:13:45 executing program 1: bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x9, &(0x7f0000000280)="153f6234488dd25d766070") ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000006fa8)) clone(0x202102001ffd, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) unshare(0x0) sync() r1 = socket(0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) sendmsg$alg(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000000400)=[@op={0x18}], 0x18}, 0x0) sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000440)={&(0x7f0000000240), 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYRES16=0x0], 0x1}}, 0x0) 00:13:45 executing program 0: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x30501, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000180)=0xc) fstat(0xffffffffffffff9c, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000300)={{{@in6=@local, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in=@rand_addr}}, &(0x7f00000001c0)=0xe8) lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000600)={0x0, 0x0}, &(0x7f0000000640)=0xc) fstat(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000880)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@rand_addr}}, &(0x7f0000000980)=0xe8) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000009c0)={0x0, 0x0, 0x0}, &(0x7f0000000a00)=0xc) sched_yield() write$FUSE_DIRENTPLUS(r0, &(0x7f0000000a40)=ANY=[@ANYBLOB="e003000000000000040000000000000003000000000000000100000000000000f000000000000000ffffff7f000000003f0000000200000002000000000000000b080000000000000700000000000000010000000000000006000000000000005af50000000000000900000009000000070000000100008009000000", @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="2307000008000000000000000500000000000000040000000000000000000000f8ffffff0100000000000000020000000000000008000000000000000300000000000000ff030000010000000600000000000000080000000000000004000000000000004f0800000000000007000000000000000000000000000000030000000700000001800000bafcffff07000000", @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="0100000000ffffff000000000300000000000000ca02000000000000020000003e0000002d5e00000000000001000000000000000100000000000000080000000000000004000000000000000900000001000000040000000000000001000000000000003c000000000000000800000000000000060000000000000002000000000000000500000007000000080000000100000000010000", @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="4c00000000800000000000000000000000000000ff070000000000000c000000d1000000656d31776c616e31757365720000000002000000000000000100000000000000340000000000000009000000000000000100000003000000020000000000000001000000010000000400000000000000ff03000000000000ad000000000000000500000000000000f8ffffff0100008004000000fffffeff00000000", @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="020000000000000000000000020000000000000004000000000000000d000000020000002f6465762f7573626d6f6e2300000000030000000000000001000000000000000900000000000000ffffffffffffffff09000000090000000400000000000000fbffffffffffffffc5000000000000000700000000000000010100000000000000000000000000000900000000000000000000000700000000000000", @ANYRES32=r9, @ANYRES32=r10, @ANYBLOB="0400000056000000000000000100000000000000090000000000000007000000ff0f0000270474262d9629000600000000000000020000000000000002010000000000000006000000d30000000200000000000000ffffff7f0000000002000000000000000008000000000000010000000000000007000000000000000200000001000000090000000500000008000000", @ANYRES32=r11, @ANYRES32=r12, @ANYBLOB="06000000cb00000000000000010000000000000001000000010000000d000000f90000002f6465762f7573626d6f6e2300000000"], 0x3e0) r13 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xcbf8a15, 0x0) sendmsg(r0, &(0x7f0000001380)={&(0x7f0000000440)=@rc={0x1f, {0xfffffffffffffffc, 0x6, 0x2, 0x9, 0x243, 0x2}, 0xff}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000ec0)="034cdd0182b68fdbd3b3c63451d7366ec4f4bc9e5d668997bfd37fd2e7f33b9bfcd6695c82aed5604abe1076ebec30b71ecff6dc06be81287bd9f2d5f6007005ae9a3b51ba1d3617a44e1027d5e53dd759617b6f7fba2acac2d3b5e6c08118f850295dcafe390b36d11a5358ce33e319", 0x70}], 0x1, &(0x7f0000000f80)=[{0x88, 0x107, 0x0, "1063de291e474425876512b4447d97de665c843ef467168f0130c491bf09dcac74ea1fd2baeb02422ab2f78acf798942b9387ae37bfc2e916fe4691775fda99bb039e8f1cb9201fc3e9211dcd24cfc8c01205e24abc2beb363b183c787c2c6a4a85ebc88e87768054f34427a397d9a6002d6848a1752c5"}, {0x100, 0x11, 0x101, "c3e0ad970f0443c03a26811d3b8f38ed4ea17f4824ed23add08298e5111760e2367790f58ddc4f8177b5be1dac54f6391d4e7409b0f69036b728891bdd071a182115266e16b6b5c3f4a048c12053b4bfe5485adf146d1b90102f7e461f4907eccdba1f6d6324f159fb2ecd52bb290d3cc1c836bea6b82fd3b4a240022ccdf3bc824c8a767f1231f7f488dd4286697cb846a919c56000c56b6244db09f9ec4672eaeb2705039271343ba0a01c7c428d8ae5eb6ffc0b6be506d62a4864b42912b7f9c265006ae580fd5627fe0cfe95d187a54e2e38f30baa3b17f9128940d1995cbdbc64fc9bdb9aacf8f73e134a"}, {0x40, 0x0, 0x20, "62801ffe897cf6840238df9e2b439e437fe8043cdb26b7a0455ec4378e562fcaf8c75930a76549662e706e98c721"}, {0xc0, 0x10d, 0x1, "2f29b703e273a5b50877c6b52289ed00d451fdade18d88a89cf876d5b77401beedee18d17a4777203b34ea94e97a0ee14f30e99438e19624ab6be3e2447b70203d5a91aedc0cc08a7bf0bb014c25a21c48d8be9e9f1b29670434ff60507918ba2473a01c805385d0b31f6f61cf177c6aedbef44454161b1efc820693ec30cfd1834a434da275824d9bfefe7356023dc3a5823614cdc709a5f13da7459cbc825cf6d154a2d9366416e880767f10"}, {0x88, 0x9d52ecb0499b07e9, 0x9, "bcf05c76aa67a72d1d9ab2247b8c9c0b5f3eb7011bbfbed4554ca0c0914ce2d7feb832f9a94042b470687e340d309b27085af5e6aed88c5fa09110f0c634cde840a6cb1456bda885a88ada322d4c2ad3df31989e7c108d166ab7112f6be7c2daf783b0434f838cc3845e694f739fe81102"}, {0xe0, 0x0, 0x4, "9cafe17e8b375a61b607d078b2fb30f0af32b9250443f52d04c9f45cdc5356b5eb873cb85b420231afd9aea01bdc3a964cc74e96ab5f1e2dbd1b3e589431db399a0e32370849c45368308122cc3c503518d458c232ab2e2c004db23537bb9f3e69b1b0c766dc48c9cb502f7f1079856eb8f5bb85f6dd5a937eaa716ab03fde425bca22eb685b0a705eb8057a01c73e59c989f77223e5d301cb657096ad1a1709c1b7280efdd047ffdfd47e5d4c49b940bb9ccbfd32e9ad290196aed253faae33cd7e9ff3b0987e305902e443aa"}], 0x3f0, 0x44800}, 0x840) ioctl$sock_bt_hidp_HIDPCONNDEL(r13, 0x400448c9, &(0x7f0000000080)={{0x200, 0xbb6, 0x3, 0xff, 0xd, 0x4}, 0x6}) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='projid_map\x00') 00:13:45 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x8000a0, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:45 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xce) 00:13:45 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) readv(r0, &(0x7f00000005c0)=[{&(0x7f00000000c0)=""/191, 0xbf}, {&(0x7f0000000180)=""/98, 0xfffffe65}, {&(0x7f0000000600)=""/68, 0xffffffffffffff21}, {&(0x7f0000000680)=""/97, 0x61}], 0x4) sendmsg$nl_generic(r0, &(0x7f0000002e00)={&(0x7f0000000000), 0xc, &(0x7f0000002dc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="20000000220001000000000000000000040000000c000c0044438515c3"], 0x20}}, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/exec\x00', 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='io.stat\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x6, &(0x7f0000000340)=@raw=[@ldst={0x0, 0x0, 0x3, 0xf, 0x7, 0xffffffffffffffc0, 0x4}, @map={0x18, 0xa, 0x1, 0x0, r1}, @exit], &(0x7f0000000380)='GPL\x00', 0x2, 0xa6, &(0x7f00000003c0)=""/166, 0x41f00, 0x1, [], 0x0, 0xb}, 0x48) semget(0x3, 0x5, 0x400) [ 411.065552] netlink: 'syz-executor1': attribute type 12 has an invalid length. [ 411.082693] netlink: 'syz-executor1': attribute type 12 has an invalid length. 00:13:45 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x40800, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f00000002c0)={0x0, 0x1, 0xbc58, 0x829, 0x6}, 0xc) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000080)="b7f2288a", 0x4) ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0x1) r3 = accept$alg(r2, 0x0, 0x0) write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0xfd06) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) recvmmsg(r3, &(0x7f0000001540)=[{{&(0x7f0000000000), 0x80, &(0x7f00000005c0)=[{&(0x7f0000000180)=""/148, 0x7}], 0x1, &(0x7f0000000640)=""/214, 0xd6}}, {{&(0x7f0000000900)=@hci, 0x80, &(0x7f0000000f40)=[{&(0x7f0000002980)=""/4096, 0x7ffff000}], 0x1, &(0x7f0000000fc0)=""/93, 0x5d}}], 0x2, 0x0, &(0x7f0000001680)={0x0, r4+30000000}) 00:13:45 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x80010020, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x187) 00:13:46 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) removexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000340)=ANY=[]) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x2, 0x52) ioctl$UI_SET_RELBIT(r1, 0x40045566, 0x9) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xa4, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000015c0)="766574683100000000ffffffffffef00", 0xb) getpgrp(0x0) stat(&(0x7f0000000680)='./file0\x00', &(0x7f0000000740)) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0xe5bd89cc344f3f8c, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000300)={{{@in=@local, @in=@broadcast}}, {{@in6=@mcast2}, 0x0, @in=@dev}}, &(0x7f0000000240)=0xe8) sendmsg$nl_route_sched(r2, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=@newqdisc={0x24, 0x24, 0x0, 0x70bd29, 0x0, {0x0, 0x0, {}, {0xe, 0xfff3}}}, 0x24}}, 0x4000) writev(r0, &(0x7f0000001400)=[{&(0x7f00000013c0)='8', 0x1}], 0x1) sendmsg(r0, &(0x7f0000000700)={&(0x7f0000000100)=@vsock={0x28, 0x0, 0x0, @reserved}, 0x80, &(0x7f0000000640), 0x0, &(0x7f0000002600)}, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='tunl0\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0)={0x2, 0x0, @empty, [0x0, 0x10000000]}, 0x6) 00:13:46 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x7d19, 0x80000) 00:13:46 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x20000000021) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write(0xffffffffffffffff, &(0x7f0000000000)="9caf89ff22e309e549", 0x9) sendto$inet6(r0, &(0x7f0000000000), 0xb7, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback={0x0, 0x8}}, 0x1c) write$binfmt_elf64(r1, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0xb514, 0x5, 0x0, 0x5, 0x3, 0x3f, 0x1, 0x2d, 0x40, 0x346, 0x80000001, 0x4, 0x38, 0x1, 0x800, 0xffffffff, 0x800}, [{0x60000003, 0x0, 0x10001, 0x9, 0x7, 0x5, 0x1, 0xffffffffffffffff}], "45bd7152e2cd04cb1776d19b5852430d5810e4edfb115af4cf238a25d4b37e5edc1ea8bc1b7a7ad22dd082e5ee85339d1ea012902067da94b8953f6831645b56642daa5b98cf457335d7bb21f2ccf0558863d5a22327556e9d52302e49cc02d6a7b5030a9819f4af6a86f33c5ac4c98632a75e439af85cb163bcfb54749ff5896a636a14471684d88c6aa73a9c529cffd968cb68eda96f714bf00f80ea7944f24b3716de468685d17fa62c3ccdcb45d158070b20eefcfc3611a457bc6aa405d38c9524ae619fed715f803ac274c38d3e24b5bcbc65e76a0c3656ef60254f9687b7cd3de94014e858baeb292f", [[], [], [], [], [], [], []]}, 0x864) 00:13:46 executing program 3: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x7, 0x0) setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000340), 0x2) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x101000, 0x0) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000080)=0x132cf558) ioctl$BLKRESETZONE(r1, 0x40101283, &(0x7f0000000040)={0x2, 0x3}) 00:13:46 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x5000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:46 executing program 3: syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x4b88, 0x0) r0 = socket$inet6(0xa, 0x0, 0x2f) perf_event_open(&(0x7f000001d000)={0x800000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x1, 0x2) ioctl$int_in(r1, 0x800000c004500a, &(0x7f0000000040)) write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f00000000c0)={0xffffffffffffffd3, 0x5, 0x100000000000d00, {0x600}}, 0xfffffefd) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_RESIZE_FS(r0, 0x40086610, &(0x7f0000000000)) 00:13:46 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x7fff) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r1, 0x0, 0x0) ioctl$int_in(r2, 0x5452, &(0x7f0000000240)=0x5) sendmmsg$alg(r2, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x167, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmmsg(r2, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x80, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400}) 00:13:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x900000000000000) 00:13:46 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x4, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:46 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000340)="0a5cc80700315f85715070") r1 = socket$xdp(0x2c, 0x3, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x800, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4100000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00010000", @ANYRES16=r3, @ANYBLOB="00002dbd7000fddbdf250b0000000c0002000800090008002c000200080005000400000008000b000a00000008000b000a000000080004000100000008000900000000000800060006000000740003000800010000000000140006000000000000000000000000000000000014000600ff0100000000000000000000000000011400020076657468315f746f5f7465616d0000001400060000000000000c00000000ffff0000000008000300010000000800040001000000080003000400000008000600040000002000030008000800080000001400020076657468315f746f5f626f6e640000000c0001000d000b007369700004000300"], 0x100}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000180)={&(0x7f0000000000)=""/2, 0x2000, 0x800}, 0x18) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f00000000c0)=0x400, 0x4) mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil) mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x11, r1, 0x180000000) ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000380)) 00:13:46 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x84001, 0x0) ioctl$VHOST_SET_VRING_NUM(r1, 0x4008af10, &(0x7f0000000080)) ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f00000000c0)=""/93) setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000400)=0x6b65a878, 0xfffffffffffffff7) sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x6, @local}, 0x1c) 00:13:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x91040000) 00:13:47 executing program 1: r0 = socket$kcm(0x11, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f00000004c0)={&(0x7f0000000040)=@l2={0x1f, 0x8, {0x9}}, 0x80}, 0x0) syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x80000001, 0x90000) 00:13:47 executing program 5: socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000000c0)={0x594, {{0xa, 0x4e20, 0x1, @remote, 0x7}}}, 0x88) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) accept4$alg(r1, 0x0, 0x0, 0x800) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = accept(0xffffffffffffff9c, 0x0, &(0x7f0000000080)) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100), &(0x7f0000000200)=0x14) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000008f00)={'tunl0\x00'}) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000280)={0x74, 0x0, [0x3]}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f00000000c0)="0f0f1ba00873850f01d1ba4000b8a989ef660f2ac3ba4000b85700eff3cfbad00466b8b200000066ef3e0f38003abaf80c66b8a206ef8766efbafc0cec", 0x3d}], 0x1, 0x0, &(0x7f0000000200), 0x2b5) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000140)="65d9f3ba2000b0e1eed9ff66b8c4b800000f23c00f21f86635000005000f23f80f01d1baf80c66b8a322e48266efbafc0cb09dee6726670f32670fb2aec1cb0000ff22c02200", 0x46}], 0x1, 0x0, &(0x7f00000000c0), 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) ioctl$GIO_FONTX(r4, 0x4b6b, &(0x7f0000000400)=""/160) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000340)={{}, 'port1\x00'}) 00:13:47 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xfffffff5, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:47 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x34d564b) 00:13:47 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f62354801005d766070") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x18, &(0x7f0000000040)="70707031626465766d643573756d2c6b657972696e670100", 0xffffffffffffffff}, 0x30) syz_open_procfs(r1, &(0x7f00000000c0)='environ\x00') r2 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r2, 0x2283, 0x70e000) ioctl$BLKDISCARD(r2, 0x1277, &(0x7f0000000000)) 00:13:47 executing program 1: r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000100)={0x18}, 0x18) execve(&(0x7f0000000000)='./file1\x00', &(0x7f0000002700)=[&(0x7f0000000040)='ext2\x00', &(0x7f00000026c0)='(nodev\x00'], &(0x7f0000002780)=[&(0x7f0000002740)='!{eth0proc/#\\JsystemO\x00']) r2 = accept4$inet(r0, &(0x7f0000000180)={0x2, 0x0, @multicast2}, &(0x7f0000000200)=0x10, 0x80800) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000240)=0x0) r4 = getuid() lstat(&(0x7f0000000340)='./file2\x00', &(0x7f0000002600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000002680)={r3, r4, r5}, 0xc) userfaultfd(0x80000) prctl$intptr(0x29, 0x2) clone(0x0, &(0x7f0000000240), &(0x7f00000001c0), &(0x7f0000001000), &(0x7f0000000200)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) syncfs(r1) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, &(0x7f00000000c0), 0x1, 0x2000000000002) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) mount(&(0x7f0000000780)=ANY=[@ANYBLOB="fa66d777f1cd19ec2d5df3bf2f76300000518108fdd52c46939d54a16518e8046480bfbb2e9a64dd002859b708c6e7775fd3a9fc79cf4dc4f533a56b70bfdbbb7f157175f283b97c22f59c05eaca06ad50d74d8c218cb77c367e0cae5a2c1c9b017a98804ed66b6f738459f650"], &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x0, &(0x7f0000000300)='\x00') recvmmsg(r0, &(0x7f0000002300)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000340)}, {&(0x7f0000000380)=""/146, 0x92}, {&(0x7f0000000480)=""/158, 0x9e}, {&(0x7f0000000540)=""/65, 0x41}, {&(0x7f00000005c0)=""/60, 0x3c}, {&(0x7f0000000600)=""/69, 0x45}], 0x6, &(0x7f0000000700)=""/75, 0x4b}, 0x401}, {{&(0x7f0000002980)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000002a00)=""/41, 0x29}, {&(0x7f0000000840)=""/230, 0xe6}, {&(0x7f0000000940)=""/248, 0xfffffffffffffe9e}, {&(0x7f0000000a40)=""/38, 0x26}, {&(0x7f0000002a80)=""/195, 0xc3}, {&(0x7f0000002880)=""/189, 0xbd}], 0x6, &(0x7f0000000cc0)=""/123, 0xfffffffffffffdad, 0x401}, 0x5}, {{&(0x7f0000000d40)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000002940)=""/54, 0x36}, {&(0x7f0000001040)=""/4096, 0x1000}, {&(0x7f00000027c0)=""/191, 0xbf}], 0x3, &(0x7f0000000f00)=""/198, 0xc6, 0xd7f6}}, {{&(0x7f0000002040)=@ipx, 0x80, &(0x7f00000022c0)=[{&(0x7f00000020c0)=""/192, 0xc0}, {&(0x7f0000002a40)=""/2, 0xffffffffffffff50}, {&(0x7f00000021c0)=""/248, 0xf8}], 0x3, 0x0, 0x0, 0x7}, 0x4}], 0x4, 0x10000, &(0x7f0000002400)={0x77359400}) stat(&(0x7f0000002440)='./file1\x00', &(0x7f0000002480)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002500)={{{@in6=@dev={0xfe, 0x80, [], 0xf}, @in6=@loopback, 0x4e23, 0x2, 0x4e20, 0x0, 0xa, 0xa0, 0xa0, 0x1, r6, r7}, {0x1, 0x0, 0x6, 0x2, 0x5, 0x1ff, 0x9, 0xfffffffffffffff8}, {0x1b70ae3e, 0x1, 0x2, 0x7}, 0x3, 0x0, 0x2, 0x0, 0x1}, {{@in=@broadcast, 0x4d2, 0x2b}, 0xa, @in6=@remote, 0x0, 0x4, 0x1, 0x5, 0x92b7, 0x5, 0x100}}, 0xe8) syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_names\x00') r8 = socket(0x40000000015, 0x805, 0x0) getsockopt(r8, 0x114, 0x2711, &(0x7f0000af0fe7)=""/13, &(0x7f000033bffc)=0xd) 00:13:47 executing program 3: syz_emit_ethernet(0xe, &(0x7f00000000c0)={@random="2453660618b9", @broadcast, [], {@generic={0x88a8}}}, &(0x7f0000002280)) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200, 0x0) write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0x0, 0x3, {0x1}}, 0x18) [ 412.626646] kvm: pic: level sensitive irq not supported [ 412.627597] kvm: pic: single mode not supported [ 412.633651] kvm: pic: single mode not supported [ 412.638438] kvm: pic: level sensitive irq not supported [ 412.652297] kvm: pic: level sensitive irq not supported [ 412.652693] kvm: pic: single mode not supported [ 412.658095] kvm: pic: level sensitive irq not supported 00:13:47 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x900000000000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:47 executing program 3: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) syz_mount_image$ntfs(&(0x7f0000000200)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f0000000140)=ANY=[]) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000240)={{{@in=@multicast2, @in6=@mcast1}}, {{@in6=@mcast1}, 0x0, @in=@remote}}, &(0x7f0000000340)=0xe8) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@index_off='index=off'}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]}) r0 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$binfmt_aout(r1, &(0x7f0000000a40)=ANY=[@ANYBLOB='\x00\x00'], 0x2) sendfile(r1, r1, &(0x7f0000000140), 0xd1) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) [ 412.677200] kvm: pic: level sensitive irq not supported [ 412.679139] kvm: pic: level sensitive irq not supported [ 412.705060] kvm: pic: level sensitive irq not supported 00:13:47 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc0000000) 00:13:47 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x8dffffff00000000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 412.778418] ntfs: (device loop3): ntfs_fill_super(): Unable to determine device size. [ 412.813363] overlayfs: missing 'lowerdir' 00:13:47 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xa0008000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) [ 413.029707] kvm: pic: level sensitive irq not supported [ 413.029965] kvm: pic: single mode not supported [ 413.055837] kvm: pic: single mode not supported [ 413.055849] kvm: pic: level sensitive irq not supported [ 413.328090] overlayfs: missing 'lowerdir' [ 413.328730] ntfs: (device loop3): parse_options(): Unrecognized mount option Ñ. 00:13:48 executing program 1: r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000100)={0x18}, 0x18) execve(&(0x7f0000000000)='./file1\x00', &(0x7f0000002700)=[&(0x7f0000000040)='ext2\x00', &(0x7f00000026c0)='(nodev\x00'], &(0x7f0000002780)=[&(0x7f0000002740)='!{eth0proc/#\\JsystemO\x00']) r2 = accept4$inet(r0, &(0x7f0000000180)={0x2, 0x0, @multicast2}, &(0x7f0000000200)=0x10, 0x80800) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000240)=0x0) r4 = getuid() lstat(&(0x7f0000000340)='./file2\x00', &(0x7f0000002600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000002680)={r3, r4, r5}, 0xc) userfaultfd(0x80000) prctl$intptr(0x29, 0x2) clone(0x0, &(0x7f0000000240), &(0x7f00000001c0), &(0x7f0000001000), &(0x7f0000000200)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) syncfs(r1) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, &(0x7f00000000c0), 0x1, 0x2000000000002) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) mount(&(0x7f0000000780)=ANY=[@ANYBLOB="fa66d777f1cd19ec2d5df3bf2f76300000518108fdd52c46939d54a16518e8046480bfbb2e9a64dd002859b708c6e7775fd3a9fc79cf4dc4f533a56b70bfdbbb7f157175f283b97c22f59c05eaca06ad50d74d8c218cb77c367e0cae5a2c1c9b017a98804ed66b6f738459f650"], &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x0, &(0x7f0000000300)='\x00') recvmmsg(r0, &(0x7f0000002300)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000340)}, {&(0x7f0000000380)=""/146, 0x92}, {&(0x7f0000000480)=""/158, 0x9e}, {&(0x7f0000000540)=""/65, 0x41}, {&(0x7f00000005c0)=""/60, 0x3c}, {&(0x7f0000000600)=""/69, 0x45}], 0x6, &(0x7f0000000700)=""/75, 0x4b}, 0x401}, {{&(0x7f0000002980)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000002a00)=""/41, 0x29}, {&(0x7f0000000840)=""/230, 0xe6}, {&(0x7f0000000940)=""/248, 0xfffffffffffffe9e}, {&(0x7f0000000a40)=""/38, 0x26}, {&(0x7f0000002a80)=""/195, 0xc3}, {&(0x7f0000002880)=""/189, 0xbd}], 0x6, &(0x7f0000000cc0)=""/123, 0xfffffffffffffdad, 0x401}, 0x5}, {{&(0x7f0000000d40)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000002940)=""/54, 0x36}, {&(0x7f0000001040)=""/4096, 0x1000}, {&(0x7f00000027c0)=""/191, 0xbf}], 0x3, &(0x7f0000000f00)=""/198, 0xc6, 0xd7f6}}, {{&(0x7f0000002040)=@ipx, 0x80, &(0x7f00000022c0)=[{&(0x7f00000020c0)=""/192, 0xc0}, {&(0x7f0000002a40)=""/2, 0xffffffffffffff50}, {&(0x7f00000021c0)=""/248, 0xf8}], 0x3, 0x0, 0x0, 0x7}, 0x4}], 0x4, 0x10000, &(0x7f0000002400)={0x77359400}) stat(&(0x7f0000002440)='./file1\x00', &(0x7f0000002480)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002500)={{{@in6=@dev={0xfe, 0x80, [], 0xf}, @in6=@loopback, 0x4e23, 0x2, 0x4e20, 0x0, 0xa, 0xa0, 0xa0, 0x1, r6, r7}, {0x1, 0x0, 0x6, 0x2, 0x5, 0x1ff, 0x9, 0xfffffffffffffff8}, {0x1b70ae3e, 0x1, 0x2, 0x7}, 0x3, 0x0, 0x2, 0x0, 0x1}, {{@in=@broadcast, 0x4d2, 0x2b}, 0xa, @in6=@remote, 0x0, 0x4, 0x1, 0x5, 0x92b7, 0x5, 0x100}}, 0xe8) syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_names\x00') r8 = socket(0x40000000015, 0x805, 0x0) getsockopt(r8, 0x114, 0x2711, &(0x7f0000af0fe7)=""/13, &(0x7f000033bffc)=0xd) 00:13:48 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x40001c0) 00:13:48 executing program 0: r0 = socket$inet6(0xa, 0x2000000802, 0x0) connect$inet6(r0, &(0x7f000000cfe4), 0x1c) sendmmsg(r0, &(0x7f0000006180)=[{{0x0, 0x0, &(0x7f0000001080), 0x0, &(0x7f0000000040)=[{0x48, 0x0, 0x8, "56e454b92b6fefefbce5c8b0d4d05badf16a434310395c13ca787e7654a72db30d74503f87e96ddef6f4fb54c357ab75236a2d"}, {0xe0, 0x1bb, 0x984, "7740ae52abf28f36ebabf1307c5760639b7ac8d3c5da5dd4f80aa2ba2b2f120baabde532969ca179bedc6b854858504d8dd731f3ee7894497fc951264a0ea9ffaa040a42be36136d800d7dda180c868e6ffbf458ff3f0ba9c411ff109c0301ff63935bb3e412f11d9256684dd609e883ba796ad5d8d4194d52ef00fd645d24d4e52fa84b3897ed452e330e0b73bfbdabf51bbba9f8fb8a0d59c775204d0ac3721f7580f9078670c7d066d62a30a52f767fd17195eb9a9d1d6e1984f9e7302fa1d988979805f5c41c1e"}, {0xd0, 0x10f, 0x20, "efab5f4f97e1ef6e13f28511e42bd389d185a76b9f22262f26f4caccb338077d93cdde9ddb262ee470187b191392cfa8bb3b2ff51bf7ff9cdeb5488cc54df538141a786a245b6b0b48d4dbf16ee4775aa6395de01647b10a42ca42a4f6537675826b65505ac05a1affffec8096f35e8941ffdb2e97637a5e915dc0640158841cd13ffb13779cfaed5ca20b78a047060a07576686bbf2f440a1957ebaaca634a9016d6df44df3b2d7c02e6617bcc8aac9cf87b327ad6415a2ba3700"}, {0xd8, 0x189, 0x4, "b0974a8d78868892d70d7a12d10332d381291fbd2b1dc0adf0f00333752f9c625e0f975aa506979afe3bf17e4893055269277b2935fb2ef373bc4d00892a265e32ae41d15e9d9f54aa79340ffb49d3aa51e3a5907d6297f28320c5bec521fd3462f355fefab8d3a7aad7d350dc140223fdd2fbb6857f0000ffef91134ad5226e8bce722d557521c693c20ce3ad676ba5675b9f5370e4391f885946d23156cf9b7820c136a04b17cd20f78ed07e31e3e60405ea8dcfcfcdee64e67e13f80ea428b13d5050"}, {0x88, 0x102, 0x4, "1217c3c1227c684c9851a8c53286789165b0d97237321f346b839f2e49c6bd41dbcae3cbaea6fb603c92fcef19965c26586820e5796e14d0fd0ee331016b1c3a2a15a01dafd756373c9887a274117c1234978d86653c11dabd7429fbc6faebb62fa8073836e3b1a7f8f69798629816522ec2ae9ea2be"}, {0x20, 0x111, 0x3, "ab7f46e2072ba9cbdfb8"}], 0x378}}, {{&(0x7f0000002b40)=@un=@abs, 0x80, &(0x7f0000002b80), 0x0, &(0x7f0000000000)=[{0x10, 0x1}], 0x10}}], 0x2, 0x0) 00:13:48 executing program 3: r0 = socket$inet6(0xa, 0x40000080000, 0xb) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = getpgrp(0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x3, &(0x7f0000000040)=""/25) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f00000000c0)='cpuset.memory_spread_slab\x00', 0x2, 0x0) write$cgroup_int(r3, &(0x7f0000000240), 0x12) 00:13:48 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) socketpair(0xb, 0x7, 0x5, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000280)="9238d7ee1e8af693350eef6844374f576befa7960c7a962c7cb71223bc52f5dc3855ddf4099ee60b9874a8db9c8db8ce9bd4a7a8b2a719754a80d6ed3a88626f9fcd6f519f41d2500045e44e9d723a51092988d0e6b9fbcdbf889c7d47da9f40481c8ee0a3a3ecb2f8f2c6b220428cba4fa7f6970c68c0904e9a0d0d6c469c52c44b12be20144f384701fd19f51b56ca12a67768e654d8023da98f1f273ff8c04a921728dfc353a00890c3a91e114346c9c2f0448f5ca0477c8529262d3e256a784293dcdba846", 0xc7}, {&(0x7f0000000040)="24eada531038ba63658ff667b42245789432c3e79e14ad1832f6e96718bdff960ae1", 0x22}], 0x2, &(0x7f00000023c0)=[@assoc={0x18, 0x117, 0x4, 0x1f}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18}, @assoc={0x18, 0x117, 0x4, 0x5}, @assoc={0x18, 0x117, 0x4, 0x7}, @iv={0x18}, @assoc={0x18}, @iv={0x1018, 0x117, 0x2, 0x1000, "603c8facbf3ffa3430b6b7a70d822d6b2597721f3e7913958745b97203cb889565566cce0d631cc7e26ebe15628df77d8cfb4382323fbdbf3d5fb9cd304d96343759f88c20ff25f0107094694b02b9c7e3f15368830d2e9a00ca568f9074deb4db76b57eae0407d36d85e829ef6fe87415ee161a5c8476cb435e8324dfc6294934cbc807542a391f8cb34b780908c3166a0a943a0e030493e775baf5a3669da4a81deff6b3513a451aced5942ae21619a189e55a86e70369d563feaebc1592ce68751cb747074d3fc259fd22f5bf2a441240d4236f69de75be9c4cb4d88275439ab3c01578d9a18d2ac146bcba4712193901a4c8ebec6de2eea753a418e011d871e53c658f8f9d332ae9d7e4f4eb489b061a6b76b89769176f4fa990f961b7cc53207d31d5f1a88b94c01ac788d62d271d71a23b099495b26b813a78eb0a1a6fa5c11b09fb21827a9805f2f2a41f6c212aca8e067c89435d3f68db8310e20e345d106d0a7ba7ca818fdd03ab6c847e7c9ae60f29278aa0948c3b21bdd197228f8d8a3996f149bffe2db3fe509430656b1b85cc0eeba2c8ab5addbd7501daee7d1137c91cd68b4ade3328bed784830a41915a16e2bc66717cd2d51e7c8bc1ef7eda31d77f6793534a05272849c17a35a61da0bd1eb461fd69958c6ba3995ea67e1c157d7eb28e901e6d7ee7dfcb006238963abc51d921f8b2d1718a09acffd76fb9807d2af1121aab07591f9537f5bcba1e359f5f8a7969f14462a33b4984e1af4f2860e30beb5b51b584fdc2c3ef4a1ee5111f143bb7228e59a2fec0585f50371670ee958bfa795413eccce2eb36c575aae60413554fc6b3b4b72b53067990cc5db9774e4676be7414f710e9053e4e34cbd030ac848e3c51c7484f0777f51ae3d307b51c8d435282034b51834bc815ae8bd10d6bd5ae09fd5ee7802e9d2a659dc51412ec0d1192d91cee470877bba2d26e65a04d2a05254ba989b74e4b6238e5b746d9c4e7c33adf02bafe0deb7335046cf14c3304de5f97a9894c070febc46a71e6a81149ed80891ce10575ac5d741089b04f8b81b622789428748a4669a50a5686306fa213671281a606b4ecc31878f89eda0411f57bef0f0508dcaacac3252f3bece666d8b92c4b428598fa73c8f4ef244ccf4dea6019ee0238d5453833e4d2a52697eedc454c4fa05fb9076a788939ba38d982f9dc68fb6791e4c3fc0e375ae74c93a2f383f09c8b9b1f3f4e1497e7c9302fe6af8d2ec3bd87094abc0ba1544901069d2d19d112e20fd7dda41d37557543beb122f5bd043dc33c8e6637ba70a7da098c5829a20250d9244e094c8f68531a8e76516ed241f87158eb86f0ffe3dc701bf4f486b428ad3524d3cadfd2ccc670004f8758c61a2378cfa40d03c28fa6883d7dc3dc8c4aa7d9e0377557dff03df494b41199da67d957074f9ada864852cd2617cc9556a05200f80e50aa36656c68ecd6149039e7a0239175db41f3aad01e4298653f8117374ec957e070e1c6ed59a14864424fb9b7e51ef7a1f2e40a6da2fe5ede09ce98d5e104d6a770c91e8ef7ffb9e68f16bed9aa0cb8dfda310ab6e529eb9ca5e3c11bfcc9da7fb62d6cfa46d60c0ce5c75340c7e5a321fe64c047ac3b1b410142b2c17f4af995dbf0b2745d3dbdbfbb737311a268372edb33a8430bcfb92a7609aad01fae7354dbe2a074ba3058520cdd592ea4e09edfd6aa48dfa1600534c682c951e1779739babbd01388f5a931464dfd78b4ad19edaeb2da82e3fd44a10a5b126ca7c397babc8e949c115eec87c13b73cbd6770a9d121cf3032a02a546eab5c9afe2cec3f16d49ece99ff72b3c173fe058a14b5a4636627d3f314fb010f392f4e6ad0f05abdfaee4f6042220f7fce90a633e5eb51b4ae2c76efea28fc9ed5e30bf2c917c6bb27b955af924b480569df70c60286e7bb2c7504ffe9a1320f911bdc48d96cfd157d3d0e4bbf61e678cb4e9caf8a7939da5e66858e1adafc5383009d8d9c2586b16ee880c17f9257b5bf045eb96c4822c7aad96d90b4c1a020c0a14d2caaad3afb714ede01d8dc8959272703cb5e2ab828b36c9ec075c24db43a869f44de32eb376bd73780f871092628a40515a2c34a2da0f04d1192622c30259300d509151362503281d4094203a5f0e99d5a93629ce742d366ea69eb61529c48b4def2481562c7b700e92a15314192bae3a07cd54b3f150255d0594ecb2f140ec167c751639190328ed4081d709d70eb66cb5521c086e6e556c3481e6fd844791e44376d30cfa3b20bc03b2b328a4543887c67c2c57f2face628010f04ad6f7f0f7056f7819b21734b83cd4afa35ae0b1e056037111c401a3ee27545b5ee8a3ec38934f87047e6bd3c1f92911f114f2e7eff7d0634b50205b2b0a75d72e4af3c526f06c6bf3f5983c8dd8c532aa18cbe4bedf8389ade1c2cbd20a082a6d79548e6d068f6262aff73110c3136809a397e930daf1042d1736041fb42ac912d5154bbf9c54c20f928d83620fd7e6dd37766ad27587bf2d69cd4733ecfabf97430adfb8841c8a05b115a1f19ffff1c2f282f22f2d8e045701745b126f97d51997e37d8fb29e070f6fc164ae52aec633ffeeb9a1c39662c4ecf3850ceb8423e264e97b5d304d0cd997020b66ca2008a738f812685b4e13e628ee3e4abfa8f99dde6d031b568a6e99a1dfe46d5aac4d088ab75091435fb6af7b2f576608ece4a3354ec75fef5caf51c0a9f8a711474b5848f3062a96496bd2e646dad26489f2fe5045b11481743c15c6e57a554fbff62ecc4100264e5ee81dbb45e73a28ebe52bbbd5907255ae55e080b1a687c92970b622631e86149a2d0849185012bd73d9a139ac70c2f3335d1b1ba0421c19daa624021a01e1841f803cbc28668faf29d9f3e84b49357c4836774257ae64c1b48f520ab447959b309e153c7a02a94dc3db356b5c7740135c417a1474ed6a99802a38a3d735d8bce640e21e73937ed57472c98c2ffb0a3215cc88c71411c6a00cbe82f1fdbf2494591c8106ce71b2058136326cc345028ddca53f6199fcd0eb12bd13c98ca80be8ab3d60eac73ce902465e3e4876cdcc065999cfb2a41d97e7e0f5bbb2ebba7cb10c651dbf15152c29f744d09fd9d74aa16955660e0603dd8517b1965389cd7791aecc2f109447fb653f09cd26bc390595c7789a35effe230fd78f3f0c6db6e676c7bf19e224a0cddb2588595a0e9bb2d69c9eac731dda4a3ccf64ed93219c6892567ead3b77cb4c91f109f118c841f14ef01276d4f9b63f54e2d3f2becd0a28b905f518390e2ab86deb2209a698214d24fe924e0d6d8bc6bcb6cc7ecc548d5132188a59b01994a2956392004eef97d12c7ef6d36fa2d6a355bb52a93ff7027091f24236550f47fdc060a3028dd0b644401e5fcd97a8bf10b1f64329b55ef373909134a6b4bdab6c67c12c55f7471c5aaaf0baac224f768f98c8795e2d02179063691d85c337b0081c0ac25aa52d49eac9bee5fd1fcb7ce04c319f7cc8b1413298b4507e544c51c2867fb5900357a42302ff486d0ef502a1a7b3479484764e7c654b76f4c98c550710f47ac48dd4cca54325197fc3dacbb115277dd04c613931fb416f85f34def3ed32eceb53344361dddcf6c4592b6cc1a0b881fd53219ee9050360ecebcbc33df2b3a0d8fc74e3f60d70ee676cae095f4e2dea2446cc51f36e75206db665d7f48399658062b3d1780858f33a5faf236ad7c3c87951b4fd01bf0acbab2fcd63186cd2fae3bf4892c7eb9c869858e047408b250b2adb6d4655274df349b4799510dd48c2bae852c9f07cfd20b491aa22745ec92fad02c2c1fd940ebd2d920b6ce4b040a92068e290c4aa52ff2e59ad5fd5114da8db3576451dd44e53feccb917d816182640b400eb3ce0f3df4b217511c3dd543927f1dac628dcf3f5f33354bde05e806f2900a514355d5fe1b2898e7243ce805b02cb048507eb1a842d894d906f4a95af71daa24abda9b51a77d8cf62b755685c5213e00bcc7cca9fe7ddadab2325a155546916c1e8458c8d144bdbae043b7ba791afd7d35b6279628c89a6aae71196a37fc530777f5d286fe7af840a8bb189d84eb28c7a5aad6033c6f1dc53fc79e852da05d5c411f0c03228facb3168668a0216d09ffb1e684afe0a393b9bce2f4d4595845d7218a50062d4209d35f0ec4a10af803127ed11f592cbb62ae45bda87f9249bfc4fe4b5836be417bf759230756b4d1fd909a9e3de86647f5e1d2bdb2b8dd1a840ea891fca4b2d6948aa22e78a5ac196a3481435f43e3a96fc2bd84ff02988ac63a060d7d89ec8182abda76ce61641f9322e2a6bff384df6049ef4047aa60555af9331a3c97a562a310b9532649d7bfceeb57438febcffcc9deb9b1f40c15c979e324bec714170d72dc7b5ae5a1a9dabddfe884d0cebc9bd013c2f137327f07eeca2378db4016eba2661cc398973b835e8c397337410cf1c7e87f7beae653b7305ee583794349cf26e9e04b50be5b60b94ced91561ad1de4cdf9241c07630e9bb495f89f46a25aa8429ad9fc09619c61e650d09dd57e294a0881b99a41ca735361a92046052ff26ae985bc1f93014ad9990e0eff812e9bb18ad7d2652b592a95b2a0f5366a76df54c69ea840d646593eee9601d713140fa70e69876baa4543146093b51166a8cfd4c9707aa16f9d3c5b6e61347f84f630d3750f6de816068f2489f6d88d6b1d81eb45d9b041bd45eb7baabd778007c8470f421921bd68a5417ce82ba6681849ee74ee61b8ef4878c3375dc70f3fe26474c5851e26360d732b42c0135be83ebf75582f550aaf7e85f30503f48d5201e19abc4a85ac61e8fb4e5a70967d5c4dfbf98e8f25dd601b00791b7ed25b12c77c123a9d81b3a61a504ecccd8d04559275e8f992d2349fc3a902d66f1ff861f1c33c015329ac70af7936dce955ae08fdbd1dad5484433372808cffddcc569079dc21cebed60fa4726d0710adaafecf21ba2956e2e33e5c774239ba80d109402474a01ae094bdf5967bdab6b0f74b0239e7449cdd0f45c17c59c5744c5db5bab4226efac9154b029a843928ab5326b7eb691de049174fd3535326583e33daa703df9ce00871b4dbcf8eee2c6633dd41cb25219fb964f0ac082a4bf4c4fc61aaa642e0daa0b6a1a908d11536d7be9ee7deaa8caf733c8b0c5c4f7c5d70ea8f4b107cb579e72359755573db92a8359856cc581bdbc7efb810ff54f83d1fe4df6c194db8876a1a451e217798174dcacecc543853400253201dc0b80c2ccb45ca01316c22fa25c1e5b7b7c417ff78a69dbc73608d52632f6335e467bf1f9070891229ccd99c355c42f1a8ae0392ee25f3ead506ce806cc38b1b8a28689bdf76b0507c4faef75006ff35cf75ddee4079605fe28f1ce2b5ca80c76732ddb1079195107053314d2e9699879bffad372d7c93baeab68d48808534de03d56dc236aa42b7e6872a98b82b7c7b3c8df8d8f9236a451de334537eb0c29b2218cdccb2680ae055cadc3ff930d0aae14b3eac887a1dc8536627aa4b2b681146453c83981c3e13ee1f7e01bee1249102db7406545977fa58a2680b53a76516cb30ef86401fc5902f13675de4e9ad20b640c1d058c65ce7b5f7b296f923099d96f4aee5de5d0aa130d90dd85e28892d90fbfacc30273df8c0b6b4524f3071543daac92bf405f89f9e1e1cc7e81f814c3132b23fb60ddcc70e134b68c202bc5df211c972653938cb66f7416c022069956bd8f52628e3cc52d6554941c994a6c2ded25c4cfe38eb62132e80701c6"}, @op={0x18, 0x117, 0x3, 0x1}], 0x10d8}, 0x1) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:48 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xb300, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:48 executing program 0: socket$inet(0x2, 0x0, 0x0) ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607) getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000400)=ANY=[@ANYBLOB="a491a2e710ed4483d39b6b49fe34e845fa311072f211a4c49dd57f97ec6d837e436e0aa430c5e5f45885f69042ed746ea7c9aa9afe956af7ac1554fe801ffe1f9f77892993f8aa83def9ca169d90257190c5b8bbb7e21d5f"], &(0x7f0000000480)=0x1) add_key$user(&(0x7f0000000700)='user\x00', &(0x7f0000000200), &(0x7f0000000240), 0x0, 0xfffffffffffffffe) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x8100, 0x0, 0x9000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xe3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x243}, [@IFLA_MASTER={0x8, 0xa, 0x6}, @IFLA_LINKINFO={0x18, 0x12, @vti={{0x8, 0x1, 'vti\x00'}, {0xc, 0x2, [@IFLA_VTI_LOCAL={0x8, 0x4, @multicast2}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') r3 = getpid() sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80002}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0xac, r2, 0x705, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x91}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x478e}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xa3db}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}]}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0xa}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller0\x00'}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x4}, 0x40000) sched_setaffinity(r3, 0x8, &(0x7f0000000300)=0x5) sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xa00800}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="00072abd7000fbdbdf250c00000008000600070000002000020014000100fe8000000000000000000000000000aa080002004e24000028000300080003000200000014000200697036746e6c30000000000000000000080005007f00000108000500ff0000000c00030008000800040000000800050001000000200001000c0006006e6f6e650000000008000b007369700008000200870000004000030008000800070000000a0002007665746830000000000000000000000008000400eef7"], 0x1}}, 0x44000) setsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001000), 0xc5) pwritev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x0) 00:13:48 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x7, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:48 executing program 3: r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000100)=""/213) syz_emit_ethernet(0x66, &(0x7f0000000080)=ANY=[@ANYBLOB="0180c20000000180c200000086dd604d5fff0030000000000000000000000000000000000000ff010000000000000000000000000001010090780000000060900a9500000000ff010000000000000000000000000001000000000000000000000076abdcd900"], &(0x7f0000ea3000)) 00:13:48 executing program 1: readv(0xffffffffffffffff, &(0x7f00000008c0)=[{&(0x7f0000000880)=""/36, 0x24}], 0x1) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ip6_mr_vif\x00') perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, &(0x7f00000000c0)=0x2000000, 0x10000000000443) ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f00000001c0)={&(0x7f0000ffa000/0x3000)=nil, 0x3000}) r1 = socket$inet6(0xa, 0x400000000001, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000100)=0xff) setsockopt$inet6_int(r1, 0x29, 0x35, &(0x7f0000000240)=0x3, 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000280)=0x1, 0x4) r2 = socket(0xa, 0x2, 0x0) ioctl(r2, 0x9, &(0x7f0000000200)="2894ba9157f2fd7464231bc335c80ab46311209daf180bd969256196f49435468f5d906c") ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000080)={{0x2, 0x0, @loopback}, {0x0, @remote}, 0x2, {0x2, 0x0, @broadcast}, 'bond_slave_1\x00'}) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f00000003c0)={@mcast1, 0x0}, &(0x7f0000000400)=0x14) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000440)={@local, 0x1d, r3}) setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f000074fffc), 0xb73d37fda2d17bc9) r4 = dup(r1) setsockopt$inet6_tcp_int(r4, 0x6, 0x20000000000002, &(0x7f00007b1000)=0x81, 0x4) bind$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r2, &(0x7f0000000000), 0x4b5) ioctl$TIOCGSID(r4, 0x5429, &(0x7f00000002c0)=0x0) fcntl$setown(r1, 0x8, r5) setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000140)={0x6, @loopback, 0x0, 0x0, 'sh\x00', 0x1, 0x1, 0x7c}, 0x2c) ioctl$KDSETLED(r4, 0x4b32, 0x1ff) r6 = open(&(0x7f0000000300)='./bus\x00', 0x101442, 0x10) fcntl$addseals(r2, 0x409, 0x0) sendto$inet6(r1, &(0x7f0000000280), 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20}, 0x1c) r7 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r7, 0x7fff) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000340)={0x80000001, 0xb7}) sendfile(r4, r7, &(0x7f0000d83ff8), 0x8000fffffffe) 00:13:48 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xa010000) 00:13:48 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x7ffff000, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:48 executing program 3: pipe2$9p(&(0x7f0000004980), 0x0) mmap(&(0x7f0000000000/0x19000)=nil, 0x19000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000003fc0)={0xaa, 0x100000000}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000007fe0)={{&(0x7f0000000000/0x4000)=nil, 0x4000}, 0x1}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = shmget(0x3, 0x2000, 0x54000098, &(0x7f0000ffe000/0x2000)=nil) shmat(r2, &(0x7f0000012000/0x3000)=nil, 0x20004000) r3 = epoll_create1(0x0) epoll_wait(r3, &(0x7f0000000000)=[{}], 0x155555555555579c, 0x6a91) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000cd8ff4)) r4 = epoll_create1(0x0) r5 = syz_open_dev$mouse(&(0x7f0000003f80)='/dev/input/mouse#\x00', 0x6, 0x208000) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000004000)={0x7fff, 0x35c, 0x3}) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000007000)) r6 = dup2(r4, r1) ioctl$UFFDIO_UNREGISTER(r6, 0xc020aa04, &(0x7f00000012c0)={&(0x7f0000000000/0x2000)=nil, 0x2000}) recvmmsg(r6, &(0x7f0000003e00)=[{{&(0x7f0000000080)=@can, 0x80, &(0x7f0000001180)=[{&(0x7f0000000100)=""/99, 0x63}, {&(0x7f0000000180)=""/4096, 0x1000}], 0x2, &(0x7f00000011c0)=""/139, 0x8b, 0x80000000}, 0x4e8910c7}, {{0x0, 0x0, &(0x7f0000001300)=[{&(0x7f0000001280)=""/41, 0x29}, {&(0x7f00000012c0)}], 0x2, &(0x7f0000001340)=""/4096, 0x1000, 0x361}}, {{&(0x7f0000002340)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000002940)=[{&(0x7f00000023c0)=""/64, 0x40}, {&(0x7f0000002400)=""/195, 0xc3}, {&(0x7f0000002500)=""/107, 0x6b}, {&(0x7f0000002580)=""/223, 0xdf}, {&(0x7f0000002680)=""/238, 0xee}, {&(0x7f0000002780)=""/144, 0x90}, {&(0x7f0000002840)=""/207, 0xcf}], 0x7, &(0x7f00000029c0)=""/188, 0xbc, 0x1}, 0xfffffffffffffffc}, {{&(0x7f0000002a80)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000003d80)=[{&(0x7f0000002b00)=""/4096, 0x1000}, {&(0x7f0000003b00)=""/101, 0x65}, {&(0x7f0000003b80)=""/84, 0x54}, {&(0x7f0000003c00)=""/35, 0x23}, {&(0x7f00000049c0)=""/4096, 0x1000}, {&(0x7f0000003c40)=""/64, 0x40}, {&(0x7f0000003c80)=""/234, 0xea}], 0x7, 0x0, 0x0, 0x19e1}, 0x40}], 0x4, 0x10000, &(0x7f0000003f00)) bind$xdp(r6, &(0x7f0000003f40)={0x2c, 0x7, r7, 0x1f, r6}, 0x10) ioctl$SG_GET_COMMAND_Q(r6, 0x2270, &(0x7f0000000040)) 00:13:48 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x400}]}, 0x10) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x100, 0x4) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1008) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='veno\x00', 0x5) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x0, 0x0) ioctl$KDGKBMETA(r2, 0x4b62, &(0x7f0000000180)) sendto$inet6(r1, &(0x7f0000000280), 0xfffffffffffffedd, 0x2000012c, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty={[0xe00000000000000]}}, 0x1c) close(r0) 00:13:49 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000700)='/dev/rfkill\x00', 0x20880, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000740)=0x107000) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000280)=""/194, 0xc2}, {&(0x7f00000000c0)=""/155, 0x9b}, {&(0x7f0000000380)=""/175, 0xaf}, {&(0x7f0000000500)=""/211, 0xd3}, {&(0x7f0000000000)=""/70, 0x46}, {&(0x7f0000000600)=""/224, 0xe0}], 0x6, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:49 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0xe00, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc0010007) 00:13:49 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$usbmon(&(0x7f0000000280)='/dev/usbmon#\x00', 0x7, 0xa00) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0)='tls\x00', 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) r2 = memfd_create(&(0x7f0000000e40)="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", 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f00000000c0)={0x0, 0x70}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000140)={r3, 0x1ff}, 0x8) write$binfmt_elf64(r2, &(0x7f00000004c0)=ANY=[@ANYBLOB="7f454c4600000000000000000000000003003e"], 0x13) execveat(r2, &(0x7f0000000000)='\x00', &(0x7f00000001c0), &(0x7f0000000280), 0x1000) process_vm_writev(0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/247, 0xf7}], 0x1, &(0x7f0000000040)=[{&(0x7f0000217f28)=""/231, 0x28}], 0x1, 0x0) 00:13:49 executing program 1: r0 = add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f00000002c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) r1 = syz_open_dev$usb(&(0x7f0000000140)='/dev/bus/usb/00#/00#\x00', 0xffffffffffff0000, 0x40) write$FUSE_BMAP(r1, &(0x7f0000000180)={0x18, 0x0, 0x8, {0x10001}}, 0x18) keyctl$restrict_keyring(0x1d, r0, 0x0, &(0x7f0000000000)='lovboxnet1)^\\*uservboxnet1+vboxnet1\x00') getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000300)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@broadcast}}, &(0x7f0000000100)=0xe8) mount$9p_tcp(&(0x7f0000000040)='127.0.0.1\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x2000, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e21,access=user,Xppraise_type=imasig,fsmagi\a\x000x0000000000000007,fowner=', @ANYRESDEC=r2, @ANYBLOB=',dont_appraise,subj_type=keyring\x00,\x00']) 00:13:49 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80087601, &(0x7f00000001c0)) r1 = syz_open_dev$mice(&(0x7f00000003c0)='/dev/input/mice\x00', 0x0, 0x4002) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000240)='team\x00') getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000004c0)={{{@in=@broadcast, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @rand_addr}}, 0x0, @in6=@loopback}}, &(0x7f0000000280)=0xe8) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_bond\x00', 0x0}) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000000640)={@ipv4={[], [], @broadcast}, 0x0}, &(0x7f0000000680)=0x14) getsockname$packet(r1, &(0x7f00000006c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000700)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000740)={'team0\x00', 0x0}) getsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000bc0)={@remote, @multicast1, 0x0}, &(0x7f0000000600)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000008c0)={{{@in6=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f00000009c0)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000a00)={{{@in6=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@local}}, &(0x7f0000000b00)=0xe8) getsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f0000000b40)={@mcast1, 0x0}, &(0x7f0000000b80)=0x14) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000c80)={{{@in=@rand_addr, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in=@multicast1}}, &(0x7f0000000d80)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000dc0)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@rand_addr}}, &(0x7f0000000ec0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000001100)={'vcan0\x00', 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000012c0)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@loopback}}, &(0x7f00000013c0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001680)={{{@in, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in6=@ipv4={[], [], @dev}}}, &(0x7f0000001780)=0xe8) getpeername$packet(r1, &(0x7f00000017c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000001800)=0x14) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000001900)={{{@in=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @rand_addr}}, 0x0, @in=@multicast2}}, &(0x7f0000001a00)=0xe8) accept$packet(r1, &(0x7f0000001a80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001ac0)=0x14) getsockname$packet(r1, &(0x7f0000001b00)={0x11, 0x0, 0x0}, &(0x7f0000001b40)=0x14) recvmsg(r1, &(0x7f0000003080)={&(0x7f0000001c40)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000002f00)=[{&(0x7f0000001cc0)=""/115, 0x73}, {&(0x7f0000001d40)=""/54, 0x36}, {&(0x7f0000001d80)=""/32, 0x20}, {&(0x7f0000001dc0)=""/10, 0xa}, {&(0x7f0000001e00)=""/57, 0x39}, {&(0x7f0000001e40)=""/142, 0x8e}, {&(0x7f0000001f00)=""/4096, 0x1000}], 0x7, &(0x7f0000002f80)=""/243, 0xf3, 0xffffffff}, 0x40) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000030c0)={{{@in6=@ipv4={[], [], @remote}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@mcast1}}, &(0x7f00000031c0)=0xe8) recvmmsg(r1, &(0x7f0000005580)=[{{&(0x7f00000032c0)=@nl=@unspec, 0x80, &(0x7f0000003400)=[{&(0x7f0000003340)=""/150, 0x96}], 0x1, 0x0, 0x0, 0xfffffffffffffffe}, 0x7ff}, {{&(0x7f0000003440)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f00000037c0)=[{&(0x7f00000034c0)=""/157, 0x9d}, {&(0x7f0000003580)=""/131, 0x83}, {&(0x7f0000003640)=""/116, 0x74}, {&(0x7f0000000780)=""/165, 0xa5}, {&(0x7f0000003780)=""/4, 0x4}], 0x5, 0x0, 0x0, 0x8}, 0x5}, {{&(0x7f0000003840)=@nfc, 0x80, &(0x7f0000004a00)=[{&(0x7f00000038c0)=""/210, 0xd2}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/62, 0x3e}], 0x3, &(0x7f0000004a40)=""/35, 0x23}, 0x4000000}, {{&(0x7f0000004a80)=@llc, 0x80, &(0x7f0000004b80)=[{&(0x7f0000004b00)=""/122, 0x7a}], 0x1, &(0x7f0000004bc0)=""/235, 0xeb, 0x9}, 0x8}, {{0x0, 0x0, &(0x7f0000004d80)=[{&(0x7f0000004cc0)=""/90, 0x5a}, {&(0x7f0000004d40)=""/43, 0x2b}], 0x2, &(0x7f0000004dc0)=""/234, 0xea, 0x5}, 0x8}, {{&(0x7f0000004ec0)=@nl=@unspec, 0x80, &(0x7f0000005040)=[{&(0x7f0000004f40)=""/29, 0x1d}, {&(0x7f0000004f80)=""/48, 0x30}, {&(0x7f0000004fc0)=""/11, 0xb}, {&(0x7f0000000380)=""/48, 0x30}], 0x4, 0x0, 0x0, 0xffff}, 0x80}, {{&(0x7f0000005080)=@nfc, 0x80, &(0x7f0000005140)=[{&(0x7f0000005100)=""/51, 0x33}], 0x1, &(0x7f0000005180)=""/6, 0x6, 0x9}, 0x2}, {{&(0x7f00000051c0)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f00000052c0)=[{&(0x7f0000005240)=""/91, 0x5b}], 0x1}, 0x5}, {{&(0x7f0000005300)=@hci, 0x80, &(0x7f0000005440)=[{&(0x7f0000005380)=""/190, 0xbe}], 0x1, &(0x7f0000005480)=""/209, 0xd1}}], 0x9, 0x20, &(0x7f00000057c0)={0x0, 0x989680}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000005800)={{{@in6=@mcast2, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@multicast1}}, &(0x7f0000005900)=0xe8) accept4(r0, &(0x7f0000005940)=@ll={0x11, 0x0, 0x0}, &(0x7f00000059c0)=0x80, 0x80800) sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000006300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000062c0)={&(0x7f0000005a00)={0x8b8, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [{{0x8, 0x1, r3}, {0x168, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0xffffffffffffffd4}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r5}}}, {0x34, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x4}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r6}}}]}}, {{0x8, 0x1, r7}, {0x3c, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r8}, {0xbc, 0x2, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x3f}}, {0x8, 0x6, r10}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x3}}}]}}, {{0x8, 0x1, r11}, {0x170, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x6}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x400}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r12}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x6}}}]}}, {{0x8, 0x1, r13}, {0x80, 0x2, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8}}, {0x8, 0x6, r14}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8, 0x1, r16}, {0x1e0, 0x2, [{0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0x6, 0x8, 0x100000000, 0x9}, {0x6, 0x0, 0x6}, {0x8000, 0x81, 0x100000000, 0x7ff800000000000}]}}}, {0x6c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x3c, 0x4, [{0x8, 0x8, 0x7}, {0xbedc, 0x4, 0x5, 0x3}, {0x10001, 0x1, 0x1, 0x5}, {0x80000000, 0x4, 0x97, 0x2}, {0xfffffffffffffffc, 0x2, 0x1, 0xfd}, {0x1, 0x200, 0x8000000000, 0x7ff}, {0x0, 0xc09, 0xfffffffffffff801, 0x4d13}]}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'broadcast\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x100000001}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r17}}}]}}, {{0x8, 0x1, r18}, {0x40, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r19}}}]}}, {{0x8, 0x1, r20}, {0xe8, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x1000}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r21}}}]}}, {{0x8, 0x1, r22}, {0x80, 0x2, [{0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r23}}}]}}, {{0x8, 0x1, r24}, {0x7c, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xffffffffb9de31ae}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r25}}}]}}]}, 0x8b8}, 0x1, 0x0, 0x0, 0x4000}, 0x810) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000000), r26, 0x0, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0x19000000, 0x0, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}}, {0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfec0]}}, r26}}, 0x48) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000002c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0x1, @loopback, 0x7ff}, {0xa, 0x100000004e21, 0x9, @local, 0xfff}, r26, 0x66}}, 0x48) 00:13:49 executing program 0: socket$inet(0x2, 0x0, 0x0) ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607) getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000400)=ANY=[@ANYBLOB="a491a2e710ed4483d39b6b49fe34e845fa311072f211a4c49dd57f97ec6d837e436e0aa430c5e5f45885f69042ed746ea7c9aa9afe956af7ac1554fe801ffe1f9f77892993f8aa83def9ca169d90257190c5b8bbb7e21d5f"], &(0x7f0000000480)=0x1) add_key$user(&(0x7f0000000700)='user\x00', &(0x7f0000000200), &(0x7f0000000240), 0x0, 0xfffffffffffffffe) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x8100, 0x0, 0x9000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xe3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x243}, [@IFLA_MASTER={0x8, 0xa, 0x6}, @IFLA_LINKINFO={0x18, 0x12, @vti={{0x8, 0x1, 'vti\x00'}, {0xc, 0x2, [@IFLA_VTI_LOCAL={0x8, 0x4, @multicast2}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') r3 = getpid() sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80002}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0xac, r2, 0x705, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x91}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x478e}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xa3db}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}]}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0xa}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller0\x00'}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x4}, 0x40000) sched_setaffinity(r3, 0x8, &(0x7f0000000300)=0x5) sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xa00800}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="00072abd7000fbdbdf250c00000008000600070000002000020014000100fe8000000000000000000000000000aa080002004e24000028000300080003000200000014000200697036746e6c30000000000000000000080005007f00000108000500ff0000000c00030008000800040000000800050001000000200001000c0006006e6f6e650000000008000b007369700008000200870000004000030008000800070000000a0002007665746830000000000000000000000008000400eef7"], 0x1}}, 0x44000) setsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001000), 0xc5) pwritev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x0) 00:13:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7fc69ec15700) 00:13:49 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff057eccb6bfa100000000000007010000fcffffffb702000001000000bf130000000000008500000006000000b700000000009b999500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4) r2 = socket$kcm(0xa, 0x2, 0x11) sendmsg$kcm(r2, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0x300, 0x1100, 0x2a0]}}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0) 00:13:49 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uinput\x00', 0x805, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8040, 0x10) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x8) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UI_DEV_SETUP(r0, 0x5501, &(0x7f0000000300)={{}, 'syz0\x00'}) r2 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0xfffffffffffffffc) write$UHID_INPUT2(r1, &(0x7f0000006b00)={0xc, 0x1091, "c82cf52eb6ae0f2b336479f20765922fa356cddb0de595f5bce93e193f043369ba16461f37dd66023283f4b4f85f31902b40f310fd9e2ebe0065ed8bc0264cdf8a0ecd8e4f47f238c15dc37a42ee008e890fe835713330d046086a663aba49b7d0ed1ad3fd060b88ac4d7a2bcf8e7071d0ee1b523c5cf4daff76a6123233cddb64a1d1d29e2e74add6bbd4a7cd0657291d15f463869f33f3073b8cad105382bf399ef4553d14d4b9e58e67f8ba29edc8486b496131b8e81185ab6e5fd77b19acd51eb3aba84665ee0cdeb75218ea3c2628f0309cc251c821dae8083d983d3a3f745a23a1b39b248ceb4730f0b97b9f43da97723cf85f1c3d161d33f4acc4d284ea1c662659344d6f6bec06a47f88d3197b554e82e633e58e38e1bea50ea2660dc824a5a3467c581a4fb3392822bc54cb9c5fdf6f136c02439c13a8732a84f460ef4f25d4f49719590fcd03d5fa24849172be0dc8a26a276ca3e9ac2abc0eed65646890ce648d6000c0238d2837ac7fba19f6a55408b026f8bc6512a36050b753ac1f853634e6ac02d7518a9d25a41333e76e0a87afb17fecc760277c1e31920588dd3029f8671de8526d1c13bfc382ecb45b5dd01c077eb65e6bfffc942998e1127bf530a1158b149a77502e497691bb2031bced2df9b991a420566816d3070b1e583e8b5feca1833261a6b9faee4e6ea56b2f5aaa6e3923f9842880e9896b4637d41b58d2dd56a3e4dc73a710846daba51a700a26305927c13e4535b30b4ce749efbee84140265537a2d0ff0e5fc9fc3a1432d657138ce4ca2afb40d57d7789fdc55df07a9b9f2bc20e6ad61e4050588093efdeff6e66ff76ea47de593c514dbd68ecc377b2955ad11cdbb3904f3d91bc31439db3f9831ceafe3dcc2d6b1539d15f15dd326eb3597cb1190b0391e0e394a02f83d563a4ad67c4dd4ac371839e42b4fc5acfa2e941498adb696a1fc01c157012a15d283863f0bdd356cd097b53d9cf2e5ad6288f2a03d996cf8b049a68d02dce328c95f08a8b408982611751f55df2035b1ba1a7904c79c8246f6dfc252012bbc42a92dfa8bebe0eb60c7dad870d9ac16c6e7f271fb2617de2aad652b4b281354d10bbeedc4f523c4b23293043ca59c619508c1e660579915d20f03174d7798b813a0a61013e3fdf683c499e3d565eb5e6727c9f782bfa1bb5bc74c051217001564f96d8b549f603179af1c53a74e6b949134dddd2eb7c8fc7672c56cda20cead2f65c41ce3c8fc2e956f75c06b562d58a1a0c13d2d024275f898136b299b0cf294935b24f6d2424438ff7f1d032ba74241aeebdb47a6a9ad76e4802f55c4f7d9fc4f60e8d2af6b5987858852484a53e772fbe28f8877de50b034cc4944a7f23360bfd214c90157cf71f42584787556303183997c7dc15ddaf26754b3964687ab30c9b8e6ef173f5e75601738403513cb42b477a3216dbd1ce7a8f6962e36a6add74ed35868bb15e120b42b76430a7b1d6639cd08953a08186c1b4e551748746f4130a1dc2875be2a73027fb50cd1605ea6ddb8d9362e4f9da568bb844a986b86054ac9f99fd537b043e28bbf7263dc8d434a63abd92bd9d139b089c6a55e5f1e0796c759f1130b242d3b3149fbc61f42c131db278700c8fd04920f3971ae7382d9da7f0defdcc64fcdc000b3477f6a149c4e860755ed7fb4383e05072632298749381ed339ec148f314c095c05e4912f5515a50dfa906aa46e7b6e94156c843f171b2db12f7c44a1376188695f4605c56a5bf579dfda92080880026ece7b7d93966bde6ff8cb960a021aa13adee60c24955f6dcd8f9ccdd6006161e88f516f39adc63ab6befe9319fd8f5e3433111c541050318395f2280e916a6aa8892ffda3d6c53275bc9dd22e39d13aa434478e26196ba9b693c4f8051152d4d1c6289da2f7d4d844c52719a06580413c5de6af327e07ccb51fa7b3625da91dd6d795b8ad98f22828a0fcf08c03dcb4b67c31bff426c97d27a19a28dd2320427eb1947e22f36741ef0b85075cb1ae75e4af5cfcdaba93c201cd9188121719d522ca5794df1e09d9eaa6b61ee9634481ac5591d6cabc27054d8af2d89af206a8d38cd481c095192288d6f6bf0003d43bc9ea32c525efe8485ab371e23d494adcb1f46c489a68b570fc4c222edb0788bd059a65cdbf4272372606a2605cfe9249f6fdc6bff873f648307ceae6455b98b3aa32e338d2258055c32e9d5f434ec9c8a2dc255def602f376041b0371a78c4958e84c0eabbe2beefd24288cdd3236d65388b1506d9f3d0677f87f9a2724401595c266f62f4947671415025603588d426792f50d152a32ee765facd62a9155c975231dbfee0a10124d8a5a59d6fb4abefa2e55f5011e32500ac40881d4b12bcc56d32c07d1ad2f225749d51d70541dc04a2c9578696d4d81981b5a31670975899ed1b36fab4bfee6183710650961705c6334094999c1742f27030b9999fe3c392031dad686dc59ef05ee6383779b1b00d5a0e24316e80d4d8feccc6d9bbd657090c8ed347b3fd06e7514561022b219a58f7ee4feb8ee6151e190442d0d78f54c0ba2cd916b7225fed4331753f634e86a4d72327e8d1fabec8f96c44d516e5da2a0525bd4e9b72f69b05c03a8bdd148aef36b763a6f6e0881e5d9fd2159ba933dec7211a7666039196a22646f8459c3180a79059707f48b4d6b2c4f62798442a4e8121b870def689e419dbb75b44d74f3dc1f666237d06ca6cce8f497a9564d5feb474ab87edc4eaf9e8f105af26fb783d06a980a72c4d50f9e229ad099a67af85127990ed4f447dda41ba56a006fcab355e938778baa8e6b7eebb229089733a3618a1f23917cf1aba346f3c3e90fca5721847e7cd0a55387032c250b3c9bf8bd8c9e27cd87bc63d9eeeb2d9738cf89539ab9aa8e4751e8eb93dfcaed063eab62390f1db6b146d5f8b2e40a1db498fd79338fc74071bdbed023835ade4e721a087d171892784316c537449f5b866f3e1ed51d71ab0230c5ab568d22bd6dce4fa131d293db52a66ef547e668e1cbd0bd0f4cc927153fdaf483911ec6554d44788eb0b494a6c8ec4fc5cb74bbd59d3f92256e13d645f97d0fe2dea35da12d1c4096ccdc292d122063bf69cbf474d1cae02ca0e89d98b857bbe3c6a81e2a387e32844d453660c854b92cea25a0799e2927e9e28a4635ae3806e2bd3d50f1d0fb56393fd673a827819bbcdbf5d844882552552ed1b6802142c4cdfc6facc7c87515db212a4d864d7ed575de4c02437b91b9b907b833a036f40ae4710a455efe424513f16c6d1a39934fce03caf02ff767ae08c56d19675073bb041fb6efa3b7b3d5369a656a9ec64d17aed512e6dd56ea8d1bdd1dfa5ca86051645423110cf644d5afaf9e0aa527420134216be433e020e8f430afb691944107c0d7d82b95ee44c5091bee96b881b100f258c5361a4c812de3db22e61334e7973c55623809260c9c34c5c16faa2eb0ac79933ba7065ffe64ef893852639c8029e5a443c816cd8b5d1d1913fa44fe1991d54de90c8dae92424a8ec64bcd68bddf0797177403f2226bcbd2f5a5ce429ea0a5245bf8c6a51d6f49165f3dd5e0f7ed4288c4e970eedf72b241751c6efefe90736c8b8006ba382d98ab8bc257f81253e51301e7d2dc220cb10a2f5242742a3ce7898db0b05f6e0cf869dba5e4a6e321ba4cee7c1a388e9b5269508d3df9cd6566a865aab38dc67d2c5719e13a441ad41adafb1d23794fa819ba05ea81180c3a3f5082ba49dc809870695a2c52f70f2d9413eb59ea728c8222044e6668d86939baa4e1f5df2eecbef899e32f07753f812476b2a3858d678aaafbf4b45f564aadce80f4bdbf79652b7151376d72daf45c0306b6f915d4ae9f96c11c14a40a0b7671cb0d2494e68b9ba9e740283a1ff29c23f4143e59d22720f2ff236d14b9b882aa7b53ec11428547dadfa83a9f4c52807f4982fd25e3e6b33c263f8c50f543b7560d7d39ba3ace0b139b0001d4c6bae1571b8ab6b885ecbc7adee1eb8bacb23e3d0ab47b85fb030bee3b5164017a7b0dfa25d97e80abb5a74ccfdc84cc65429ffdb02533053f8be4c9231fd0af7fbd9b61d5542d7229a3a19f56a4a02fb91990b367dc3e99b43208b0d2eda5217523f0ac4995e1b98c21948adcd67565e547de305f041b5052219448901eb5b7dc936e59709485ad930423585d0481f6558ded57365c8ffa701a8267c8f5505dbfa7af01f29201b3044e15da105cdd94b4db287d6feae9d935bda3d04677aea8e511cc4d49f7a313d8ac95b7987ef8aaeb20e5f4e82a2f8bdbff0bfc15e637a1fb51f4d80cb45c131edfba0d9b4f52694ff8cb13bbf0885c2447d53d7578a229d01f285b99d594074697ec252695230ced578f2f402717644ac8374b412aaf54488bb9d6557fb86ea867cfdee3e11fa79f1b2131551d9f249d1bffbdab0cb164c4538428c2999521e4b23d253f3f8eceae103107ed565be7aa563c4d2a19fc98410cffa4b54faf1bbbc1e312df242f194cb20b7939fa464027991afd6582bb1b4807022a1fdb1e53dfee73fd981e5bae8541f917bf1a47137311307a723f3fc6102aa8c8525480094918343c6cb3766969fae7ff83addbde349cbe7e343cafd4a4e1703c68c8d55b65b8dfa71face086121fcb702f3fd7d2ff96a42f9ac7866ee96d445ba68cb0bcf265aa06f0ca458eeca92075ccc973d57849510c4508c12d5dabfcd2c9b5055d0bc4de965a891dad354790f469be697a93e141d3664fcf43ff897a83447e81e98b6bbb366fae3e680ccb3634294191fbf3f041ae861d806bf91f9b6ab35343820a515725fc385ca7a87ba992a6fb54d0f0f0c5d9054d1454898f674d91a30fe0d467d11a2e16a5a84b7f4a0a5930d4ab1fc7af1f634425aa9559ac3053b87af1f6cee5e9d9e94e205de805b25052e15edec3b7971c68cdda6c20a3cf6bec8d70b615b0871f126ef8e0a1dd0fa591ed353b51c8072a12d5ec8c5aa6319564666700c8269b55a9a1951c8212cf408319277cfa006fc5d464bc1981793c04b5ec6ad622ef02331cbedbfbd7c57bb8368620d775cd73fc412705369baa1207ce7d78248e236168229d750985296bbdb38f3b1aae95240e083203bf0194d9eb0cd142262899d9525ef9bb63e47e62ae730a5ce99667d01da64f3aba01a343e98654afdaadfdddfdd986d064c533575b3bb068cae08ecd9e9f622dc6d0d643673b039a67dd15ec6e285902ab18bfa775a8085aa80bb21245dd6aed3404569f89119e7d12eea5930082ebc5c6b68b024df3dc180cf58c91f58a4e1273e211c84be574c5101ce9f7d7aa377cea9d279026c7d437c7f262daa11cabaf04df45925e54aca9f61e64a82b5a2c229f97d4df2bdba58e011ac58c1d10c5ea9d1ead31ab5fd7f815f0f7998d2083e9fe139838564cc8607b079d624172e2cf05a49f17d0383fcf390bb23a2673ab91ff1d9b2ec0e3acb214e30c589d18f7415779c29134920ff4f4fa56b4d1ee8e45238a71c418c2ded1d9cb5733a1d8cde229a84024ee5e30fcc2939d589b62343be3da76700d5c5ccdf82bb943e6bf07e47c6097fd0c6099bb2ca877e956bb4c977456c54001d1b5967ca9b17b3b3e6c588b259c0326f69293c5634221c0834677b96a3980e11a0c916d539d2bb181eee4e462213e559175e76a641b88ca5231f68e1d74b8c3a0b665b6d6f5ee44ebffc00b51eab93435a7a89e980d91f146c5f62f4fe99ec233ffcb70a63ec8ec5105c1dd4cfc6037eba64f3192274bac7a3b7e62023fad13c4694903154dba8ceff4691b8935aba8c69cc67679052cb5f4c9ce8b4f60b3c9baee23f85b757f077190069a99c3676ad78eed7e3e8ad5815b1c8c226583341069a5cc54b09b9cb369c2cc85f188bf0b980930b04cd314dcbe158303da34f9d03d0a884b7630537c2a2c345fc810be00785cae220635cae63f6b309b05375152a918b97c7a05f940c7f8edaad9cbf95f623c8f50b351ab526f5c34fafa85ee72af61b011ba15393e4bd716cc78074e151a74beda91e878fa2ac47fa505e56a1ce3f952ced2a5c55ebf3ad7e68d313209cbf91b8572d80631da1f5f6fa1b67512995567649985aa3e37791effcfbf867b0c37b54cc740c89c72c72a4a31719bf462ed46d07ce68ef73c0d1faabb5ed51dc34265a8bd"}, 0x101f) dup2(r0, r2) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e24, 0xfd8f, @mcast2, 0xffffffffffffff81}, 0x1c) [ 414.471928] kasan: CONFIG_KASAN_INLINE enabled [ 414.496225] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 414.530083] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 414.536374] CPU: 1 PID: 21074 Comm: syz-executor3 Not tainted 4.19.0-rc6-next-20181004+ #87 [ 414.544067] kobject: 'loop1' (0000000044bc6825): kobject_uevent_env [ 414.545473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.559144] kobject: 'loop1' (0000000044bc6825): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 414.561400] RIP: 0010:addr_resolve+0x7bd/0x1b80 [ 414.561416] Code: 0f 84 da 01 00 00 e8 22 1f f3 fb 48 8b 85 d0 fd ff ff 48 8d b8 54 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 95 [ 414.582058] kobject: 'loop2' (00000000714a8e7e): kobject_uevent_env [ 414.594907] RSP: 0018:ffff880185b27368 EFLAGS: 00010202 [ 414.594920] RAX: dffffc0000000000 RBX: ffff880185b27578 RCX: ffffc900080a7000 [ 414.594927] RDX: 000000000000003e RSI: ffffffff858a5bee RDI: 00000000000001f1 [ 414.594934] RBP: ffff880185b275a0 R08: ffff8801d9762000 R09: 0000000000000000 [ 414.594942] R10: ffffed0030b64e60 R11: 0000000000000000 R12: ffff8801bcecb6a0 [ 414.594948] R13: 00000000ffffff9d R14: 0000000000000001 R15: 000000000000000a [ 414.594964] FS: 00007fb0028fc700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 414.601465] kobject: 'loop2' (00000000714a8e7e): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 414.606713] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 414.606722] CR2: 0000001b2ca26000 CR3: 000000017eddf000 CR4: 00000000001406e0 [ 414.606736] DR0: 000000000000b8c4 DR1: 0000000000000000 DR2: 0000000000000000 [ 414.681168] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 414.688432] Call Trace: [ 414.691044] ? rdma_translate_ip+0x300/0x300 [ 414.695441] ? fs_reclaim_acquire+0x20/0x20 [ 414.699754] ? lock_downgrade+0x900/0x900 [ 414.703892] ? __lockdep_init_map+0x105/0x590 [ 414.708374] ? lockdep_init_map+0x9/0x10 [ 414.712425] ? init_timer_key+0x1a0/0x480 [ 414.716560] ? work_on_cpu_safe+0x90/0x90 [ 414.721038] ? init_timer_on_stack_key+0xe0/0xe0 [ 414.725780] ? kmem_cache_alloc_trace+0x31f/0x750 [ 414.730610] ? __lockdep_init_map+0x105/0x590 [ 414.735093] rdma_resolve_ip+0x499/0x790 [ 414.739228] ? cma_work_handler+0x1f0/0x1f0 [ 414.743533] ? process_one_req+0x920/0x920 [ 414.748951] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 414.754072] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 414.759245] rdma_resolve_addr+0x2d6/0x2870 [ 414.763557] ? rdma_bind_addr+0x23c0/0x23c0 [ 414.767893] ? ucma_get_ctx+0x7f/0x160 [ 414.771766] ? lock_downgrade+0x900/0x900 [ 414.775902] ? futex_wake+0x304/0x760 [ 414.779700] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 414.785235] ? __radix_tree_lookup+0x3a7/0x500 [ 414.789806] ? kasan_check_write+0x14/0x20 [ 414.794024] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 414.798938] ? radix_tree_insert+0x870/0x870 [ 414.803332] ? wait_for_completion+0x8a0/0x8a0 [ 414.807905] ? lock_downgrade+0x900/0x900 [ 414.812038] ? lock_release+0x970/0x970 [ 414.816109] ? check_same_owner+0x330/0x330 [ 414.820414] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 414.825326] ? lock_downgrade+0x900/0x900 [ 414.829462] ucma_resolve_ip+0x242/0x2a0 [ 414.833505] ? ucma_resolve_ip+0x242/0x2a0 [ 414.837743] ? ucma_query+0xb20/0xb20 [ 414.841653] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 414.847204] ? _copy_from_user+0xdf/0x150 [ 414.851361] ? ucma_query+0xb20/0xb20 [ 414.855147] ucma_write+0x336/0x420 [ 414.858776] ? ucma_open+0x3f0/0x3f0 [ 414.862487] __vfs_write+0x119/0x9f0 [ 414.866459] ? ucma_open+0x3f0/0x3f0 [ 414.870163] ? kernel_read+0x120/0x120 [ 414.874042] ? apparmor_path_rmdir+0x30/0x30 [ 414.878703] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 414.884153] ? apparmor_file_permission+0x24/0x30 [ 414.888985] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 414.894512] ? security_file_permission+0x1c2/0x230 [ 414.899515] ? rw_verify_area+0x118/0x360 [ 414.903650] vfs_write+0x1fc/0x560 [ 414.907193] ksys_write+0x101/0x260 [ 414.910809] ? __ia32_sys_read+0xb0/0xb0 [ 414.914860] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 414.920311] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 414.927031] __x64_sys_write+0x73/0xb0 [ 414.931605] do_syscall_64+0x1b9/0x820 [ 414.935483] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 414.940835] ? syscall_return_slowpath+0x5e0/0x5e0 [ 414.945755] ? trace_hardirqs_on_caller+0x310/0x310 [ 414.950758] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 414.955764] ? recalc_sigpending_tsk+0x180/0x180 [ 414.960506] ? kasan_check_write+0x14/0x20 [ 414.964745] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 414.969577] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 414.974754] RIP: 0033:0x457579 [ 414.977934] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00:13:49 executing program 1: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x82) ioctl$TIOCNXCL(r1, 0x540d) connect$nfc_llcp(r0, &(0x7f0000000200)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "43d0eb2b6d8aab6a5ad3e5a67e1057045bafc156fc588f64d5c9443d3e99fc461beead3855b3f9460c22d581947c6c26f83977bcdc4d0d8c7dcfb80c414e29"}, 0x5f) 00:13:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4d0) [ 414.996919] RSP: 002b:00007fb0028fbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 415.004614] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579 [ 415.011873] RDX: 0000000000000048 RSI: 0000000020000100 RDI: 0000000000000003 [ 415.019477] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 415.026821] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb0028fc6d4 [ 415.034109] R13: 00000000004cb6a0 R14: 00000000004d8cb8 R15: 00000000ffffffff [ 415.041373] Modules linked in: [ 415.050031] ---[ end trace 818d3f830ac580d4 ]--- [ 415.056115] RIP: 0010:addr_resolve+0x7bd/0x1b80 [ 415.068294] Code: 0f 84 da 01 00 00 e8 22 1f f3 fb 48 8b 85 d0 fd ff ff 48 8d b8 54 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 95 [ 415.089130] RSP: 0018:ffff880185b27368 EFLAGS: 00010202 [ 415.089980] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env [ 415.094691] RAX: dffffc0000000000 RBX: ffff880185b27578 RCX: ffffc900080a7000 [ 415.100891] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.108592] RDX: 000000000000003e RSI: ffffffff858a5bee RDI: 00000000000001f1 [ 415.124589] RBP: ffff880185b275a0 R08: ffff8801d9762000 R09: 0000000000000000 [ 415.140305] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env 00:13:49 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000700288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f00000000c0)=0xe45, 0x4) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0) r3 = dup(r0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r3, 0x4010ae74, &(0x7f0000000000)={0xfff, 0x7, 0x8}) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r1, &(0x7f0000000c00)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000bc0)=""/45, 0x2d}, 0x0) 00:13:49 executing program 1: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x82) ioctl$TIOCNXCL(r1, 0x540d) connect$nfc_llcp(r0, &(0x7f0000000200)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "43d0eb2b6d8aab6a5ad3e5a67e1057045bafc156fc588f64d5c9443d3e99fc461beead3855b3f9460c22d581947c6c26f83977bcdc4d0d8c7dcfb80c414e29"}, 0x5f) [ 415.146192] R10: ffffed0030b64e60 R11: 0000000000000000 R12: ffff8801bcecb6a0 [ 415.148696] kobject: 'loop5' (00000000d7c3e14c): kobject_uevent_env [ 415.169096] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.171000] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env [ 415.181970] kobject: 'loop5' (00000000d7c3e14c): fill_kobj_path: path = '/devices/virtual/block/loop5' 00:13:50 executing program 1: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x82) ioctl$TIOCNXCL(r1, 0x540d) connect$nfc_llcp(r0, &(0x7f0000000200)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "43d0eb2b6d8aab6a5ad3e5a67e1057045bafc156fc588f64d5c9443d3e99fc461beead3855b3f9460c22d581947c6c26f83977bcdc4d0d8c7dcfb80c414e29"}, 0x5f) [ 415.191673] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.198333] R13: 00000000ffffff9d R14: 0000000000000001 R15: 000000000000000a [ 415.222051] kobject: 'loop1' (0000000044bc6825): kobject_uevent_env 00:13:50 executing program 1: r0 = perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x0, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0xe440, 0x1) write$cgroup_type(r2, &(0x7f00000000c0)='threaded\x00', 0xff4c) ioctl$int_out(r0, 0x5462, &(0x7f0000000040)) close(r1) 00:13:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000002c0)="66b9b40900000f326666dfd0660f38145800baf80c66b888234a8b66efbafc0c66ed0f330fc75a80670f01cbbaf80c66b808f6878866efbafc0cecba2100ec0f22a1", 0x42}], 0x1, 0x0, &(0x7f0000000240), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000440)={0x80003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x28, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x34d564b00000000) [ 415.241894] kobject: 'loop1' (0000000044bc6825): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 415.249248] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env [ 415.255331] FS: 00007fb0028fc700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 415.260162] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.282330] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 415.291832] kobject: 'loop2' (00000000714a8e7e): kobject_uevent_env [ 415.295159] CR2: 00000000004cc5b0 CR3: 000000017eddf000 CR4: 00000000001426e0 [ 415.298291] kobject: 'loop2' (00000000714a8e7e): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 415.329747] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env [ 415.336190] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.361795] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env [ 415.368423] DR0: 000000000000b8c4 DR1: 0000000000000000 DR2: 0000000000000000 [ 415.379934] kobject: 'kvm' (00000000aa402d95): kobject_uevent_env [ 415.386387] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.396027] kobject: 'kvm' (00000000aa402d95): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 415.406241] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 415.420212] Kernel panic - not syncing: Fatal exception [ 415.427199] Kernel Offset: disabled [ 415.430826] Rebooting in 86400 seconds..