016b72ff4a04927595a71bd782ec1bf99e34eb9103e4cd6c8c5204d7637fe31610d8459425ce298dfed30fe57c7f2bf9e6981feab1ff25ee4bf7bbe3507ea2968a40c1467c5f295335617832448436fb00b3a03614f426b96af889588bbc1d67f90cc68da4334d99f303efe0140f06e9214f0e90924e102f28486690405cf0ff705ca1db329d4cb64a938e5a9a0451fbc35b5f3254f84f27f401d355f04be4567247e77a483585712c43e47c631fc7abe23df5494037871b06d2"}, @NFTA_DATA_VALUE={0x78, 0x1, "bec2b061fb725617b2ac62ca5eef9d9e0373cd4a1b20658507bc94843da417985dcdb07a6c0b12af91b8ad136f158f5f2691e77bfa3e829556740ee12a505ff54b64d7b92314acef823dd47bf2886fe35aa1c7fd20d7af0b62e97ee361dcd3bb2e6d2b1b2515eac7b115f8a3f1515e524491b38f"}, @NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0xeb, 0x1, "9d6c9717e6a7a701b6ba69f5145ca27571974760355da3ea1191d9d0e8382b89d974147579c50395aeb7111ef218e3feb975ba2a69c57e2b94e81593b844981ef4c59d49cdd3399d480a447e04260064749a0424717f8475c5531e6710ddc0edb0d8f06de37e408538c74eac6ffc422887aab218329f73472358aa502dc346246c36b90e0ac79270ce94fc1b18a3ffbd6e7d3443aaecbe6929faab78c933ec8654aa80a1d3a349e32e8382d25a3be0fbce4567b8b35702ca12cfa4003393846dd27544a8277cf0ed90382f29d6f68b869459b587bbd2fde545a93b4b52530f3720f768d66ee17d"}]}]}]}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x4b54}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

01:19:52 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x40044591, &(0x7f0000000640)=""/88)

01:19:52 executing program 0:
timer_create(0x0, 0x0, &(0x7f00000001c0))
timer_gettime(0x0, &(0x7f0000000740))

01:19:52 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000001140)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}, {{&(0x7f0000000700)={0x2, 0x6e21}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="28000000000000000000000001"], 0x28}}], 0x2, 0x0)

[  499.668523] *** Guest State ***
01:19:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x2a, &(0x7f0000000140)="d023fecb7a802b56af79a44fe5e726874e40e95dd771f4eeb0a8d5dca7a066f2ae603bd5db675bb995a56d5b0f1e6c4d3941ca1e369aa906b55630447b2396c985a0a10dbd70ddcbbdcbb5fdb6efc490dc0f1e7f3c86e0711ce5fe5a7e7946717658e14b8fd6841cca87d05241643a048de7e2e5815ca8fa433e0cac24b7c4e1d74b54806e2da0e5", 0x88)

[  499.692898] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:19:52 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_int(r0, 0x11, 0x1, &(0x7f0000000340)=0x40, 0x4)

[  499.742230] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  499.779308] CR3 = 0x00000000fffbc000
[  499.800399] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  499.829734] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  499.852873] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  499.875902] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  499.897864] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  499.932976] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  499.940986] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  499.991188] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  500.011071] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  500.020656] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  500.032651] batman_adv: batadv0: Removing interface: batadv_slave_0
[  500.039265] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  500.039279] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  500.039287] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  500.039298] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  500.073170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  500.079898] batman_adv: batadv0: Removing interface: batadv_slave_1
[  500.101215] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  500.101396] device bridge_slave_1 left promiscuous mode
[  500.122848] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  500.129709] bridge0: port 2(bridge_slave_1) entered disabled state
[  500.130316] Interruptibility = 00000000  ActivityState = 00000000
[  500.145336] device bridge_slave_0 left promiscuous mode
[  500.157718] bridge0: port 1(bridge_slave_0) entered disabled state
[  500.171536] *** Host State ***
[  500.181497] RIP = 0xffffffff811601fe  RSP = 0xffff88805076f9b8
[  500.187726] device veth1_macvtap left promiscuous mode
[  500.194721] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  500.199673] device veth0_macvtap left promiscuous mode
[  500.211938] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  500.213198] device veth1_vlan left promiscuous mode
[  500.232698] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  500.237921] device veth0_vlan left promiscuous mode
[  500.249444] CR0=0000000080050033 CR3=000000009dc59000 CR4=00000000001426f0
[  500.268609] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  500.282024] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  500.298054] *** Control State ***
[  500.306626] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  500.320992] EntryControls=0000d1ff ExitControls=002fefff
[  500.332870] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  500.347825] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  500.361154] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  500.376584]         reason=80000021 qualification=0000000000000000
[  500.389540] IDTVectoring: info=00000000 errcode=00000000
[  500.401697] TSC Offset = 0xfffffef1413da079
[  500.410503] TPR Threshold = 0x00
[  500.418739] EPT pointer = 0x00000000a973c01e
[  500.432868] Virtual processor ID = 0x0001
[  500.890417] device hsr_slave_1 left promiscuous mode
[  500.900674] device hsr_slave_0 left promiscuous mode
[  500.915956] team0 (unregistering): Port device team_slave_1 removed
[  500.926642] team0 (unregistering): Port device team_slave_0 removed
[  500.936369] bond0 (unregistering): Releasing backup interface bond_slave_1
[  500.948049] bond0 (unregistering): Releasing backup interface bond_slave_0
[  500.972764] bond0 (unregistering): Released all slaves
[  501.702786] Bluetooth: hci1 command 0x0406 tx timeout
[  502.927868] IPVS: ftp: loaded support on port[0] = 21
[  503.039324] chnl_net:caif_netlink_parms(): no params data found
[  503.091030] bridge0: port 1(bridge_slave_0) entered blocking state
[  503.097821] bridge0: port 1(bridge_slave_0) entered disabled state
[  503.105731] device bridge_slave_0 entered promiscuous mode
[  503.112349] bridge0: port 2(bridge_slave_1) entered blocking state
[  503.118810] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.126353] device bridge_slave_1 entered promiscuous mode
[  503.145732] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  503.154745] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  503.174948] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  503.183337] team0: Port device team_slave_0 added
[  503.188668] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  503.195981] team0: Port device team_slave_1 added
[  503.213241] batman_adv: batadv0: Adding interface: batadv_slave_0
[  503.219496] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  503.245410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  503.256505] batman_adv: batadv0: Adding interface: batadv_slave_1
[  503.262920] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  503.288146] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  503.298985] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  503.306582] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  503.328730] device hsr_slave_0 entered promiscuous mode
[  503.334462] device hsr_slave_1 entered promiscuous mode
[  503.340284] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  503.348093] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  503.418148] bridge0: port 2(bridge_slave_1) entered blocking state
[  503.424541] bridge0: port 2(bridge_slave_1) entered forwarding state
[  503.431100] bridge0: port 1(bridge_slave_0) entered blocking state
[  503.437481] bridge0: port 1(bridge_slave_0) entered forwarding state
[  503.466375] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  503.472460] 8021q: adding VLAN 0 to HW filter on device bond0
[  503.481694] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  503.490441] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  503.498543] bridge0: port 1(bridge_slave_0) entered disabled state
[  503.505384] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.515691] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  503.521756] 8021q: adding VLAN 0 to HW filter on device team0
[  503.530412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  503.538060] bridge0: port 1(bridge_slave_0) entered blocking state
[  503.544471] bridge0: port 1(bridge_slave_0) entered forwarding state
[  503.556354] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  503.564073] bridge0: port 2(bridge_slave_1) entered blocking state
[  503.570539] bridge0: port 2(bridge_slave_1) entered forwarding state
[  503.585836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  503.593747] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  503.604711] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  503.615821] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  503.627101] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  503.638049] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  503.644916] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  503.652054] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  503.666824] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[  503.674081] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  503.680764] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  503.691156] 8021q: adding VLAN 0 to HW filter on device batadv0
[  503.742439] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[  503.752230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  503.779584] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[  503.787690] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[  503.794910] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[  503.804477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  503.812420] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  503.819871] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  503.828968] device veth0_vlan entered promiscuous mode
[  503.839556] device veth1_vlan entered promiscuous mode
[  503.845645] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[  503.854745] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[  503.866233] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[  503.876673] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  503.884563] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  503.891721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  503.901688] device veth0_macvtap entered promiscuous mode
[  503.908414] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[  503.917625] device veth1_macvtap entered promiscuous mode
[  503.926388] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[  503.936021] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[  503.945164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  503.955288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  503.965662] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  503.975830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  503.985056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  503.995748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.005171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  504.014932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.024215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  504.033949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.044643] batman_adv: batadv0: Interface activated: batadv_slave_0
[  504.052009] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  504.059803] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  504.069428] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  504.079450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  504.089688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.098935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  504.109109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.118256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  504.128049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.137208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  504.146982] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.156134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  504.165906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  504.176218] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[  504.183738] batman_adv: batadv0: Interface activated: batadv_slave_1
[  504.195090] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  504.202906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
01:19:56 executing program 2:
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="81", 0x1, 0x68d3}, {&(0x7f0000000100)="8a", 0x1}], 0x0, 0x0)

01:19:56 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000b40)=[{{&(0x7f0000000140)={0xa, 0x4e24, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@dstopts_2292={{0x18}}], 0x18}}], 0x1, 0x0)

01:19:56 executing program 0:
prctl$PR_GET_TSC(0x16, 0x0)

01:19:56 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x50}, @void, @val={0xc, 0x99, {0x3, 0x60}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54c, 0x6, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0xff}]}, @NFTA_RULE_EXPRESSIONS={0x2a0, 0x4, 0x0, 0x1, [{0x74, 0x1, 0x0, 0x1, [@counter={{0xc, 0x1, 'counter\x00'}, @val={0x40, 0x2, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4f}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x61}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffff9}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6}]}}, @bitwise={{0xc, 0x1, 'bitwise\x00'}, @void}, @tunnel={{0xb, 0x1, 'tunnel\x00'}, @void}, @numgen={{0xb, 0x1, 'numgen\x00'}, @void}]}, {0x110, 0x1, 0x0, 0x1, [@range={{0xa, 0x1, 'range\x00'}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8}]}}, @nat={{0x8, 0x1, 'nat\x00'}, @void}, @dup_ipv6={{0x8, 0x1, 'dup\x00'}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x16}, @NFTA_DUP_SREG_DEV={0x8}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x1d}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0x7bf7ac6aa98b4926}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xa}]}}, @nat={{0x8, 0x1, 'nat\x00'}, @void}, @meta={{0x9, 0x1, 'meta\x00'}, @void}, @log={{0x8, 0x1, 'log\x00'}, @void}, @dynset={{0xb, 0x1, 'dynset\x00'}, @val={0x48, 0x2, 0x0, 0x1, [@NFTA_DYNSET_EXPR={0x10, 0x7, 0x0, 0x1, {{0xb, 0x1, 'lookup\x00'}, @void}}, @NFTA_DYNSET_SET_ID={0x8}, @NFTA_DYNSET_SREG_DATA={0x8, 0x5, 0x1, 0x0, 0x11}, @NFTA_DYNSET_SET_ID={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_DYNSET_TIMEOUT={0xc, 0x6, 0x1, 0x0, 0x9}, @NFTA_DYNSET_SREG_DATA={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_DYNSET_OP={0x8, 0x3, 0x1, 0x0, 0x1}]}}, @payload={{0xc, 0x1, 'payload\x00'}, @void}, @limit={{0xa, 0x1, 'limit\x00'}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_LIMIT_FLAGS={0x8}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x7fff}]}}]}, {0x80, 0x1, 0x0, 0x1, [@tunnel={{0xb, 0x1, 'tunnel\x00'}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_TUNNEL_MODE={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_TUNNEL_MODE={0x8}, @NFTA_TUNNEL_MODE={0x8}, @NFTA_TUNNEL_MODE={0x8}, @NFTA_TUNNEL_DREG={0x8}, @NFTA_TUNNEL_MODE={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_TUNNEL_DREG={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TUNNEL_DREG={0x8, 0x2, 0x1, 0x0, 0x10}]}}, @flow_offload={{0x11, 0x1, 'flow_offload\x00'}, @void}, @synproxy={{0xd, 0x1, 'synproxy\x00'}, @void}, @dup={{0x8, 0x1, 'dup\x00'}, @void}]}, {0x1c, 0x1, 0x0, 0x1, [@meta={{0x9, 0x1, 'meta\x00'}, @void}, @socket={{0xb, 0x1, 'socket\x00'}, @void}]}, {0x7c, 0x1, 0x0, 0x1, [@hash={{0x9, 0x1, 'hash\x00'}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_HASH_SEED={0x8, 0x5, 0x1, 0x0, 0x80}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x17}, @NFTA_HASH_MODULUS={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0xc}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_HASH_SEED={0x8, 0x5, 0x1, 0x0, 0x40}]}}, @cmp={{0x8, 0x1, 'cmp\x00'}, @void}, @match={{0xa, 0x1, 'match\x00'}, @void}, @connlimit={{0xe, 0x1, 'connlimit\x00'}, @void}, @bitwise={{0xc, 0x1, 'bitwise\x00'}, @void}]}]}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}, @NFTA_RULE_EXPRESSIONS={0x250, 0x4, 0x0, 0x1, [{0x94, 0x1, 0x0, 0x1, [@ct={{0x7, 0x1, 'ct\x00'}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}]}}, @dup={{0x8, 0x1, 'dup\x00'}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xb88d2825bd7cef1}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x8}]}}, @target={{0xb, 0x1, 'target\x00'}, @void}, @byteorder={{0xe, 0x1, 'byteorder\x00'}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0xd}]}}, @byteorder={{0xe, 0x1, 'byteorder\x00'}, @void}]}, {0x10, 0x1, 0x0, 0x1, [@payload={{0xc, 0x1, 'payload\x00'}, @void}]}, {0xc4, 0x1, 0x0, 0x1, [@limit={{0xa, 0x1, 'limit\x00'}, @void}, @payload={{0xc, 0x1, 'payload\x00'}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_SREG={0x8, 0x5, 0x1, 0x0, 0x10}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x7}, @NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_PAYLOAD_CSUM_OFFSET={0x8, 0x7, 0x1, 0x0, 0x4}, @NFTA_PAYLOAD_CSUM_TYPE={0x8, 0x6, 0x1, 0x0, 0x29ef6ea2abad7386}]}}, @match={{0xa, 0x1, 'match\x00'}, @val={0x64, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0xb, 0x3, "90d962a1c6ec9e"}, @NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x200}, @NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x2d7}, @NFTA_MATCH_INFO={0x34, 0x3, "746dfb44b10f28dc5ee3f0c5ef438d7f0ee746d52873f17e848253f7478b49b0fc7faa655865be3a49a0b2d1382c629b"}, @NFTA_MATCH_NAME={0x6, 0x1, ']\x00'}]}}, @match={{0xa, 0x1, 'match\x00'}, @void}]}, {0x8c, 0x1, 0x0, 0x1, [@osf={{0x8, 0x1, 'osf\x00'}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_TTL={0x5, 0x2, 0x2}, @NFTA_OSF_TTL={0x5, 0x2, 0x20}, @NFTA_OSF_FLAGS={0x8}]}}, @dup_ipv6={{0x8, 0x1, 'dup\x00'}, @void}, @queue={{0xa, 0x1, 'queue\x00'}, @void}, @reject={{0xb, 0x1, 'reject\x00'}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}]}}]}, {0x58, 0x1, 0x0, 0x1, [@hash={{0x9, 0x1, 'hash\x00'}, @void}, @hash={{0x9, 0x1, 'hash\x00'}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_HASH_OFFSET={0x8, 0x6, 0x1, 0x0, 0x5fd}, @NFTA_HASH_OFFSET={0x8}, @NFTA_HASH_OFFSET={0x8, 0x6, 0x1, 0x0, 0xff}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_HASH_TYPE={0x8}]}}, @immediate={{0xe, 0x1, 'immediate\x00'}, @void}]}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}]}], {0x14}}, 0x574}, 0x1, 0x0, 0x0, 0x8001}, 0x40)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="58000000020601031e000000000000000000000005000500020000000900020073797a30000000000500040000000000050011000600686173683a4ab91c29c3286c174d6e65742c6e6574000000000c000780080006000000000000"], 0x58}}, 0x0)

01:19:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x81, 0x7, 0x1f, [], 0x3}, {0x2, 0x8, 0x7, [], 0x4}, {0x0, 0x0, 0x0, [], 0x1}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:19:57 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0)
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, 0x0)

[  504.416670] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
01:19:57 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x8000, 0x80000001, 0x10000})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

01:19:57 executing program 5:
clock_gettime(0x0, &(0x7f0000000140))

01:19:57 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0xd, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c0000f1310fbdfbeb9a7c407867f67084c6a7c38dda19f55a399f6a7612f86eb52c889fc7656589101fe6b84a160ef144ed37b84f08e2380320420627b7c1c8239c1b48f5b0215e7ca60189827f386c6e5c469474cf6c3ce86ea22acdc7a8808b088cef4a3ac68f70f368037af0672b4fa80f5818edc05a887476488f21e14120dd7ed0a6", @ANYRES16=r4, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r5, @ANYBLOB], 0x1c}}, 0x4004040)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00'})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000500)={0x4c, 0x0, 0x0, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x3f}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x40000054)
sendmsg$NL802154_CMD_NEW_INTERFACE(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x64, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0202}}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000080}, 0x4010)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0)='802.15.4 MAC\x00', 0xffffffffffffffff)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r7, 0x0)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x64, r4, 0x8, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_PID={0x8, 0x1c, 0xffffffffffffffff}, @NL802154_ATTR_PID={0x8, 0x1c, 0xffffffffffffffff}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x80)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f0000000080)=0x3)
r8 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0xd, 0x0)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f0000000440)=0x3)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYRESHEX=r8, @ANYRES16=r1, @ANYRES64=r2, @ANYRES32=r0, @ANYBLOB], 0x1c}}, 0x0)

[  504.465863] *** Guest State ***
[  504.473289] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  504.482287] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  504.499938] CR3 = 0x00000000fffbc000
01:19:57 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="9d27006a6200000000002a0003000000", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)

[  504.511181] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:19:57 executing program 0:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$unix(r0, &(0x7f00000005c0)={&(0x7f0000000280)=@abs, 0x6e, 0x0}, 0x0)

01:19:57 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x1c, 0x0, &(0x7f00000001c0))

01:19:57 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x1, 0x1, 0x301}, 0x14}}, 0x0)

[  504.558954] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  504.579388] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  504.588472] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  504.598174] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:19:57 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00', 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYRES64=r2, @ANYBLOB="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", @ANYBLOB="01000000000000000000650000000c009900000000005f0000000800217b00000000100003800c"], 0x38}}, 0x0)
sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x7c, r3, 0x0, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @key_params=[@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x2ca0ba3bdfdb36c0}, @NL80211_ATTR_KEY={0x48, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "a302aa11e84f436d6abab2fc0b"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_MODE={0x5}, @NL80211_KEY_SEQ={0xf, 0x4, "67d0d9582e67417f24eb65"}, @NL80211_KEY_SEQ={0x9, 0x4, "a5eb342377"}]}]]}, 0x7c}, 0x1, 0x0, 0x0, 0x4c010}, 0xc008)

01:19:57 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
dup(0xffffffffffffffff)
ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r4, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000080)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x8c, r4, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_DEVKEY={0x50, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x38, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8001}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x101}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0102}}]}]}, 0x8c}}, 0x40)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c00d0ad", @ANYRES16=r2, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}}, 0x0)

01:19:57 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x3, 0x0, &(0x7f00000001c0))

[  504.636278] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  504.703986] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  504.733824] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  504.761351] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  504.810073] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  504.821422] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  504.831981] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  504.846568] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  504.859705] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  504.874203] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  504.888037] Interruptibility = 00000000  ActivityState = 00000000
[  504.906197] *** Host State ***
[  504.909703] RIP = 0xffffffff811601fe  RSP = 0xffff888095b479b8
[  504.916737] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  504.924537] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  504.932406] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  504.938540] CR0=0000000080050033 CR3=000000001cb3a000 CR4=00000000001426e0
[  504.946090] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  504.952932] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  504.958981] *** Control State ***
[  504.962410] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  504.969115] EntryControls=0000d1ff ExitControls=002fefff
[  504.974995] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  504.981911] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  504.989676] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  504.997015] Bluetooth: hci2 command 0x0409 tx timeout
[  505.003106]         reason=80000021 qualification=0000000000000000
01:19:57 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x81, 0x7, 0x1f, [], 0x3}, {0x2, 0x8, 0x7, [], 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:19:57 executing program 0:
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
syz_open_procfs$namespace(0x0, 0x0)

01:19:57 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup2(r0, r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

01:19:57 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000001c0)='vfat\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000580)={[{@uni_xlateno='uni_xlate=0'}]})

01:19:57 executing program 1:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = getpid()
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0)
sched_setattr(r1, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x68fd, 0x3, 0x3ff, 0xffffffffffff7fff, 0x100, 0x7, 0x8}, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000280)={0x0, <r2=>0x0})
tkill(r2, 0x38)
rt_tgsigqueueinfo(r1, r0, 0x13, &(0x7f0000000100)={0x0, 0x0, 0x10000})
ptrace(0x10, r0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f80000005e0000000000000000000000e8001100ac1414aa000000000000000000000000fe800000000000000000000000000000acff00010000000000000000000000007f000001000000000000000000000000000000000000000000000000ff0200000000000000000000000000017f00000100000000000000000000000000000000000000000000000000000000ac1414aa000000000000000000000000000000000000000000000000e0000002000000000000000000000000ac1414bb000000000000000000000000fe8000000000000000000000000000bbfe8000"/248], 0xf8}}, 0x0)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000080)={&(0x7f0000000040)=""/61, 0xffffff78})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000000)='NLBL_CALIPSO\x00', r4)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
timer_create(0x2, &(0x7f00000003c0)={0x0, 0x40, 0x2, @thr={&(0x7f0000000280), &(0x7f00000002c0)="3472c0b660eddda0964c9f78e3ec3733990c183b7396aaf07976b15353725edaa3a5e8a1772443b0b0056a6c0d0beaf0fa12ee30dc1a24165059155e19e3b98c68f9be605c85272718d069c9ca610cecbe7f720c44cfec70ef3ae20ee77cb7902b30902224bbd7f3bb7b8e1160af3d99397cb43eb8ba217efa78b4f4a34cdadc8ed3d0cf5d75b119b5a0150803d5fe1e3cfba74befc15d13972d56327b2f8a485d4d140001d8bc2177375f2b04f3da20a80eb8512f26565d97e65162f58ce815d69597c593"}}, &(0x7f0000000400))
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="1d0700000000000000001f00000008000300b8670936af28cdb3beff7314a2d6a2d108cc42aa8cfa946d297c719c8c183b408cebda7c8b2835dc9099d9b73fabf107", @ANYRES32=r6, @ANYBLOB="16d793b6d0942bc4c7662db645f02dfe7d41f7feb3e85155ed41be0099c577927e670c"], 0x1c}}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x68fd, 0x3, 0x3ff, 0xffffffffffff7fff, 0x100, 0x7, 0x8}, 0x0)
move_pages(0x0, 0x7, &(0x7f0000000440)=[&(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff4000/0x1000)=nil], &(0x7f0000000480)=[0x4f40, 0x4, 0x7fff, 0xbe1a88b, 0xfffffc00, 0x5, 0xca6, 0x7366, 0x200], &(0x7f00000004c0)=[0x0], 0x6)

01:19:57 executing program 2:
semtimedop(0x0, &(0x7f0000000100)=[{0x0, 0x7}], 0x1, 0x0)

[  505.009428] IDTVectoring: info=00000000 errcode=00000000
[  505.014940] TSC Offset = 0xfffffeeeaf8d6541
[  505.019457] TPR Threshold = 0x00
[  505.022873] EPT pointer = 0x000000000ff4e01e
[  505.027271] Virtual processor ID = 0x0001
01:19:57 executing program 0:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000002780)=[{}, {}], 0x2)

01:19:57 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed}, 0xe)

01:19:57 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x7, 0x6, 0x301, 0x0, 0x0, {0x7}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x3}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x9}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000000}, 0x20004080)

[  505.154604] FAT-fs (loop5): bogus number of reserved sectors
[  505.161096] FAT-fs (loop5): Can't find a valid FAT filesystem
[  505.198964] *** Guest State ***
01:19:57 executing program 5:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000)='ns/user\x00')
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0)

[  505.219786] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  505.257043] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:19:57 executing program 0:
prctl$PR_GET_TSC(0xf, &(0x7f0000000000))

01:19:57 executing program 2:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/handlers\x00', 0x0, 0x0)

[  505.288177] CR3 = 0x00000000fffbc000
[  505.292079] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  505.311751] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  505.337884] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  505.357680] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  505.376207] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.399314] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.407719] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.420157] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.429207] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.437972] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  505.446822] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  505.455592] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  505.465269] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  505.474653] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  505.481235] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  505.489545] Interruptibility = 00000000  ActivityState = 00000000
[  505.496233] *** Host State ***
[  505.499417] RIP = 0xffffffff811601fe  RSP = 0xffff88809386f9b8
[  505.506387] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  505.513737] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  505.521533] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  505.528225] CR0=0000000080050033 CR3=000000003a7d6000 CR4=00000000001426e0
[  505.535746] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  505.544627] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  505.550691] *** Control State ***
[  505.554848] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  505.561505] EntryControls=0000d1ff ExitControls=002fefff
[  505.567758] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  505.575596] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  505.582261] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  505.589737]         reason=80000021 qualification=0000000000000000
01:19:58 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0)
fcntl$dupfd(r1, 0x0, r0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000140)={0xffc}, 0x0, 0x0)

01:19:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x81, 0x7, 0x1f, [], 0x3}, {0x0, 0x8, 0x7, [], 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:19:58 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000280), 0x14)

01:19:58 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x4, &(0x7f00000003c0)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}]}, &(0x7f0000000340)='GPL\x00', 0x5, 0xf4, &(0x7f0000000440)=""/244, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  505.596619] IDTVectoring: info=00000000 errcode=00000000
[  505.602061] TSC Offset = 0xfffffeee4c83118c
[  505.607110] TPR Threshold = 0x00
[  505.610472] EPT pointer = 0x00000000a25ae01e
[  505.615640] Virtual processor ID = 0x0001
[  505.737172] *** Guest State ***
[  505.740919] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  505.756241] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  505.765985] CR3 = 0x00000000fffbc000
[  505.769713] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  505.780231] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  505.788500] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  505.799100] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  505.808253] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.817165] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.825722] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.833940] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.841904] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  505.849977] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  505.858061] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  505.867200] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  505.875490] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
01:19:58 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080)='nbd\x00', r0)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80000}, 0x20008040)

01:19:58 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0xbc, 0x1, 0x7, 0x801, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x10000}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7fffffff}, @NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x20}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x17ca277c}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xfd6b}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x4}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}, @NFACCT_BYTES={0xc}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0xbc}, 0x1, 0x0, 0x0, 0x40000}, 0x20081008)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000640)='/dev/btrfs-control\x00', 0xd0400, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=@gettaction={0x78, 0x32, 0x20, 0x70bd26, 0x25dfdbff, {}, [@action_gd=@TCA_ACT_TAB={0x4}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0xc, 0x11, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x81}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0x10, 0xa, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0xe, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x101}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000040}, 0x800)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f00000004c0)={&(0x7f0000000400), 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0x1, 0x7, 0x3, 0x0, 0x0, {0xc, 0x0, 0x8}, [@NFACCT_FILTER={0x14, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8}]}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x20008010}, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000380)={'syz_tun\x00', {0x2, 0x0, @empty}})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r4, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x44, 0x2, 0x3, 0x401, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFQA_CFG_CMD={0x8, 0x1, {0x2, 0x0, 0x2b}}, @NFQA_CFG_CMD={0x8, 0x1, {0x0, 0x0, 0xf}}, @NFQA_CFG_CMD={0x8, 0x1, {0x4, 0x0, 0x2b}}, @NFQA_CFG_CMD={0x8, 0x1, {0x4, 0x0, 0x26}}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x2d}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004000}, 0x8041)
setsockopt$sock_int(r3, 0x1, 0x2, &(0x7f00000003c0)=0x6, 0x4)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000cc0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000a00)={0x260, 0x1, 0x2, 0x5, 0x0, 0x0, {0x0, 0x0, 0x1}, [@CTA_EXPECT_MASTER={0xb8, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @private0}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xb4}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, [], 0x2e}}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_MASK={0x80, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @empty}}}]}, @CTA_EXPECT_NAT={0x114, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x44, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @private0={0xfc, 0x0, [], 0x1}}}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x34, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x81}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @remote}}}]}, @CTA_EXPECT_NAT_TUPLE={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, [], 0x44}}, {0x14, 0x4, @private2}}}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0xc, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_NAT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x80}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}]}]}, 0x260}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r5 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0xd, 0x0)
ioctl$VIDIOC_S_INPUT(r5, 0xc0045627, &(0x7f0000000080)=0x3)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f00000007c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r3, &(0x7f00000002c0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0x4}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc841}, 0x0)
[  505.883541] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  505.889940] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  505.897474] Interruptibility = 00000000  ActivityState = 00000000
[  505.903785] *** Host State ***
[  505.906983] RIP = 0xffffffff811601fe  RSP = 0xffff888024fe79b8
[  505.913060] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  505.919466] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  505.927338] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000004040)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000004000)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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"/12920], 0x3278}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

01:19:58 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000100)={{{@in=@private, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@multicast1, 0x0, 0x3c}, 0x0, @in=@local, 0x0, 0x4}}, 0xe8)

01:19:58 executing program 0:
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bsg\x00', 0x608a01, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)=@dellinkprop={0x6c, 0x6d, 0x200, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x1, 0x16200}, [@IFLA_PORT_SELF={0x40, 0x19, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "4e78e923fd235916cd54544b3968c158"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "ec9ea388d4137a0c5d657fc582925562"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "6566ea5aabba03488cc1cf4ed8b33f19"}]}, @IFLA_BROADCAST={0xa, 0x2, @random="500ab9b7e730"}]}, 0x6c}}, 0x0)

[  505.933301] CR0=0000000080050033 CR3=00000000995a3000 CR4=00000000001426e0
[  505.951334] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  505.969279] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
01:19:58 executing program 2:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x1a3801, 0x0)

01:19:58 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
sendmsg$AUDIT_USER_AVC(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)={0x1010, 0x453, 0x400, 0x70bd2c, 0x25dfdbfe, "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", ["", "", "", "", "", "", ""]}, 0x1010}, 0x1, 0x0, 0x0, 0x1}, 0x20000024)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_DELTABLE={0x24, 0x2, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8}]}, @NFT_MSG_NEWSETELEM={0x20, 0xc, 0xa, 0x201, 0x0, 0x0, {0xc, 0x0, 0xff}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x6c}, 0x1, 0x0, 0x0, 0x20080804}, 0x20004080)

[  505.986741] *** Control State ***
[  505.996588] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  506.008228] EntryControls=0000d1ff ExitControls=002fefff
[  506.014302] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  506.030881] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:19:58 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x5, 0x0, &(0x7f00000001c0))

[  506.053779] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  506.083682]         reason=80000021 qualification=0000000000000000
01:19:58 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000000bc0)={&(0x7f0000000340)=@sco, 0x80, &(0x7f0000000b00)=[{0x0}, {&(0x7f00000004c0)=""/230, 0xe6}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000c40)='nl80211\x00', r0)

[  506.109860] IDTVectoring: info=00000000 errcode=00000000
[  506.128413] TSC Offset = 0xfffffeee01404b9a
[  506.147717] TPR Threshold = 0x00
01:19:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x81, 0x7, 0x1f, [], 0x3}, {0x0, 0x0, 0x7, [], 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  506.171240] EPT pointer = 0x0000000052f4d01e
[  506.181328] Virtual processor ID = 0x0001
[  506.260117] *** Guest State ***
[  506.267192] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  506.278386] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  506.290636] CR3 = 0x00000000fffbc000
[  506.300132] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  506.306678] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  506.314167] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  506.321021] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  506.330127] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.338685] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.347046] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.355787] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.364252] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.372221] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  506.381001] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  506.389457] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  506.397875] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  506.406331] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  506.413301] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  506.420750] Interruptibility = 00000000  ActivityState = 00000000
[  506.427882] *** Host State ***
[  506.431085] RIP = 0xffffffff811601fe  RSP = 0xffff8880292579b8
[  506.437798] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  506.444382] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  506.452247] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  506.458255] CR0=0000000080050033 CR3=000000004fdac000 CR4=00000000001426e0
[  506.465339] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  506.471992] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  506.478125] *** Control State ***
[  506.481574] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  506.488441] EntryControls=0000d1ff ExitControls=002fefff
[  506.493962] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  506.500885] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:19:59 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8911, &(0x7f0000000180)={'wlan1\x00'})

01:19:59 executing program 4:
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000000)=0x1, 0x4)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

01:19:59 executing program 0:
semtimedop(0x0, &(0x7f0000000100)=[{}], 0x1, &(0x7f0000000180))

01:19:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="2469e2c9d9e646d072ed2a0d6508010000", @ANYRES16=0x0, @ANYBLOB="020028bd7000fcdbdf251800000078002580240003005c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a1800018005000200000000000c0005000300000000000000140004005533d3fd8c95cb5832f42b02dabc408c240001800c000500000000000000000008000100000000000c00050000800000000000006c0025802400030005160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746100001800c000500ff7f0000000000003400018005000200010000000800040008000000100003800c0004000200aaaaaaaaaaaa050002000200000008000400c500000008000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=r2, @ANYBLOB], 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r4=>0x0})
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x11, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x14)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x44, r1, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x20000000)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r8=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r7, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}}, 0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000004340)='802.15.4 MAC\x00', r9)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x38, r10, 0x601, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x1}]}, 0x38}}, 0x0)
sendmsg$IEEE802154_SET_MACPARAMS(r6, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)={0x48, r10, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x5}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0x40}, @IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x9}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x30}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0xf8}]}, 0x48}, 0x1, 0x0, 0x0, 0x40801}, 0x4000004)

01:19:59 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x81, 0x7, 0x1f, [], 0x3}, {0x0, 0x0, 0x0, [], 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  506.507982] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  506.514773]         reason=80000021 qualification=0000000000000000
[  506.521170] IDTVectoring: info=00000000 errcode=00000000
[  506.526690] TSC Offset = 0xfffffeedb99ccd71
[  506.531007] TPR Threshold = 0x00
[  506.534448] EPT pointer = 0x000000001a4c901e
[  506.538854] Virtual processor ID = 0x0001
01:19:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, 0x0, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}]}, 0x1c}}, 0x20040000)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00'})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x20, r1, 0x800, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x20}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, r1, 0x20, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x190}, 0x60004)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000280)={'wpan4\x00', <r3=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x78, r1, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0x5c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x2c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xff}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0102}}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x1ff}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x24040881)

01:19:59 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000000000)='V', 0x1)

01:19:59 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0xfffffffffffffcb5, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

01:19:59 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000001140)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}, {{&(0x7f0000000700)={0x2, 0x6e21}, 0x10, 0x0, 0x0, &(0x7f00000008c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @empty}}}], 0x20}}], 0x2, 0x0)

01:19:59 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, 0x0, 0x7f4)

[  506.725026] *** Guest State ***
[  506.736867] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  506.760141] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  506.792131] CR3 = 0x00000000fffbc000
[  506.809002] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  506.819303] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  506.826886] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  506.857389] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  506.867269] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.883981] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.893434] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.901528] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.917159] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  506.942483] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  506.950543] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  506.963008] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  506.971021] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  506.979367] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  506.986440] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  506.994178] Interruptibility = 00000000  ActivityState = 00000000
[  507.000401] *** Host State ***
[  507.003677] RIP = 0xffffffff811601fe  RSP = 0xffff88809386f9b8
[  507.009647] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  507.016378] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  507.024262] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  507.030138] CR0=0000000080050033 CR3=000000003a855000 CR4=00000000001426f0
[  507.037318] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  507.044059] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  507.050115] *** Control State ***
01:19:59 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000540)={&(0x7f0000000400), 0x7, &(0x7f0000000500)={&(0x7f0000000440)=@dellinkprop={0x6c, 0x6d, 0x0, 0x0, 0x0, {}, [@IFLA_PORT_SELF={0x40, 0x19, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "4e78e923fd235916cd54544b3968c158"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "ec9ea388d4137a0c5d657fc582925562"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "6566ea5aabba03488cc1cf4ed8b33f19"}]}, @IFLA_BROADCAST={0xa, 0x2, @random="500ab9b7e730"}]}, 0x6c}}, 0x0)

01:19:59 executing program 0:
prctl$PR_GET_TSC(0x38, 0x0)

01:19:59 executing program 4:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0x7fff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/sockstat6\x00')
ioctl$USBDEVFS_SETCONFIGURATION(r2, 0x80045505, &(0x7f0000000080)=0x7f)

01:19:59 executing program 5:
r0 = socket(0x11, 0x8080a, 0x0)
sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x9c}}, 0x0)

01:19:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000)='NLBL_CIPSOv4\x00', r0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r4, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180)='nl802154\x00', r0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r0, &(0x7f00000005c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000280)={0x2c, r6, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_SHORT_ADDR={0x6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x2c}}, 0x4004)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="d4b7f1a47b713f78cd1ca10e43590a35e258c77cd09f932e5a2295677d57b2867749d5bb1de2d9d09c09b11b3d98c05a29ced8335a5bc2e091a628da649e23143e3a16c49a17c2c2f656ed71ba417d9e0df6c46019802156d55a3b35505b659add529f672646ccff75b8cfb8244373028a", @ANYRES16=r9, @ANYBLOB="35860000000000000000210000000c0006000100000001000000"], 0x20}}, 0x0)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r11=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r8, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r10, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r3, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="cb646c8b7e68000000", @ANYRES16=r6, @ANYBLOB="00042cbd7000fddbdf251500000008002100ffff000008000300", @ANYRES32=r11, @ANYBLOB="05001e000000000008001f000300000008000300", @ANYRES32=r2, @ANYBLOB="0c000600000000000000000008000300", @ANYRES32=r2, @ANYBLOB="0c00060001000000010000000c0006000200000002000000"], 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x40000)

[  507.053658] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  507.060712] EntryControls=0000d1ff ExitControls=002fefff
[  507.066721] Bluetooth: hci2 command 0x041b tx timeout
[  507.072257] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:19:59 executing program 0:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x300, 0x0)

[  507.110574] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  507.130947] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  507.162729]         reason=80000021 qualification=0000000000000000
[  507.169103] IDTVectoring: info=00000000 errcode=00000000
[  507.177414] TSC Offset = 0xfffffeed79f392fa
[  507.181758] TPR Threshold = 0x00
[  507.195168] EPT pointer = 0x0000000049df001e
01:19:59 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x81, 0x7, 0x1f, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:19:59 executing program 5:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000002780)=[{0x0, 0x0, 0x1000}], 0x1)
semctl$IPC_RMID(r0, 0x0, 0x0)

01:19:59 executing program 2:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000002780)=[{0x0, 0xed}, {}], 0x2)
semop(r0, &(0x7f0000000200)=[{0x0, 0x4000}, {0x0, 0x1, 0x1800}], 0x2)

01:19:59 executing program 0:
semtimedop(0x0, &(0x7f0000000100)=[{0x0, 0x0, 0x1000}], 0x1, 0x0)

01:19:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="0c00040001000100000000000c00040000000000000000000c00030003000000000000000c0005000c010000000000000800010000000000"], 0x84}, 0x1, 0x0, 0x0, 0x400c001}, 0x24000000)

01:19:59 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="5800000002060103000600000000000000000000050005aa14fb88f6e3158aa900020000000900020073797a000600000011000300686173683a6e65742c6e6574000000000c000780080006000000f3ffffff000000000000000000442717a326846d2dc9814037d74fe706c8e1dffd5b00637d71e67ad6a5625c772bdf9e9303d4927147"], 0x58}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000840)='/dev/btrfs-control\x00', 0x80001, 0x0)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f00000009c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000980)={&(0x7f00000008c0)={0x94, 0x7, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_COMPAT={0x44, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x60}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x2e}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x87}]}, @NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@payload={{0xc, 0x1, 'payload\x00'}, @void}, @dup_ipv6={{0x8, 0x1, 'dup\x00'}, @void}, @flow_offload={{0x11, 0x1, 'flow_offload\x00'}, @val={0x4}}]}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x800}, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000800)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000007c0)={&(0x7f0000000700)={0x8c, 0x2, 0x6, 0x101, 0x0, 0x0, {0xc, 0x0, 0xa}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_DATA={0x3c, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x7f}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x3}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x62}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xffff0e78}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x8}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x9}]}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000851}, 0x0)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ubi_ctrl\x00', 0x0, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r3, &(0x7f0000000680)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000480)={0x18c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5, 0x83, 0x1}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5, 0x83, 0x1}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}, {0x5}}]}, 0x18c}, 0x1, 0x0, 0x0, 0x4080}, 0x1)
sendmsg$IPVS_CMD_SET_CONFIG(r2, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000b80)=ANY=[@ANYBLOB="043c0000de44e553549777f70ebec035f44ab45d1582147178be15279477718b13f3f1023189a6e0590243c76b485f2a76c2c17296690f03188b0ca532a376fcb92db229c02726038ef56d3453ef07bdfc", @ANYRES16=0x0, @ANYBLOB="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"], 0x104}, 0x1, 0x0, 0x0, 0x1}, 0x80c0)

[  507.212516] Virtual processor ID = 0x0001
01:19:59 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=@dellinkprop={0x20}, 0x20}}, 0x0)

01:19:59 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x400, 0x4, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080)='nl802154\x00', r0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r5=>0x0})
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x11, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x14)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000100)={'wpan0\x00'})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000140)={0x14, r7, 0x71d, 0x3}, 0x14}, 0x1, 0x0, 0x0, 0x48055}, 0x20000000)
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x44, r7, 0x8, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000440)='nl802154\x00', r8)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x54, r3, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x7f}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SEC_ENABLED={0x5, 0x1e, 0x1}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x10004}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

[  507.352610] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'.
[  507.381115] *** Guest State ***
01:20:00 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000001a40)={{0x14}, [@NFT_MSG_DELOBJ={0x28, 0x14, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x2}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_NEWSETELEM={0x184, 0xc, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x148, 0x3, 0x0, 0x1, [{0x144, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x140, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xf, 0x1, "b9b63be8704f85d16c9bbb"}, @NFTA_DATA_VALUE={0x42, 0x1, "5a102c240b8e2c7f2089018a767ec9612b3a7d663c3813fd366f39a739a63135011cec3e4fbb87deda74b1f8e5e94d0ad9f6241411abe4c26c1309e7e1f6"}, @NFTA_DATA_VALUE={0x4d, 0x1, "56a9dea97ef61538b70108d18c2a04cfa1af41b0d3d30aae4177121cc94bfe9b1300b68b8191dac033b1cd0240aaac12197f3bc8926cb08d439ad8cc383a06511e423270027b3db725"}, @NFTA_DATA_VALUE={0x71, 0x1, "37778b1c7967b969dde5b6de92a240687524d9a2c3cc564a82bfe5e29d84b80928a33fb29add0cf43c5e71152df352f404da72f2b1de242f1f652daabf9c9711db2d8598c7140ad9249e2de82ecd8066cad1eda008b94f22362d1021f9042b0938e18fdc07f7d89ac730ab0d10"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}]}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}]}], {0x14}}, 0x1f0}, 0x1, 0x0, 0x0, 0x4008004}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x63008}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_DELSET={0x28, 0xb, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x40}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x52}]}, @NFT_MSG_DELOBJ={0x60, 0x14, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x6}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x60e6173fed68ff07, 0x0, 0x0, {0xa, 0x0, 0x8}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_DELSET={0x2c, 0xb, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x2}, [@NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x40}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x4}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}]}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_EXPR={0x34, 0x11, 0x0, 0x1, @payload={{0xc, 0x1, 'payload\x00'}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFTA_PAYLOAD_CSUM_FLAGS={0x8}, @NFTA_PAYLOAD_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_PAYLOAD_BASE={0x8}]}}}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xffffffffffffffff}, @NFTA_CHAIN_POLICY={0x8}]}, @NFT_MSG_DELSETELEM={0x150c, 0xe, 0xa, 0x801, 0x0, 0x0, {0xc, 0x0, 0x7}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14d0, 0x3, 0x0, 0x1, [{0x100c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_USERDATA={0x1004, 0x6, 0x1, 0x0, "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"}]}, {0x260, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_KEY_END={0x1ac, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0xa1, 0x1, "227a4a9e7580f3616f5516447735f5001c8721e545a7345d296e5acad7f7c0afb04ad9026e94afef399e1c14ae877eb5fec12cbd6625232a4a694884db8fd3bd0b16b0e1fc11290a1edc94c167ded095c5d92559d280f976c50580dd406d91bedad5c9ed2189dd3eef5adbbebb26ff2d63c3ae8c4c2abb1dc873bbddd524054b03755492a3c7f4d9c6b771d67cfd34b2d217f6d810f5e751152f8ae175"}, @NFTA_DATA_VALUE={0x43, 0x1, "cd5b20e91f6ade282ec001ba346d2dd321293fa4acbcf58d2e01c667db34c2c48b02961a56c66727d4a8e0b5e76722e9bd496d68c3c9afc8a6603b24b87bdd"}, @NFTA_DATA_VALUE={0x9c, 0x1, "cca8270fa672b3fc6877fd1314123d0c9adbfe96c449585b438652eb6888011d264bcd18023ac7e6840e574343554f080ffaba1bcacb3492505ff268cc4f542ed8e0ca4b68e670adb2f535aa677ea796dff3c5d2af78eee4ccde777521dcf36cf3741dbba9bbf24fa36225bf57f22cc50ab1da5c9e420634aef3cee0975a9cc32f6b5aac90e599d285b7773477eb3fd74049247e25764ccf"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_DATA={0x8c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x8000000000000002}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x51, 0x1, "68f51e78a7af59860ee0d6e6111d49c356e84fd918719eb055a032d4a59845810c49a8e698c0def2d3f9ecb40629dd083b5623c68db6a59d23e0c39c7cf86a859f623e7d75a39398e9fbb4ebbd"}]}]}, {0x260, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_DATA={0x128, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x44, 0x1, "4a539c1a20f65191934323bbcfd91488cbb8c531893531a451954a1d5ebae5c827db79755c5ed305a42b4a9102c62dc3a2d3f1149c3deae0ba79b6be86384af3"}, @NFTA_DATA_VALUE={0x5d, 0x1, "c5779168f3e76462f88d204deee232e651e596370a6c7bd24a5bdefd1baa28b61f8eb9e5741109c9c22c19f203efd95ba45d4e2511d718b489f2c601802b74802f7ac61460289c4a1942504734a83291cfe585d5d30250eaa4"}, @NFTA_DATA_VERDICT={0x68, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}]}, @NFTA_SET_ELEM_KEY={0xc4, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xbf, 0x1, "893fec5554a8be736508e2740a3bff32b569d026643d20a411cdde24213144f18f536396d43cc01dc6269383ae38a563dcfa90a6fcd59d1714ff47405209216470bdba6c3b2f0e4bf488f7290878e80ab70ec6653157e6a6d2091d19e4458f3c1f05a723039af7087ec517e6b545fa532ae37c593ddf77377f69bcc2e3af49369bb53e65cea6db96db89bb7dd8a7486bd3c345bdfe29436008f6fb6824facb1c4512aa17890d4003a8d452694ea970f06c2df93db9a99648151d86"}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY={0x44, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x16a8}, 0x1, 0x0, 0x0, 0x40000}, 0x90)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001c40)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x4840)

[  507.414966] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  507.432351] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:00 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x7, &(0x7f0000000000)="7f", 0x1)

01:20:00 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000740)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"], 0x20}}, 0x0)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r5, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000880)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r7, @ANYBLOB="361d43a6722040b332d5ee94417dcf60b65d57b2b9aa9ea2248cb89c9d3c6a1585bf7b1130af040ec70a8d1113b9632c7c10959ad5d2a22f850d1514e8755fe3010a85e8c858584a2981edd4cf03a174c09e2592f88510efbae8b84ab16a7b330ef3e3516bc675f67c0f10b2e4067a9beb4f58e8"], 0x1c}}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
syz_genetlink_get_family_id$nbd(&(0x7f0000000180)='nbd\x00', r8)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r9, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x78, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x6c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc5}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0)='802.15.4 MAC\x00', r3)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan3\x00'})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

[  507.485964] CR3 = 0x00000000fffbc000
[  507.500061] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  507.517879] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:00 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000002d80)=ANY=[@ANYBLOB, @ANYRES32], 0x157c}}, 0x0)

[  507.602669] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  507.611637] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  507.651704] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  507.659847] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  507.667986] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  507.676341] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  507.684927] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  507.697267] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  507.705830] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  507.714645] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  507.725441] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  507.734315] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  507.740723] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  507.748914] Interruptibility = 00000000  ActivityState = 00000000
[  507.755889] *** Host State ***
[  507.759081] RIP = 0xffffffff811601fe  RSP = 0xffff88802c98f9b8
[  507.765878] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  507.772280] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  507.780781] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  507.787342] CR0=0000000080050033 CR3=000000009922c000 CR4=00000000001426e0
[  507.795652] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  507.802312] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  507.809028] *** Control State ***
[  507.812979] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  507.819641] EntryControls=0000d1ff ExitControls=002fefff
[  507.826001] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  507.833397] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  507.840068] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:00 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x0, 0x7, 0x1f, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:00 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="5800000002060103000000000000000000000000050c0500020000000900020073797a3000000000050004000000000005000100060000001148010fd56261c465742c6e6574000000000c1c8282e0f8d2"], 0x58}}, 0x0)

[  507.847341]         reason=80000021 qualification=0000000000000000
[  507.854097] IDTVectoring: info=00000000 errcode=00000000
[  507.859537] TSC Offset = 0xfffffeed20de8775
[  507.864755] TPR Threshold = 0x00
[  507.868119] EPT pointer = 0x000000009158801e
[  507.873389] Virtual processor ID = 0x0001
[  507.929593] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'.
[  507.945333] *** Guest State ***
[  507.952023] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  507.974331] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  507.987268] CR3 = 0x00000000fffbc000
[  507.991119] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  507.997982] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  508.004432] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  508.011269] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  508.020107] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.029307] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.037761] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.046425] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.054902] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.063361] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  508.071330] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  508.080983] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  508.089480] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  508.097885] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  508.104814] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  508.112257] Interruptibility = 00000000  ActivityState = 00000000
[  508.119241] *** Host State ***
[  508.122885] RIP = 0xffffffff811601fe  RSP = 0xffff88809f6c79b8
01:20:00 executing program 2:
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', 0x0, 0x0, 0x0, 0x0, 0xf33ca72931c6adf4, &(0x7f0000001600))

[  508.128858] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  508.135951] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  508.145908] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  508.151897] CR0=0000000080050033 CR3=00000000ae710000 CR4=00000000001426e0
[  508.161873] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  508.173238] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
01:20:00 executing program 0:
syslog(0x3, &(0x7f0000000080)=""/168, 0xa8)

01:20:00 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0xb0, 0x3, 0x7, 0x101, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFACCT_FILTER={0x24, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xb14e5f90}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfd2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xaaa0}]}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}, @NFACCT_FILTER={0x54, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3baa}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfffffffb}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xcf6}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xe2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x81}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x9}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4040800}, 0x8080)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

01:20:00 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={0x0}, 0x9b}, 0x0)

01:20:00 executing program 1:
r0 = accept4$x25(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x12, 0x80800)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r3, @ANYBLOB="c01fcc34ffee6429eeaeb43a36b33f19c588bfaa74544ea41613c30c8ecd32893c2d5d052d8a8143b3129b0205e421df682e919cefb2bf906355aaa0fe22478c86e20b3c4e05abe1e787ab4d63821e7c9229a5f31dee6c8a7aaf5380b9757dec636b64637c2b1b86e219afa8f7f71888a4814199c3ec36890b6b2d12d49df7b781ce00579cf01deaa9dc88c4a2f337ab474802c7589110d377d405e1d547f251bc9254ec8d98500bf3a7050c6a3b3db2d36f1f724436e26d91b1f087ccd5349bf52ffb63eed106c191c8ad8abe57dc139d8d7757c07321a5b8d3"], 0x1c}}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000180)={<r4=>r0})
sendto$x25(r4, &(0x7f0000000240)="d95cd9f8d01541e0083ba3798c0d36936cc32747d3b4df66a2c1f558de3ed36490eb27f2323c9c9fc58a8710842cc5fd26a9ed39c2327762b4f67253b0851f4ed769b6625bc33e172a22fbf4d5ab89bf23db45c739938734643e7ee4bddf33115b870ca7140763ea65f05a1ddfa17ec94d959279776dd9e95c090b23e2c0e8b597b727727a8c2769b95285b2535d3e02943b21e5fe2d4ddda363b0fda3df81f3b28b36736e4a15ab9580681f4166227101a60a3371fbd113b93aef10d4dbb984090c1ff958f96eca174204f9600c5dc4873374063e42fbb2269a6ce7", 0xdc, 0x40440d0, 0x0, 0x0)

01:20:00 executing program 2:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000200)=[{0x0, 0x4000}, {0x0, 0x1, 0x1800}], 0x2)

[  508.185603] *** Control State ***
[  508.189127] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  508.208984] EntryControls=0000d1ff ExitControls=002fefff
[  508.226989] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  508.259807] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  508.291359] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:00 executing program 5:
r0 = socket(0x11, 0x80002, 0x0)
sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f0000000040)={&(0x7f0000000000), 0x0, &(0x7f0000000180)={0x0, 0x9c}}, 0x0)

01:20:00 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x3f0, 0x198, 0x0, 0x198, 0x198, 0x198, 0x358, 0x358, 0x358, 0x358, 0x358, 0x3, 0x0, {[{{@ip={@multicast2=0xe0000410, @broadcast, 0x0, 0x0, 'vcan0\x00', 'wg1\x00'}, 0x0, 0x158, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831866346c88621039b284c3ff45c42995560a99952bed40cf5a8b9fb6133db7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a7dbaae5592e8b15900000100", 0x8}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "631499f89a95e49806ea7f9eaecf0b0fd0691f86bb9a323cbbaffc30fb26"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'team_slave_1\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0x1c0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:system_cron_spool_t:s0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x450)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:00 executing program 1:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan3\x00'})

01:20:00 executing program 4:
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r0, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYRESHEX], 0x58}, 0x1, 0x0, 0x0, 0x81}, 0xc0000)

[  508.312448]         reason=80000021 qualification=0000000000000000
[  508.345860] IDTVectoring: info=00000000 errcode=00000000
[  508.367241] TSC Offset = 0xfffffeecd339202d
[  508.385463] TPR Threshold = 0x00
[  508.395681] x_tables: ip_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  508.408124] EPT pointer = 0x000000004678e01e
01:20:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x0, 0x0, 0x1f, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:01 executing program 0:
socketpair(0x1, 0x1, 0x0, &(0x7f0000001380))

01:20:01 executing program 5:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvram\x00', 0x2002, 0x0)
write(r0, 0x0, 0x0)
shmat(0x0, &(0x7f0000098000/0xf000)=nil, 0x0)

[  508.415814] Virtual processor ID = 0x0001
[  508.436196] x_tables: ip_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
01:20:01 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x3f0, 0x198, 0x0, 0x198, 0x198, 0x198, 0x358, 0x358, 0x358, 0x358, 0x358, 0x3, 0x0, {[{{@ip={@multicast2=0xe0000410, @broadcast, 0x0, 0x0, 'vcan0\x00', 'wg1\x00'}, 0x0, 0x158, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831866346c88621039b284c3ff45c42995560a99952bed40cf5a8b9fb6133db7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a7dbaae5592e8b15900000100", 0x8}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "631499f89a95e49806ea7f9eaecf0b0fd0691f86bb9a323cbbaffc30fb26"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'team_slave_1\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0x1c0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:system_cron_spool_t:s0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x450)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:01 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000)='nl802154\x00', r1)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r2, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r5, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r6, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r8=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}}, 0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r11=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r10, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r4, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x78, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x6c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc5}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000240)={0x2020, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}, 0x2020)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000002300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000002280)={0x44, 0x0, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_PID={0x8}, @NL802154_ATTR_PID={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_PID={0x8, 0x1c, r12}, @NL802154_ATTR_PID={0x8, 0x1c, 0xffffffffffffffff}]}, 0x44}, 0x1, 0x0, 0x0, 0x40030}, 0x20000000)

01:20:01 executing program 5:
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

01:20:01 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0x16, 0x200, 0x0, 0x4, 0x0, 0x1}, 0x40)

[  508.601704] x_tables: ip_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  508.632164] *** Guest State ***
[  508.643179] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:01 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x3f0, 0x198, 0x0, 0x198, 0x198, 0x198, 0x358, 0x358, 0x358, 0x358, 0x358, 0x3, 0x0, {[{{@ip={@multicast2=0xe0000410, @broadcast, 0x0, 0x0, 'vcan0\x00', 'wg1\x00'}, 0x0, 0x158, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831866346c88621039b284c3ff45c42995560a99952bed40cf5a8b9fb6133db7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a7dbaae5592e8b15900000100", 0x8}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "631499f89a95e49806ea7f9eaecf0b0fd0691f86bb9a323cbbaffc30fb26"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'team_slave_1\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0x1c0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:system_cron_spool_t:s0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x450)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:01 executing program 5:
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000000), 0x4)
time(&(0x7f0000000280))

01:20:01 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="c8000000", @ANYRES16=r1, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan0\x00', <r4=>0x0})
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r3, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x8004}, 0x801)

[  508.678596] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  508.717754] CR3 = 0x00000000fffbc000
01:20:01 executing program 0:
r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$TIOCMSET(r0, 0x5428, 0x0)

[  508.734518] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  508.744996] x_tables: ip_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  508.771604] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:01 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000001080)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, 0x0)

[  508.802218] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  508.835236] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  508.859812] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.886413] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.921036] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.943066] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.969110] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  508.986214] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  508.995371] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  509.005490] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  509.014924] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  509.023615] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  509.030105] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  509.038466] Interruptibility = 00000000  ActivityState = 00000000
[  509.045233] *** Host State ***
[  509.048484] RIP = 0xffffffff811601fe  RSP = 0xffff8880237ef9b8
[  509.055377] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  509.061881] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  509.070531] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  509.076515] CR0=0000000080050033 CR3=000000001b60b000 CR4=00000000001426f0
[  509.083582] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  509.090425] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  509.096643] *** Control State ***
[  509.100105] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  509.107170] EntryControls=0000d1ff ExitControls=002fefff
[  509.112676] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:01 executing program 1:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000340))
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="030008c1a6effdba77188711869045f90f42a94da93dc9034bdf38d9ea7c4a63ff2a4a89106855b90de9b8a863f6ad6652d95d850e97aee6ef0e74ce15b7875f895a90a16bf0cf6c0985b37b70ee5daf62d20f081f1912fc33161d91cbf14c5895e3b97adfae25d8fc11901e431ef38927e41d0b4cbd9d231b9c4b9bac84fa169a6ecb86da57e833d5cd55fbc18571e5d52d306fbc9103f08782e3994f79cc79be4efd4c74cf37097edffd5f52d960d0c31a45f37a39a5cf1fca44c4103e29197a85925efa91372242b7fd6aeab91a4761777b5b85cd00bd62984faafaf431164f0d0ff2ffd8c2d4a0", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000540))

01:20:01 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x3f0, 0x198, 0x0, 0x198, 0x198, 0x198, 0x358, 0x358, 0x358, 0x358, 0x358, 0x3, 0x0, {[{{@ip={@multicast2=0xe0000410, @broadcast, 0x0, 0x0, 'vcan0\x00', 'wg1\x00'}, 0x0, 0x158, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831866346c88621039b284c3ff45c42995560a99952bed40cf5a8b9fb6133db7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a7dbaae5592e8b15900000100", 0x8}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "631499f89a95e49806ea7f9eaecf0b0fd0691f86bb9a323cbbaffc30fb26"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'team_slave_1\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0x1c0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:system_cron_spool_t:s0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x450)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:01 executing program 0:
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
setns(0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x0)

01:20:01 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="340000005a0003"], 0x34}}, 0x0)

01:20:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}, {0x0, 0x0, 0x0, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:01 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_WOWLAN(r1, &(0x7f00000078c0)={0x0, 0x0, &(0x7f0000007880)={&(0x7f0000000180)=ANY=[@ANYBLOB="c41e0000033899"], 0x1ec4}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000020c0)='nl80211\x00', r1)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040)='mptcp_pm\x00', r1)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x1c, r2, 0x87368c1dad5bf3d3, 0x0, 0x0, {0x5, 0x0, 0x4000}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}]}, 0x1c}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000140)={'erspan0\x00', &(0x7f0000000040)={'syztnl2\x00', <r3=>0x0, 0x8, 0xf98, 0x5, 0x7d3, {{0x12, 0x4, 0x1, 0x4, 0x48, 0x67, 0x0, 0xca, 0x2f, 0x0, @broadcast, @empty, {[@generic={0x7, 0xb, "cd39ce13d8211094da"}, @timestamp={0x44, 0x14, 0x73, 0x0, 0x5, [0x3, 0x3, 0x6, 0x6]}, @end, @rr={0x7, 0xb, 0x6f, [@multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @generic={0x7, 0x9, "94ce0a6c0aa8a1"}]}}}}})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@local, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@private0}, 0x0, @in6=@mcast1}}, &(0x7f0000000280)=0xe8)
sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)={0x60, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

[  509.119590] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  509.126836] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  509.133469]         reason=80000021 qualification=0000000000000000
[  509.139771] IDTVectoring: info=00000000 errcode=00000000
[  509.142878] Bluetooth: hci2 command 0x040f tx timeout
[  509.145351] TSC Offset = 0xfffffeec748733f0
[  509.154767] TPR Threshold = 0x00
[  509.158119] EPT pointer = 0x000000009176d01e
[  509.162565] Virtual processor ID = 0x0001
[  509.243737] x_tables: ip_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  509.253857] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
01:20:01 executing program 2:
socketpair(0x1, 0x0, 0x8, &(0x7f0000000200))

01:20:01 executing program 5:
process_vm_readv(0x0, &(0x7f00000024c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)

01:20:01 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000480)={0x4, &(0x7f00000000c0)=[{0x20, 0x9, 0x0, 0x1f}, {0x1, 0x9c, 0x0, 0x80000000}, {0x0, 0x1, 0xfa, 0xfff}, {0x6, 0x0, 0x0, 0x5}]})

01:20:01 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="58000000020601030000000000000000000000a8ec148134337ccf0056bbd2572d13b20af721dc05c30900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e"], 0x58}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r1, &(0x7f0000000640)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000600)={&(0x7f00000003c0)={0x228, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x10000, 0x3d}}}}, [@NL80211_ATTR_IE={0x28, 0x2a, [@chsw_timing={0x68, 0x4, {0x9, 0x1}}, @link_id={0x65, 0x12, {@from_mac, @broadcast, @device_b}}, @supported_rates={0x1, 0x8, [{0xb, 0x1}, {0x9, 0x1}, {0x60, 0x1}, {0x30}, {0x36}, {0x1, 0x1}, {0x2, 0x1}, {0x9}]}]}, @NL80211_ATTR_IE={0xa1, 0x2a, [@mic={0x8c, 0x18, {0xb62, "c1b2be53b06c", @long="4f9843594a5f83775d3b1039a3115776"}}, @rann={0x7e, 0x15, {{0x1, 0x3}, 0x2, 0x4, @broadcast, 0x1, 0x3}}, @erp={0x2a, 0x1, {0x1, 0x1, 0x1}}, @ht={0x2d, 0x1a, {0x10, 0x1, 0x7, 0x0, {0x32f, 0x1235, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x400, 0x9}}, @cf={0x4, 0x6, {0x6, 0x3, 0x6, 0x1}}, @ht={0x2d, 0x1a, {0x8, 0x2, 0x1, 0x0, {0x4, 0x1800, 0x0, 0x3d8, 0x0, 0x1, 0x1, 0x2}, 0x6, 0x4, 0xc4}}, @mic={0x8c, 0x18, {0x551, "e79684622834", @long="81b8a0e1088a4a34d799c04f27bdff2a"}}, @mesh_config={0x71, 0x7, {0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x10}}, @chsw_timing={0x68, 0x4, {0x6, 0xffc1}}]}, @NL80211_ATTR_IE={0xb, 0x2a, [@ibss={0x6, 0x2, 0x1}, @dsss={0x3, 0x1, 0x84}]}, @NL80211_ATTR_IE={0x21, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x0, 0x0, 0x6, 0x7}}, @rann={0x7e, 0x15, {{0x1, 0x7}, 0xa0, 0x0, @broadcast, 0x1, 0xfffffff7, 0x3}}]}, @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "f1e77bee9e67"}, @NL80211_ATTR_FILS_ERP_RRK={0x69, 0xfc, "7302924b45185bc94df19757a4179d58cf38464bc14614fb76c6d6d4abcc86b2a34efa86569eed86277561595b4896ccb08cec598aac755e568dbff7128986508b9cb62b287fdec9984f790a515096e1eba92289cf3b3302ab24f59b39506c73436e2e806d"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "9041f8caaae7e9"}], @fils_params=[@NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x8000}, @NL80211_ATTR_FILS_ERP_REALM={0x4}, @NL80211_ATTR_FILS_ERP_USERNAME={0xc, 0xf9, "554fb06c53ee399b"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x9}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x65b7}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x5}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x6}, @NL80211_ATTR_FILS_ERP_REALM={0x4d, 0xfa, "c6cd3373419cb63039a3520f51ce8dd6732781d7e1c72f4a63265971c3f5765e3106357b4f4dd2091d5bd8434e33e00b0a91a4d776f1faddb0ee8b872e206e550f11315be4411081e1"}]]}, 0x228}, 0x1, 0x0, 0x0, 0x85}, 0x2404c012)
sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x64, 0x1, 0x7, 0x201, 0x0, 0x0, {0xc, 0x0, 0x1}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3f}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xff}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x20040890)
r2 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x9, 0x1019c0)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2060200}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c0000000206010260fea84300000000c2aaa8320500010007001c18a6441587506fa162ca7c220000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x20040801)

[  509.364543] *** Guest State ***
[  509.376370] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:02 executing program 2:
r0 = gettid()
process_vm_readv(r0, &(0x7f0000000040)=[{&(0x7f0000000b00)=""/4096, 0x1000}], 0x1, &(0x7f00000003c0)=[{&(0x7f0000000340)=""/38, 0x26}, {&(0x7f0000000140)=""/197, 0xc5}, {&(0x7f0000001b00)=""/102400, 0x19000}], 0x3, 0x0)

[  509.408926] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  509.448447] CR3 = 0x00000000fffbc000
01:20:02 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r0, &(0x7f0000003640)=[{{&(0x7f0000000140)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000000400)=[{0x0}, {&(0x7f0000000200)=""/240, 0xf0}], 0x2, &(0x7f0000000480)=""/58, 0x3a}}], 0x1, 0x2, &(0x7f0000003800)={0x0, 0x3938700})
sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x4}, 0x14}}, 0x0)

01:20:02 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={0x0, 0xffffff7f}}, 0x0)

[  509.454065] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'.
[  509.467005] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  509.491109] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000480)={{{@in6=@ipv4={[], [], @remote}, @in6=@private0}}, {{@in=@private}, 0x0, @in6=@private1}}, 0xe8)

01:20:02 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xf8, 0x0, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9310}]}, @TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffe00}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xc8}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x401}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2653d7dd}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}]}, 0xf8}}, 0x20004)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600ffff10000300686173683a6e65742c6e6574000000000008000000000038d9a8f255af67839707e26be949487b5bdb994128308c0f10301b723856968a34e382a40ac68d2d37a6f4347f4b67990bbdd19e3a352c7824b21cc8be83de34ec95a3c12d969bde04b075643db466956075aa343ca86da71d9bb1464dce577add166b382c44c767f8f7b33002f05951bfd052dd44cd50490ff6c2b8b9b59fb34c1ad7322e6760cad4f9dc5b591b0b653184"], 0x58}}, 0x0)

[  509.522806] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
01:20:02 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8912, &(0x7f0000000180)={'wlan1\x00'})

[  509.575900] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  509.608159] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  509.638958] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  509.670587] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  509.706534] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  509.726833] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  509.748462] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  509.765458] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  509.773624] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  509.781680] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  509.791431] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  509.798563] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  509.806591] Interruptibility = 00000000  ActivityState = 00000000
[  509.813461] *** Host State ***
[  509.816752] RIP = 0xffffffff811601fe  RSP = 0xffff88809315f9b8
[  509.824511] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  509.831150] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  509.839754] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  509.846191] CR0=0000000080050033 CR3=000000009c238000 CR4=00000000001426e0
[  509.853828] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  509.860594] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  509.871166] *** Control State ***
[  509.875158] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  509.881924] EntryControls=0000d1ff ExitControls=002fefff
[  509.888274] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  509.895755] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  509.903405] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  509.910072]         reason=80000021 qualification=0000000000000000
01:20:02 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x4, 0x9, 0xff, [], 0x8d}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:02 executing program 2:
timer_create(0x0, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000000c0))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{}, {0x0, 0x989680}}, &(0x7f0000000340))

01:20:02 executing program 0:
syz_emit_ethernet(0x2a, &(0x7f00000010c0)={@empty, @remote, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @remote, @loopback, @random="d22e6e7013bd", @remote}}}}, 0x0)

01:20:02 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="c00000000206010400000000000000000500000305000500020000000c000780050014001f0000001c00078008000a4000000046060004404e220000080013400000000305000500019c3943e000020073797a300000000048000780050007008400000008000940000000010800084000000010060004404e2200000800094000000101050014000100000008000a40000000030c000180080001400a01010216000300686173683a6e657400000005000500010000000000000000000000009cc4132e6008851e1bd2eb2b515ef9788e586126930997f3ae75f5"], 0xc0}, 0x1, 0x0, 0x0, 0x8000000}, 0x20000000)

01:20:02 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8971, &(0x7f0000000180)={'wlan1\x00'})

[  509.917286] IDTVectoring: info=00000000 errcode=00000000
[  509.923314] TSC Offset = 0xfffffeec116abc47
[  509.927721] TPR Threshold = 0x00
[  509.931160] EPT pointer = 0x00000000a315e01e
[  509.936862] Virtual processor ID = 0x0001
01:20:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f00000005c0)={0x0, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x88)

01:20:02 executing program 0:
modify_ldt$write2(0x11, &(0x7f0000000080)={0x34a1}, 0x10)

[  510.030660] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.4'.
[  510.075053] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.4'.
01:20:02 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x80044501, &(0x7f0000000640)=""/88)

[  510.121021] *** Guest State ***
01:20:02 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed}, 0xe)

01:20:02 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="58000000020601030000000000000000000000000500050002f42b6ac3a3b7d40000000900020073797a300000000005001400000000050001000600000011000300686173683a6e65642c6e6574000000000c00078008000600"], 0x58}}, 0x0)

[  510.142752] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:02 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x16, 0x0, &(0x7f00000001c0))

[  510.190086] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:02 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x80044501, &(0x7f0000000640)=""/88)

[  510.232088] CR3 = 0x00000000fffbc000
[  510.245108] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  510.258785] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'.
[  510.272750] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  510.293095] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  510.318009] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  510.336347] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  510.363275] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  510.387010] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  510.408462] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  510.416605] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  510.425010] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  510.434874] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  510.443193] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  510.451287] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  510.460023] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  510.469394] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  510.478403] Interruptibility = 00000000  ActivityState = 00000000
[  510.487373] *** Host State ***
[  510.490642] RIP = 0xffffffff811601fe  RSP = 0xffff888038aa79b8
[  510.498496] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  510.508404] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  510.517804] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  510.526417] CR0=0000000080050033 CR3=000000008dea1000 CR4=00000000001426f0
[  510.535138] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  510.541867] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  510.550708] *** Control State ***
[  510.555712] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  510.565499] EntryControls=0000d1ff ExitControls=002fefff
[  510.571012] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  510.579553] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x0, 0x9, 0xff, [], 0x8d}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:03 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x12, 0x0, &(0x7f00000001c0))

01:20:03 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000040206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c0007ff01000037b3f23d951a45432d41ee9be6a63bee97f886c948ea2a55394445ebbc9756ddd6e28cff9d7a4828"], 0x58}}, 0x0)

01:20:03 executing program 0:
r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$TCSETS2(r0, 0x541a, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "3877381f8f0cbaf06393c178098bd838144bfa"})

01:20:03 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockname(r0, &(0x7f00000007c0)=@nfc_llcp, &(0x7f0000000840)=0x80)

[  510.589610] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  510.597808]         reason=80000021 qualification=0000000000000000
[  510.606862] IDTVectoring: info=00000000 errcode=00000000
[  510.613868] TSC Offset = 0xfffffeebaa674104
[  510.618306] TPR Threshold = 0x00
[  510.621709] EPT pointer = 0x00000000a619601e
[  510.628921] Virtual processor ID = 0x0001
01:20:03 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = accept4(r0, &(0x7f0000000000)=@qipcrtr, &(0x7f0000000080)=0x80, 0x81000)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x3, 0x3, 0x0, 0x0, 0x0, {0xc}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0xffff7fff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0xe7206244e3b15437)
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0xd, 0x0)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f0000000080)=0x3)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYRESOCT=r0], 0x58}}, 0x9004)

01:20:03 executing program 5:
r0 = inotify_init()
inotify_add_watch(r0, 0x0, 0x4000e06)

01:20:03 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0xff47, 0x0, 0x0, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x4c}}, 0x0)

01:20:03 executing program 2:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)

[  510.808343] *** Guest State ***
[  510.827625] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:03 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000740)={'wpan1\x00'})

01:20:03 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x22314aa, &(0x7f00000003c0)=ANY=[])

01:20:03 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r2, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x20, 0x1, 0x4, 0x201, 0x0, 0x0, {0xc, 0x0, 0xa}, [@NFULA_CFG_MODE={0xa, 0x2, {0x5, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x90)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYRESDEC=r0], 0x224}, 0x1, 0x0, 0x0, 0x20048881}, 0x4004084)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="44000000020601080000000000000000010000060d000300686173683a6e6574000000000d0003006c6973743a7365740000000005000100070000000500040000000400"], 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x1)

[  510.864600] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  510.925639] CR3 = 0x00000000fffbc000
[  510.941684] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  510.961006] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  510.989252] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  511.021681] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  511.042393] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.051693] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.082271] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.090283] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.104725] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.123046] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  511.131049] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  511.139605] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  511.148948] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  511.157218] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  511.164053] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  511.171628] Interruptibility = 00000000  ActivityState = 00000000
[  511.178134] *** Host State ***
[  511.181332] RIP = 0xffffffff811601fe  RSP = 0xffff88809ba979b8
[  511.187607] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  511.194346] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  511.202146] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  511.208333] CR0=0000000080050033 CR3=0000000038881000 CR4=00000000001426f0
[  511.215792] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  511.222250] Bluetooth: hci2 command 0x0419 tx timeout
[  511.223259] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  511.233912] *** Control State ***
[  511.237366] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  511.245019] EntryControls=0000d1ff ExitControls=002fefff
[  511.250526] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  511.258473] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  511.265852] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  511.273132]         reason=80000021 qualification=0000000000000000
[  511.279501] IDTVectoring: info=00000000 errcode=00000000
[  511.285964] TSC Offset = 0xfffffeeb4a33eb42
[  511.290337] TPR Threshold = 0x00
01:20:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x0, 0x0, 0xff, [], 0x8d}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:03 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x80084502, &(0x7f0000000640)=""/88)

01:20:03 executing program 5:
semtimedop(0x0, &(0x7f0000000100)=[{}, {0x0, 0x0, 0x1000}], 0x2, 0x0)

01:20:03 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x43, 0x5, 0x3f, 0x3, 0x0, 0x100, 0x0, 0xd, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000000), 0x3}, 0x40, 0x8, 0x0, 0x1, 0x7ff, 0x194b, 0xb14}, 0x0, 0xe, 0xffffffffffffffff, 0xb)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

[  511.295686] EPT pointer = 0x0000000015c2001e
[  511.300150] Virtual processor ID = 0x0001
01:20:03 executing program 0:
keyctl$join(0x1, &(0x7f0000000080)={'syz', 0x2})

01:20:04 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000683a6e65742c6e6574000000000c00078008000632fc840bd2e0149a6f5515ee4b5f5da26a9121843f47f5371dbd3c87b35b51a5e978e7f0ebbdaeec8b045db93465"], 0x58}}, 0x0)

01:20:04 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000000)=0x4, 0x4)

01:20:04 executing program 5:
creat(&(0x7f0000000300)='./file0\x00', 0x0)
io_setup(0x5ff, &(0x7f0000000040)=<r0=>0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000000)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
io_submit(r0, 0x1, &(0x7f0000000840)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}])

01:20:04 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000180)={0x17, 0x1, &(0x7f0000000200)='n'})

[  511.464054] *** Guest State ***
[  511.467382] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  511.518977] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  511.531539] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[  511.558889] CR3 = 0x00000000fffbc000
01:20:04 executing program 2:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x200c0, 0x0)

[  511.579751] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  511.619456] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:04 executing program 0:
rt_tgsigqueueinfo(0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x0, 0xf9ffffff})

[  511.644332] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  511.664917] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
01:20:04 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x2)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, 0x0)

[  511.702342] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.739295] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.769910] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.801597] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.821824] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  511.845535] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  511.861904] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  511.885381] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  511.902753] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  511.919385] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  511.935845] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  511.955954] Interruptibility = 00000000  ActivityState = 00000000
[  511.968882] *** Host State ***
[  511.976579] RIP = 0xffffffff811601fe  RSP = 0xffff88804ad279b8
[  511.989225] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  511.996416] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  512.012606] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  512.018560] CR0=0000000080050033 CR3=000000002a3dd000 CR4=00000000001426f0
[  512.031153] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  512.048508] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  512.061224] *** Control State ***
[  512.068831] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  512.076056] EntryControls=0000d1ff ExitControls=002fefff
[  512.081643] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  512.093650] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  512.100382] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  512.109616]         reason=80000021 qualification=0000000000000000
[  512.119231] IDTVectoring: info=00000000 errcode=00000000
[  512.126846] TSC Offset = 0xfffffeeaf02fe29c
[  512.131305] TPR Threshold = 0x00
[  512.137108] EPT pointer = 0x00000000aa4fd01e
[  512.141684] Virtual processor ID = 0x0001
01:20:04 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}, {0x0, 0x0, 0x0, [], 0x8d}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:04 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x5}]})

01:20:04 executing program 0:
prctl$PR_GET_TSC(0x15, 0x0)

01:20:04 executing program 2:
pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9, 0xffffffffffffffff)

01:20:04 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00', 0xffffffffffffffff)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80090002}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="340000000a0a01020000000000000000030500000000084000000000080006400000000008000a40000000030800074017e27c35"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x2404c010)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)={0x20, r2, 0x400, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x42}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x40480e0}, 0x8014)

01:20:04 executing program 5:
r0 = fork()
rt_tgsigqueueinfo(0x0, r0, 0x8, &(0x7f0000000580)={0x0, 0x0, 0x1})

01:20:04 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="740000001d00010029bd7000ffdbdf2507", @ANYRESDEC], 0x74}}, 0x0)

01:20:04 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000038c0)='nl80211\x00', r0)

[  512.325154] *** Guest State ***
[  512.342478] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  512.377538] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  512.396306] netlink: 88 bytes leftover after parsing attributes in process `syz-executor.2'.
[  512.418197] CR3 = 0x00000000fffbc000
01:20:05 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x13, 0x0, &(0x7f00000001c0))

01:20:05 executing program 0:
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0)
eventfd2(0x0, 0x0)
eventfd(0x0)
syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
select(0x86, &(0x7f0000000140), 0x0, &(0x7f00000001c0)={0x5f}, 0x0)

[  512.429935] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  512.449933] PF_BRIDGE: RTM_DELNEIGH with unknown ifindex
[  512.450037] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:05 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x9ae73fb617438892}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x19}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x84}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION_ID={0x8}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x24004041)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20004}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000020}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=@ipv6_getrule={0x1c, 0x22, 0x8, 0x70bd2a, 0x25dfdbff, {0xa, 0x0, 0x80, 0x74, 0x81, 0x0, 0x0, 0x7, 0x2}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x1)
r3 = socket(0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="2800000010000108000000000000000021d7c100", @ANYRES32=0x0, @ANYBLOB="050200000000000008001b0000000000"], 0x28}}, 0x0)
getsockname$packet(r3, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000000c0)=0x14)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="58000000020601ffffffffffffffff000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)

01:20:05 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x14, 0x0, 0x4}, 0x14}}, 0x0)

[  512.483852] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  512.512172] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  512.551737] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  512.591299] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  512.615578] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  512.649155] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  512.667334] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  512.684530] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  512.696410] bridge0: port 2(bridge_slave_1) entered disabled state
[  512.703083] bridge0: port 1(bridge_slave_0) entered disabled state
[  512.703346] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  512.738581] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  512.760584] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  512.781758] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  512.796030] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  512.812596] Interruptibility = 00000000  ActivityState = 00000000
[  512.826830] *** Host State ***
[  512.834906] RIP = 0xffffffff811601fe  RSP = 0xffff888097f7f9b8
[  512.848024] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  512.858718] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  512.862299] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  512.880812] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  512.886544] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  512.902168] CR0=0000000080050033 CR3=000000008ff9e000 CR4=00000000001426f0
[  512.917198] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  512.931756] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  512.945664] *** Control State ***
[  512.952883] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  512.967556] EntryControls=0000d1ff ExitControls=002fefff
[  512.979837] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  512.995812] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  513.010699] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  513.025792]         reason=80000021 qualification=0000000000000000
[  513.038928] IDTVectoring: info=00000000 errcode=00000000
[  513.051598] TSC Offset = 0xfffffeea7ac431ce
[  513.061604] TPR Threshold = 0x00
[  513.069824] EPT pointer = 0x0000000020c8201e
[  513.080369] Virtual processor ID = 0x0001
01:20:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x9, 0xec, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:05 executing program 5:
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
exit_group(0x0)
prctl$PR_SET_PTRACER(0x1c, r0)

01:20:05 executing program 0:
prctl$PR_GET_TSC(0x29, &(0x7f0000000000))

01:20:05 executing program 2:
r0 = socket(0x11, 0x80002, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x40000120)

01:20:05 executing program 2:
syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x101081)

01:20:05 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000000c0)={0x0, {{0x2, 0x0, @multicast1}}}, 0x88)

01:20:05 executing program 0:
getresuid(&(0x7f0000002300), 0x0, 0x0)
getresuid(&(0x7f00000024c0), &(0x7f0000002500), &(0x7f0000002540))

[  513.380805] *** Guest State ***
[  513.398533] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:06 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10)

01:20:06 executing program 0:
sched_setaffinity(0x0, 0x8, &(0x7f0000000a40))

[  513.444008] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  513.459475] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  513.480881] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  513.489556] CR3 = 0x00000000fffbc000
[  513.502318] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  513.507918] 8021q: adding VLAN 0 to HW filter on device bond0
[  513.519625] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  513.528634] 8021q: adding VLAN 0 to HW filter on device team0
[  513.529406] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  513.549450] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  513.573523] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  513.580508] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
01:20:06 executing program 0:
r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f00000006c0)="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", 0xff8}, {&(0x7f0000000240)="3d81cdcfb71f39326be70512d23386e727607d2bfd5649f7894ae39cc2bfe8eac5561ae43e00ed532f3d37a8fe326cb0b5b7e4fa92d370625837d6607551a9c96e926232a87e25cf74427fea32fd86b20c7e704658d29947a4366f2779e30a135aa1fcb18b54975d8ddc35bfd848c7cc0c25b8fb62ad11c60d6aaa8155c2aadc3d4b0022413e5f4e5606d348461d026dbe0d850d3e20201582b700cf39bd4c09b2389e9182ab7484241aa7d9c7d5ecc52cad7f44f7ca5684e3adb80c8df58d63c9eb5a", 0xc3, 0x80000001}, {0x0}, {0x0}], 0x241000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d312c756e695f786c6174653d302c7375626a5f757365723d2c7063723d30303030303030303030303030303030303036312cf26f6f74636f6e746578743d726f6f742c00"])

[  513.603136] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  513.625659] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  513.644418] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:06 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006", @ANYRES32, @ANYRESDEC], 0x58}}, 0x0)

01:20:06 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x7, 0x1, 0x201}, 0x14}}, 0x0)

[  513.699460] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  513.729613] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  513.750699] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  513.780667] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  513.793752] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  513.811313] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  513.819835] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  513.827011] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  513.836010] Interruptibility = 00000000  ActivityState = 00000000
[  513.842849] *** Host State ***
[  513.846132] RIP = 0xffffffff811601fe  RSP = 0xffff88808d60f9b8
[  513.856284] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  513.863764] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  513.877147] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  513.883184] CR0=0000000080050033 CR3=000000009a87c000 CR4=00000000001426f0
[  513.895375] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  513.902192] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  513.908294] *** Control State ***
[  513.911786] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  513.919110] EntryControls=0000d1ff ExitControls=002fefff
[  513.924718] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  513.931686] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  513.939214] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:06 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x0, 0xec, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:06 executing program 2:
socketpair(0x1, 0x1, 0x0, &(0x7f0000001380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xb8}}, 0x11)

01:20:06 executing program 0:
socketpair(0x1, 0x0, 0x0, &(0x7f0000000200))

01:20:06 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="e1f36ea3120887312ee2f26089b03a858ec824f875e551cc33eb48356a757c96af83b999f0dfe74ff66a565c7e80bd32d2d2b8218a89e24a01011af010bb4a53604205fa0d14833fc687fb88ff26e1c62d7970828ee8d985aa653e1c5dd43d5e713fc5ed1d59d4fc80510e4efa52d5c003a7ae211c6693"], 0x58}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)={0x240, 0x1, 0x1, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@CTA_NAT_DST={0xbc, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @remote}, @CTA_NAT_PROTO={0x4c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_PROTO={0x2c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_PROTO={0x24, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}]}]}, @CTA_SEQ_ADJ_ORIG={0x3c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4b}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x100}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_ORIG={0x14, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_SEQ_ADJ_REPLY={0xc, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}]}, @CTA_NAT_SRC={0x114, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @remote}, @CTA_NAT_V6_MINIP={0x14, 0x4, @dev={0xfe, 0x80, [], 0x1d}}, @CTA_NAT_PROTO={0x2c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_PROTO={0x4c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @remote}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_PROTO={0x3c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}]}]}]}, 0x240}, 0x1, 0x0, 0x0, 0x10}, 0x80)

01:20:06 executing program 5:
r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$TIOCMSET(r0, 0x545d, &(0x7f0000000040))

[  513.946342]         reason=80000021 qualification=0000000000000000
[  513.953233] IDTVectoring: info=00000000 errcode=00000000
[  513.958733] TSC Offset = 0xfffffee9e9f06290
[  513.964653] TPR Threshold = 0x00
[  513.968074] EPT pointer = 0x00000000a8e5f01e
[  513.974289] Virtual processor ID = 0x0001
01:20:06 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x58}}, 0x0)

01:20:06 executing program 2:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8)
fcntl$lock(r0, 0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

01:20:06 executing program 0:
syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)

01:20:06 executing program 5:
syz_emit_ethernet(0x12, &(0x7f0000000000)={@local, @link_local, @val={@void, {0x806}}}, 0x0)

[  514.126371] *** Guest State ***
[  514.145835] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:06 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f0000000040), 0x4)

[  514.173419] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  514.189488] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:06 executing program 4:
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x2000, 0x15800})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073794e30000000000500040000000000055601000600000011000300686173683a6e65742c6e65f0edc60075964945cf828b1716f8a2d50e17257a6ded83e8cd78f02540f8cc45285cb454676723d06fc176a8ada2ac121ee6da23dce8e8333a58c25de49b1d278bc977b923f7a19ca5a7fe47795428f301d131826e178180020e2a6a3a74bd73ef7fc0c7f63927b873555fd66f57b86c8c4c2a24"], 0x58}}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan4\x00', <r2=>0x0})
r3 = socket$bt_rfcomm(0x1f, 0xf1a7db30a6e5ac26, 0x3)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x20, 0x4, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000240)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x880)

[  514.221597] CR3 = 0x00000000fffbc000
[  514.234518] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:06 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={0x0}}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r1, &(0x7f0000001900)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000018c0)={&(0x7f0000001880)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
socket$inet(0x2, 0x3, 0x1)

[  514.266570] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  514.286030] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  514.300358] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[  514.310236] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  514.338229] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[  514.341247] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  514.363567] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  514.371664] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  514.409026] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  514.435494] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  514.452664] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  514.474854] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  514.515303] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  514.525527] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  514.534830] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  514.541323] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  514.549435] Interruptibility = 00000000  ActivityState = 00000000
[  514.556055] *** Host State ***
[  514.559342] RIP = 0xffffffff811601fe  RSP = 0xffff88808de4f9b8
[  514.565539] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  514.572139] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  514.580026] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  514.586228] CR0=0000000080050033 CR3=000000009ca3d000 CR4=00000000001426e0
[  514.593579] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  514.600328] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  514.606601] *** Control State ***
[  514.610133] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  514.617007] EntryControls=0000d1ff ExitControls=002fefff
[  514.623182] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  514.630206] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  514.637105] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  514.643951]         reason=80000021 qualification=0000000000000000
[  514.650397] IDTVectoring: info=00000000 errcode=00000000
[  514.656089] TSC Offset = 0xfffffee98328be9f
[  514.660499] TPR Threshold = 0x00
01:20:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}, {0x0, 0x0, 0x0, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:07 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
poll(&(0x7f00000000c0)=[{r0}], 0x1, 0xff)

01:20:07 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000480)={0x2, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x1f}, {0x6}]})

01:20:07 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x2, 0x6, 0x0, 0x0, 0x0, {0x0, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004000}, 0x800)

01:20:07 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet_udp_int(r0, 0x11, 0x1, &(0x7f0000000000), &(0x7f0000000080)=0xffffffffffffffc0)

[  514.664092] EPT pointer = 0x0000000021d8a01e
[  514.668581] Virtual processor ID = 0x0001
01:20:07 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x32, 0x0, &(0x7f00000001c0))

01:20:07 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="58000000020601031e76bbc39a0d290900000000050005000200e0659808020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e65fc060000000c000580080006"], 0x58}}, 0x0)

[  514.811018] audit: type=1326 audit(1616030407.384:92): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=6710 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x465f69 code=0x0
01:20:07 executing program 0:
prctl$PR_GET_TSC(0x26, 0x0)

[  514.851713] *** Guest State ***
[  514.859687] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:07 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x19, 0x0, &(0x7f00000001c0))

[  514.894300] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  514.923637] CR3 = 0x00000000fffbc000
[  514.935189] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:07 executing program 0:
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x2000, 0x1)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

[  514.948172] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'.
[  514.968469] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:07 executing program 2:
syz_emit_ethernet(0x20000012, &(0x7f0000000000)={@local, @link_local, @val={@void}}, 0x0)

01:20:07 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r0, 0x55330000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xec, 0x2, 0x6, 0x201, 0x0, 0x0, {0xc, 0x0, 0x5}, [@IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x9}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e24}, @IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0xfffffffd}, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0={0xfc, 0x0, [], 0x1}}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x3}, @IPSET_ATTR_DATA={0x3c, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x9}, @IPSET_ATTR_SIZE={0x8}, @IPSET_ATTR_NETMASK={0x5}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_LINENO={0x8}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xffffffff}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x20}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x38, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x2}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x8000}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x4008041}, 0x80c4)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a30000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c000780080006"], 0x58}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, 0x140a, 0x0, 0x70bd2d, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x18}, 0x1, 0x0, 0x0, 0x44000}, 0x4014)

[  515.014873] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  515.062590] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  515.101411] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.125016] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.159366] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.180161] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.209675] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.227732] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  515.236147] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  515.244637] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  515.252731] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  515.260752] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  515.267422] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  515.278858] Interruptibility = 00000000  ActivityState = 00000000
[  515.287839] *** Host State ***
[  515.291087] RIP = 0xffffffff811601fe  RSP = 0xffff8880531479b8
[  515.297162] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  515.303679] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  515.311519] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  515.317799] CR0=0000000080050033 CR3=000000004ad29000 CR4=00000000001426f0
[  515.325086] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  515.331803] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  515.337970] *** Control State ***
[  515.341467] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  515.348237] EntryControls=0000d1ff ExitControls=002fefff
[  515.353958] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  515.360918] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  515.367749] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  515.374486]         reason=80000021 qualification=0000000000000000
01:20:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x1f, 0x20, 0x1, [], 0xf1}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:08 executing program 5:
openat$hwrng(0xffffffffffffff9c, 0xfffffffffffffffd, 0x0, 0x0)

01:20:08 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)={0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

01:20:08 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x9, 0x0, &(0x7f00000001c0)=0xffffffffffffff95)

01:20:08 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)={0xd4, 0x0, 0x7, 0x404, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_FILTER={0x5c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x81}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x800}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x200}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x400}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x4b}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3ee8}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xfffffffb}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x10000}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x101}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x8000}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x10000}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FILTER={0x24, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x20}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1003}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0xc090}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="580000000206010300000000000000000000000005000500020000000900020073797a2e000000000500040000000000050001000600000011000300686173683a6e65742c6e6574000000000c0007800800062f153fe0ea372202187f69e5a3cfc1245822bb25cf33bf1ee6c0f1c898bade4c2583d91e26ebb9354b187b968ef2a7cb46287c2daae363c3fef2d94fdb20c06ed9a0c55f3a4ab36b64f8d7c939e0abfa747d1d4e0fc251095ef152660818d100000000000080010b86e39ad6ae4b831422126f9c86ac4e91b15ef6cd35d95b923e5d5d1dbefcd725ff364389baa02379594b7a2877c8bca63a5d1bb50760bcaf"], 0x58}}, 0x0)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x40, 0x7, 0x6, 0x201, 0x0, 0x0, {0xa}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x401}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x4844}, 0x20004000)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000003a00)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000039c0)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_DELSETELEM={0x64, 0xe, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELSET={0xc0, 0xb, 0xa, 0x403, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x1a}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x16}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_EXPR={0x60, 0x11, 0x0, 0x1, @rt={{0x7, 0x1, 'rt\x00'}, @val={0x54, 0x2, 0x0, 0x1, [@NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0x13}, @NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RT_KEY={0x8}, @NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}]}}}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3a}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x1}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_DELOBJ={0x20, 0x14, 0xa, 0xa00, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELSETELEM={0x2970, 0xe, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1784, 0x3, 0x0, 0x1, [{0x1a4, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_SET_ELEM_USERDATA={0xf7, 0x6, 0x1, 0x0, "49a3d4706dbe1d2da4f0eda3b98f3d69e6a19b0ae63ef6c4990cd2273cb76defdccadff6549cb9485fed0d7a854650a67fade877cfa4bb8c358c78f6f7d6595fbcee8462b453d32d45bae961b19ec3a52a3720121f5756f6c05140f5a7dd6ceeb2ae3ba8d41d67b31d88eefbaa8ef6205d089d6917a00a7ac2b15b00530302b437a32d23b42c662f72d66697ffd6d933dc54b9ba772f5e71eed6c39124e51aebe251f32dc5e9e4d68603375473ad3605f0714cc452bacd05d37d837373de82d298aead958b9348b17deff0f7353c79ea98b855c61cc543c1fed378d0f5f72d15e4f3e01ee05f94cde003edbb1d7c0af4bb550f"}, @NFTA_SET_ELEM_DATA={0x90, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x70, 0x1, "d3a5bde1bc6950dbe73fa24ebd32b9348c00f926c25ba523df7b3d1a9ff9c1ba8fb685fe2e178781a0ac4ac316ddce6d03df949f8102f578048cc75a5c47c40ad473d36a61bec92bcd38ff558e3de44c815266fd9354ff375cfd5876a27474829567db9b3153c07f8803482c"}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}]}, {0x42c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xb8, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x60, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}]}, @NFTA_SET_ELEM_KEY={0x370, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xdf, 0x1, "1122892030106285470154858661b27827bcefd5b9b35912222433438e8538c54cc1b55f4632ab99cbadf848db23d7e8b7ed749ea22252c4ba7ed73acfab349eb460e9df3fa49bdecffb465442c02dd55eab619d9b3af61c82332ed1f03ae1a4667af69b41423b4f3b3c8146aad11f498a0d1d9f75dc9f0275897f81ee2095aaf0722d3a91f1e75a7258db5ba4aa71799fccc3ebefa24e26537828b1ab0b3a01a3018e784246cbd38b11b63ba4d03d161e761f546f26d125abc471a268ded78be5170d1217531f6c4155d9c640c621ace4862ca4e64738c17344fc"}, @NFTA_DATA_VALUE={0x7f, 0x1, "fb48ef6be5d3477cc01f1479bce45b8d02b15434b352c2ea64a11cf91f3b34c9ea9af30bded1e0b89e1e4587bdeef7aeaad037b5bba4ab37c5f0447dbb9d2c62c075459bd6799cd321f8ab13847c65da31b4957d27914066abb0e503f9a0e2dc724284fa48d5c2d75dce746dca7c8fc39bf5c477a4749aecaf671a"}, @NFTA_DATA_VALUE={0xb2, 0x1, "8749dd3d89b44e3c67bad1e961a3ff0b9ed5167f5cdb48fcf610fd2fd04e60128fbe4cc09fb5df44f6836183bf17ade6eb32c7584b43a13663b0ce7815d33769f79123eff7dc6437c4a9031208ce56a338ea759bbd6e48ff944ba3806b6f69def6a857b753fab720380cf0c329ca0b37322e56b63942bb24048c625f0630814b131a9f3a6d6b2e3b8f56cfdfc1b6d9d32b6f63e87a24ac776f487422eca9cca6c90408f1acf9ab9dd1d5658de5f5"}, @NFTA_DATA_VALUE={0x71, 0x1, "a5630922de906330ed3d80256d634311ff75d105cfb44e2503bc1f9971e2e984e14ae5240890ab55269cc63b38a2fe5c3a70de4b505d7400bd990b83bacd9a0efa9f6399711785e2a68eb24dbb25d5d92abb9b4034ee7bad78c9a62f8340fc3650acd88280f6400aaead65b56b"}, @NFTA_DATA_VALUE={0x8c, 0x1, "4044d234d418873bd5b031e19f855a34b77ec62f9522747796c52bd662371b3fe88ba670fc4d737f980793cb1a0b7a0f9209b4e4e4b66e494c3e7a2cb1eaf8aac9463f1dc2c9f57c877e6b84f7bac88336a1272d866d193d3872c31f3e10ac9b967fa837d4d8a6fd453603bded60c0e357ec3a620ae064b8674b6eb62fbc053663b31418b2390b1f"}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VALUE={0xe, 0x1, "0439814d90b1b49f7890"}]}]}, {0x11b0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x11ac, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xa9, 0x1, "76c5ab6cefb23e81dff8d474da5439838471e0798461818c85b2aa19d9db8a1c751e1776d223cdd02e937abd7089de194ae90c99027fd3392648cbd5b6f5fa7d59ab79b6615cb7022beb90ac24e50f6c5b3dcf4afc23caa70385a612e68d2206e2e5d155ce5ab7764ddb9d4588b679e82255f9898c33f5a0da436eee112a070c45cb2c24ad9a0c7aba03aaed9d1aff286a391c6b82b2e3fe464d214da70f0ff4d65af2b5c9"}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x67, 0x1, "d3950bbd6f4b7d5cb45e1cd7c7688e17e701ae4825084f37e58153e3d7ecc542e279d57a4caea43a397e5a697c985e034bcac2a655cdd762a46dc51b7ce83351cff8d51c124229c1b15a7aa6e6c882e0ef55665040d3d7aed5f975fbff5fa3f9c0b848"}, @NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}]}]}]}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x11a0, 0x3, 0x0, 0x1, [{0x119c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0xcc, 0x6, 0x1, 0x0, "2eb17fe5b3f951929e0136d59265604acfdced783a011e6bd2d1119bcc79fa4d85217d6e0e9c6463658225168c6ef24b4810f2cbefeb6d11d30f7cec11703708fd1ae082ac7ce6e0cf79632fe5795a1ae20796daaf0cbc06e740f18b3204ba36a6ab874952ff6118fdfd0a4d29cdcbe0c97a4f34d9b1011918367b9c60dc76d17683d0e7d8f12b157874af4dd6bcc8fca1a6e99046e4f104e7fb901d243a685354807393e949957d35d8bf569fe22de7529f27745e51a9f7ac56b1c8be21e4d3b62d8f302b139bca"}, @NFTA_SET_ELEM_DATA={0x1098, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x6}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0xcd7}, @NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x5}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELSETELEM={0x48c, 0xe, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x450, 0x3, 0x0, 0x1, [{0x44c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x1a4, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x72, 0x1, "798b5441e7638616399744f19e7cd9792414e24ea3cd8aa04d12bbd02995559f84292811c452460e0f3642ca7736834091be5d2eca94ce660adec43f1423431d57d844eabc2ee91d4e9932061426acacb18dc28f48f9c2e92a33fe5481a7e7fad89a98c542e78a56545b4da3fb2c"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x90, 0x1, "47d5602feb31195b7460e1eb73bf205042da4f1fcb091fdde30fec8a2a7f8d4ae05d3fb157d079fd48b01d0a3252d9fddbc0d21cdc158b8e23b0d0416ae5a45a9a3b8e5d53a9a03054eb91fb3f1fc96329d864874cf17a89cf43df91ccfe231d999e1256a799d7356ff84a27b818ab1a5fd904a47234263382213ded72755781719e0f1f7b3cd1ba2950f403"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x2e, 0x1, "e9730c1d49ed327ed431f6b8393a9a6da8adbbc3a4c3487c686ffd5dd1a49e7b40971427f7bc36d054ab"}]}, @NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_DATA={0x260, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0xaf, 0x1, "7f963dbd3f4a33db1743a357d30cba9599b59207b0e4de4e309ef68cfd0317b9d435972d7f096e7d850899eb54b7c73baba210760d508b1cfe8ee3a711ce60d260ade10ebc396b5721da431ba973386da1bb09eaaf99e2b04e9a55cad7c996d6db1fe98c166c83c659f794d709c68579b62ce7c682e2d31edadbe543e3c5a7737e90a01cb06ca1659408d60b8a3277c273799a7655ba7aa0cf96f022af1578061bd0f8f0c063a227fba6ed"}, @NFTA_DATA_VALUE={0xea, 0x1, "6a332221063c504abd3023b2b886f1288c291ef6f3a5a286b2d18a8c54e010ef55341ada3ca41009645156039787b43ec8f3a7db213910058b27ce92a207424e702077f564abf7769b8ac071a1bdb6521d17d245814df50df419411d8340eb76f7cdc0fed0089009e1d772beddea7fd4add9d52507bd2339ecccdfa94c9c49c0e95b44da3096310cce025bd47febc68f2d4af871e6ea23e241766dfd662aae765cda552e007c23823cc7d60127bc66eba84751bf10c9cde267f5c92bb8b40a96fb6f2c67658b4fcf78d477e6f651aff84377c824c2932bef53d92ef300cfd9c5588e7cdd8288"}, @NFTA_DATA_VALUE={0xc0, 0x1, "5a73e2a817d334b2e417ce4970c6450e4010b825e53321c824ebee19762fbc286f94b02f0988ccc0345de4ea22f2a01bfce03f09d3a789f8fb9818d6ace554acc942538646d6a5b9ea5c1f4cdb1f7aa7f79a573765013f66d11592092c35aaf48c18f302cf9f776bbc281f6b2766cc4d6389e7937a5847b1773f9737ac261da4b5f403160a21b6330aee527e3c60aca4b49624ba6e1b8283e1cb61e78168354fa7a96eee5e659bdbef578eed429f5606cf01df480cd4471c3ee21aea"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0xfffffffffffffffc}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x10000}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_EXPR={0x4}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWTABLE={0x2c, 0x0, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELTABLE={0x1c, 0x2, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFTA_TABLE_FLAGS={0x8}]}, @NFT_MSG_DELFLOWTABLE={0x2dc, 0x18, 0xa, 0x141422cbfbd8f8c, 0x0, 0x0, {0xa}, [@NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x10000}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}, @NFTA_FLOWTABLE_HOOK={0x1e0, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0xcc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'virt_wifi0\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'bond_slave_0\x00'}, {0x14, 0x1, 'gre0\x00'}, {0x14, 0x1, 'team_slave_0\x00'}, {0x14, 0x1, 'batadv0\x00'}, {0x14, 0x1, 'bond0\x00'}, {0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'xfrm0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x7c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_to_batadv\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth1_to_bridge\x00'}, {0x14, 0x1, 'wg0\x00'}, {0x14, 0x1, 'bridge0\x00'}, {0x14, 0x1, 'veth1_to_bridge\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'virt_wifi0\x00'}, {0x14, 0x1, 'sit0\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'ip6_vti0\x00'}, {0x14, 0x1, 'bridge_slave_0\x00'}]}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0xac, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'veth0_macvtap\x00'}, {0x14, 0x1, 'macvtap0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'veth0_to_hsr\x00'}, {0x14, 0x1, 'vxcan1\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x200}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}]}], {0x14}}, 0x328c}, 0x1, 0x0, 0x0, 0x20004040}, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r2, 0x0)
sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x44, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x47}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1ff}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x354}]}, 0x44}}, 0x8010)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x7, 0x1, 0x101, 0x0, 0x0, {0x3}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x4000)

[  515.380881] IDTVectoring: info=00000000 errcode=00000000
[  515.387312] TSC Offset = 0xfffffee921263cfa
[  515.391752] TPR Threshold = 0x00
[  515.396817] EPT pointer = 0x00000000a914d01e
[  515.401306] Virtual processor ID = 0x0001
01:20:08 executing program 5:
prctl$PR_GET_NAME(0x10, &(0x7f00000000c0)=""/102379)

01:20:08 executing program 2:
r0 = timerfd_create(0x1, 0x0)
timerfd_settime(r0, 0x0, &(0x7f00000000c0)={{0x77359400}}, 0x0)

01:20:08 executing program 0:
timer_create(0x0, 0x0, &(0x7f00000001c0))
timer_create(0x0, &(0x7f00000004c0)={0x0, 0x0, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000500))

01:20:08 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8936, 0x0)

[  515.541694] *** Guest State ***
[  515.550805] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  515.607307] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  515.645419] CR3 = 0x00000000fffbc000
01:20:08 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x40002060, 0x0, 0x0)

01:20:08 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2, 0x0, 0x0)

[  515.653943] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:08 executing program 5:
socketpair(0x1, 0x1, 0x0, &(0x7f0000001380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xb8}}, 0x0)

[  515.678499] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  515.699131] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  515.732757] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  515.765112] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.774681] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.783674] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.791775] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.801143] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  515.809696] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  515.824840] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  515.839541] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  515.848075] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  515.864118] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  515.870624] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  515.882480] Interruptibility = 00000000  ActivityState = 00000000
[  515.888874] *** Host State ***
[  515.895916] RIP = 0xffffffff811601fe  RSP = 0xffff8880a1d779b8
[  515.902941] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  515.909433] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  515.920739] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  515.927660] CR0=0000000080050033 CR3=00000000a8fc9000 CR4=00000000001426e0
[  515.938194] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  515.950004] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  515.959649] *** Control State ***
[  515.964080] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  515.970869] EntryControls=0000d1ff ExitControls=002fefff
[  515.979814] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  515.987715] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  515.997774] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  516.005328]         reason=80000021 qualification=0000000000000000
[  516.011856] IDTVectoring: info=00000000 errcode=00000000
[  516.020758] TSC Offset = 0xfffffee8c121a9b3
[  516.028078] TPR Threshold = 0x00
[  516.031536] EPT pointer = 0x00000000a090601e
01:20:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x0, 0x20, 0x1, [], 0xf1}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:08 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000001240)={0xc, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

01:20:08 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000001740)={0x1, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001340)})

01:20:08 executing program 0:
semtimedop(0xffffffffffffffff, &(0x7f0000000080)=[{}], 0x1, &(0x7f00000000c0)={0x77359400})

[  516.039412] Virtual processor ID = 0x0001
01:20:08 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000100))
socketpair(0x0, 0x0, 0x0, &(0x7f00000000c0))

01:20:08 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
ioctl$sock_SIOCDELRT(r0, 0x890c, 0x0)

01:20:08 executing program 0:
r0 = socket$inet(0x2, 0xa, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, 0x0, 0x0)

01:20:08 executing program 4:
prctl$PR_GET_TSC(0x22, 0x0)

01:20:08 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x3, &(0x7f0000000380)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  516.187954] *** Guest State ***
[  516.203620] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:08 executing program 2:
timer_create(0x7, 0x0, &(0x7f00000000c0))
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

[  516.249747] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  516.283035] CR3 = 0x00000000fffbc000
01:20:08 executing program 0:
syz_genetlink_get_family_id$smc(&(0x7f0000002580)='SMC_PNETID\x00', 0xffffffffffffffff)
openat$bsg(0xffffffffffffff9c, &(0x7f0000002b00)='/dev/bsg\x00', 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000002d80)='/dev/net/tun\x00', 0x8040, 0x0)

01:20:08 executing program 4:
pipe(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f00000001c0)=[{0x0, 0x0, 0x0, 0x1}]})

[  516.295889] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  516.334558] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  516.362112] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  516.384847] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  516.404618] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  516.429373] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  516.453055] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  516.476996] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  516.485824] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  516.495095] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  516.503718] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  516.511784] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  516.529662] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  516.546556] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  516.559600] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  516.575863] Interruptibility = 00000000  ActivityState = 00000000
[  516.587637] *** Host State ***
[  516.601935] RIP = 0xffffffff811601fe  RSP = 0xffff8880957379b8
[  516.607938] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  516.621941] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  516.629757] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  516.651907] CR0=0000000080050033 CR3=00000000a8fc9000 CR4=00000000001426f0
[  516.658950] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  516.665947] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  516.672276] *** Control State ***
[  516.675732] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  516.682684] EntryControls=0000d1ff ExitControls=002fefff
[  516.688136] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  516.695439] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  516.702397] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  516.708973]         reason=80000021 qualification=0000000000000000
[  516.731892] IDTVectoring: info=00000000 errcode=00000000
[  516.737357] TSC Offset = 0xfffffee86a861b08
[  516.741678] TPR Threshold = 0x00
01:20:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x0, 0x0, 0x1, [], 0xf1}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  516.761921] EPT pointer = 0x000000009718601e
[  516.766355] Virtual processor ID = 0x0001
01:20:09 executing program 5:
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_GET_TSC(0x19, &(0x7f0000000000))

01:20:09 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0xd, 0x0, &(0x7f0000000000)=0xfffffffffffffcca)

01:20:09 executing program 4:
prctl$PR_GET_TSC(0x1d, &(0x7f0000000000))

01:20:09 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000001180)={&(0x7f0000000340), 0xfffffe0f, &(0x7f0000000400)={0x0, 0x4b}}, 0x0)

01:20:09 executing program 1:
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058740)={0x6, [], 0x9, "532f48ad83f0e1"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, <r0=>0x0, <r1=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000062c40)={0x1000, [{}, {}, {0x0, r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}], 0x96, "8bebeb894f74c3"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000048bc0)={0x0, ""/256, 0x0, <r2=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000062c40)={0x1000, [{}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x96, "8bebeb894f74c3"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000048dc0)={0x0, ""/256, 0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, <r6=>0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000062c40)={0x1000, [{}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}], 0x96, "8bebeb894f74c3"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000048fc0)={<r8=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, <r9=>0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000062c40)={0x1000, [{}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}], 0x96, "8bebeb894f74c3"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000049fc0)={0x0, ""/256, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f000004a1c0)={{<r12=>0x0, 0x19, 0x4ea3363c, 0x2, 0x1, 0x7fff, 0x9, 0x400, 0xffffffff, 0x8cb, 0xffffffff, 0x1, 0x3, 0x7, 0x2}})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004b1c0)={0xfa, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r13=>0x0}], 0x1, "2d1d4d121cb927"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004c1c0)={0x95e, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {}, {0x0, r2}, {r3}, {0x0, r5}, {r6, r8}, {}, {r9, r11}, {r12, r13}], 0x9, "f9dbdfe0c778f8"})
r14 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r15 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r14, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r16=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r14, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r15, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r16}]}, 0x1c}}, 0x0)

01:20:09 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed}, 0xe)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000100), 0x6)

01:20:09 executing program 5:
prctl$PR_GET_TSC(0x27, 0x0)

01:20:09 executing program 4:
r0 = fork()
r1 = gettid()
rt_tgsigqueueinfo(r0, r1, 0x0, &(0x7f0000000180))

01:20:09 executing program 0:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000006c0)='ns/mnt\x00')

[  516.953402] *** Guest State ***
[  516.973435] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  517.028519] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:09 executing program 5:
socketpair(0x10, 0x2, 0x0, &(0x7f0000000100))

[  517.079817] CR3 = 0x00000000fffbc000
01:20:09 executing program 4:
semop(0x0, &(0x7f0000000000)=[{0x0, 0x0, 0x1800}], 0x1)

[  517.108319] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  517.131434] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  517.165562] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  517.198642] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  517.230365] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  517.251765] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  517.272709] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  517.293675] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  517.314543] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  517.335045] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  517.355721] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  517.376764] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  517.397103] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  517.414991] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  517.428042] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  517.443353] Interruptibility = 00000000  ActivityState = 00000000
[  517.456236] *** Host State ***
[  517.468260] RIP = 0xffffffff811601fe  RSP = 0xffff8880b06ff9b8
[  517.481003] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  517.498588] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  517.518824] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  517.536624] CR0=0000000080050033 CR3=000000009b123000 CR4=00000000001426e0
[  517.560555] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  517.577599] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  517.594375] *** Control State ***
[  517.602106] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  517.616465] EntryControls=0000d1ff ExitControls=002fefff
[  517.627461] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  517.641885] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  517.656353] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:10 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_buf(r0, 0x6, 0xb, 0x0, &(0x7f0000000680))

01:20:10 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x1b, 0x0, &(0x7f00000001c0))

01:20:10 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r0, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)

01:20:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}, {0x0, 0x0, 0x0, [], 0xf1}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:10 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r3, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r4, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r8, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r2, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x78, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x6c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc5}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0)='802.15.4 MAC\x00', r2)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r10, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r11=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}]}, 0x1c}}, 0x0)

[  517.663104]         reason=80000021 qualification=0000000000000000
[  517.669541] IDTVectoring: info=00000000 errcode=00000000
[  517.675407] TSC Offset = 0xfffffee8014dac2f
[  517.679855] TPR Threshold = 0x00
[  517.684173] EPT pointer = 0x000000002db0001e
[  517.688712] Virtual processor ID = 0x0001
01:20:10 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0x10, 0x0, &(0x7f00000001c0))

01:20:10 executing program 2:
prctl$PR_GET_TSC(0x35, 0x0)

01:20:10 executing program 5:
r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x100000000000bc, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x5452, &(0x7f0000000180)={'wlan1\x00'})

01:20:10 executing program 0:
r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
prctl$PR_MCE_KILL(0x35, 0x0, 0x0)

[  517.866761] *** Guest State ***
01:20:10 executing program 1:
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/bluetooth/6lowpan_control\x00', 0x2, 0x0)
tee(r0, 0xffffffffffffffff, 0x200, 0xf)
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x20}, 0x1, 0x0, 0x0, 0x40040}, 0x8001)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x40, r2, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_PID={0x8, 0x1c, 0xffffffffffffffff}, @NL802154_ATTR_PID={0x8, 0x1c, 0xffffffffffffffff}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00'})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="e83ee1bc", @ANYRES16=r2, @ANYBLOB="03000600"/18, @ANYRES64, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x44, 0x0, 0x4, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0xfa}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x8011)

01:20:10 executing program 4:
setpriority(0x0, 0x0, 0x20)

[  517.906625] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  517.946031] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:10 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
socket(0x0, 0x0, 0x0)

01:20:10 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x6, 0xc, 0x0, &(0x7f00000001c0))

01:20:10 executing program 0:
r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='nonumtail=0,utf8=1'])

[  517.987809] CR3 = 0x00000000fffbc000
[  518.007930] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  518.054880] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  518.076539] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
01:20:10 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="08e8ff40", @ANYRES16=r1, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000)='802.15.4 MAC\x00', r0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r5, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r6, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r3, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, r6, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x40001)

[  518.114957] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  518.160803] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  518.175929] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  518.184178] FAT-fs (loop0): bogus number of reserved sectors
[  518.184189] FAT-fs (loop0): Can't find a valid FAT filesystem
[  518.220479] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  518.230824] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  518.249519] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  518.260158] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  518.273358] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  518.285947] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  518.311887] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  518.337938] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  518.347267] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  518.357208] Interruptibility = 00000000  ActivityState = 00000000
[  518.364457] *** Host State ***
[  518.367729] RIP = 0xffffffff811601fe  RSP = 0xffff88808fe279b8
[  518.376959] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  518.383620] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  518.391427] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  518.397464] CR0=0000000080050033 CR3=000000009b91a000 CR4=00000000001426f0
[  518.404948] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  518.411595] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  518.417767] *** Control State ***
[  518.421209] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  518.428268] EntryControls=0000d1ff ExitControls=002fefff
01:20:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:11 executing program 5:
r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$TCSETS2(r0, 0x5453, 0x0)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)

01:20:11 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x2002000, &(0x7f0000000240)=ANY=[])

01:20:11 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x2, 0x10, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [@sadb_ident={0x2, 0xb}]}, 0x20}}, 0x0)

01:20:11 executing program 4:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)

01:20:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r4, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x78, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x6c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc5}]}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r7, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r9=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r6, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r8, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r11=>0x0})
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x11, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x14)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x40, 0x0, 0xc79c57665878e84d, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x40}, 0x1, 0x0, 0x0, 0x48080}, 0x20040880)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r2, @ANYBLOB="6414ad315effff449c625b7b99da805a4d03f789e516c1e99613f6e91f7670410d9807bb8fb935de6773b88f07f73a923b1f2a231cc13c6a2c684ca951a1041bd5c45283a3236ebc13312982d8e86c42983ecf96a744437da84ddf3f58f77d74c6f357e23dabee50cc7b4ab0dc3f11e2a355bf80f384a8e4b02c2f396965fd7527cffd1b90c77c93c160e7919a815e360b667a20"], 0x1c}}, 0x0)

[  518.433803] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  518.440716] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  518.447609] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  518.454295]         reason=80000021 qualification=0000000000000000
[  518.460602] IDTVectoring: info=00000000 errcode=00000000
[  518.466256] TSC Offset = 0xfffffee7826a7d5d
[  518.470584] TPR Threshold = 0x00
[  518.474021] EPT pointer = 0x00000000398e001e
[  518.478422] Virtual processor ID = 0x0001
01:20:11 executing program 4:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f00000001c0)={0x104, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_MODES={0xf0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_BITS={0xd4, 0x3, 0x0, 0x1, [{0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '}@-}&\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '{%)\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, ':-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '#.\\\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '\x9c^@$(()^%&\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '$]\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, '!+\\:[-^#$-\xdd\xae*\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x4}]}]}]}, 0x104}}, 0x0)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000140)="390000001100090468fe0700000000000700ff3f0800000045000e070000001419001a00", 0x24}], 0x1)
write$binfmt_misc(r1, &(0x7f00000002c0)=ANY=[], 0x15)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

01:20:11 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0xbc000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

01:20:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1cf8c0385e55000000", @ANYRES16=r1, @ANYBLOB="1d070000000000000051e6ea001f00000008", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r4, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_LISTALL(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000002}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x40, 0x0, 0x2, 0xfffffffd, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x44}}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0={0xfc, 0x0, [], 0x1}}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x24008004}, 0x4)

01:20:11 executing program 0:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000180)=<r1=>0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f0000000400)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f00000002c0)="da", 0x1}])
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x1, 0x0, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}])

01:20:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0xfb, 0x9, 0x7f, [], 0xc9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:11 executing program 2:
add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

01:20:11 executing program 5:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000040)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, 0x0)
accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="8224", 0x2}], 0x1}}], 0x1, 0x40008000)
write(0xffffffffffffffff, 0x0, 0x0)

01:20:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r4, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01072cbd7000fcdbdf250400000014000300fc0200000000ffffffff20000700730f8402f493b0f9bf8b797374656d5f753a6f626a6563745f723a726f6f745f743a733000140006006873723000"/89], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

01:20:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4010ae42, &(0x7f0000000080)={0x0, 0x0})

01:20:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0xc00caee0, 0x0)

[  518.869928] audit: type=1804 audit(1616030411.444:93): pid=7017 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir776451590/syzkaller.lJaLpv/606/bus" dev="sda1" ino=16106 res=1
[  518.887226] *** Guest State ***
01:20:11 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4008ae61, &(0x7f0000000080)={0x0, 0x0})

[  518.930356] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  518.947942] audit: type=1804 audit(1616030411.474:94): pid=7037 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="ToMToU" comm="syz-executor.0" name="/root/syzkaller-testdir776451590/syzkaller.lJaLpv/606/bus" dev="sda1" ino=16106 res=1
01:20:11 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
fadvise64(r0, 0x0, 0x0, 0x0)

01:20:11 executing program 0:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000180)=<r1=>0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f0000000400)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f00000002c0)="da", 0x1}])
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x1, 0x0, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}])

[  518.987646] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0xae41, 0x0)

01:20:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000004340)='802.15.4 MAC\x00', r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x38, r4, 0x601, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x1}]}, 0x38}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)={0x50, r4, 0x300, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x9}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xffff}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x3d9}]}, 0x50}}, 0x2000c000)

01:20:11 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0})

[  519.037139] CR3 = 0x00000000fffbc000
[  519.049076] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  519.062473] Bluetooth: hci2 command 0x0405 tx timeout
[  519.075409] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  519.125911] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  519.162286] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  519.205033] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.244934] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.284343] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.295677] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.308388] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.318674] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  519.329674] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  519.345801] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  519.353985] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  519.375626] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  519.382975] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  519.390434] Interruptibility = 00000000  ActivityState = 00000000
[  519.400524] *** Host State ***
[  519.405017] RIP = 0xffffffff811601fe  RSP = 0xffff88808fe279b8
[  519.411106] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  519.421071] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  519.434012] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  519.439895] CR0=0000000080050033 CR3=000000009b91a000 CR4=00000000001426e0
[  519.446992] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  519.454736] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  519.460859] *** Control State ***
[  519.465511] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  519.472736] EntryControls=0000d1ff ExitControls=002fefff
[  519.478188] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0x0, 0x9, 0x7f, [], 0xc9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae03, 0xa)

01:20:12 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}}, 0x0)
select(0x40, &(0x7f0000000140), 0x0, &(0x7f00000001c0)={0x8}, 0x0)

01:20:12 executing program 1:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
sendto$inet6(r0, &(0x7f0000000000)="a8682b74b7", 0x5, 0x20040040, &(0x7f0000000080)={0xa, 0x4e23, 0x10000, @private1={0xfc, 0x1, [], 0x1}, 0x3e6}, 0x1c)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r2, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)

01:20:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000001100))

01:20:12 executing program 0:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000180)=<r1=>0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f0000000400)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f00000002c0)="da", 0x1}])
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x1, 0x0, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}])

[  519.485178] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  519.491906] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  519.498475]         reason=80000021 qualification=0000000000000000
[  519.504934] IDTVectoring: info=00000000 errcode=00000000
[  519.510378] TSC Offset = 0xfffffee6f78d5f34
[  519.514760] TPR Threshold = 0x00
[  519.518115] EPT pointer = 0x000000003aad301e
[  519.522588] Virtual processor ID = 0x0001
01:20:12 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
select(0x40, &(0x7f0000000140), 0x0, &(0x7f00000001c0)={0x8}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040)='devlink\x00', r0)

01:20:12 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r1, @ANYBLOB="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"], 0xe4}}, 0x8805)

01:20:12 executing program 5:
unshare(0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{0x0}, {&(0x7f0000012600)}, {0x0}, {&(0x7f0000013900), 0x0, 0x30000}], 0x0, 0x0)
fchown(0xffffffffffffffff, 0xee01, 0x0)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300))
syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={[{@iocharset={'iocharset', 0x3d, 'cp775'}}]})

[  519.705707] *** Guest State ***
[  519.725059] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:12 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)

[  519.757903] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  519.787849] CR3 = 0x00000000fffbc000
[  519.798230] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:12 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ac0)=ANY=[])
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(0x0, 0x0, 0xad, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

01:20:12 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r4=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000500)='nl802154\x00', r0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x98, r5, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0x84, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x3}, @NL802154_DEVKEY_ATTR_ID={0x58, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xc9d}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x8}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0102}}]}]}, 0x98}}, 0x4000000)
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x11, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x14)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r7, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r9=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r6, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r8, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f00000004c0)={'wpan4\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r12=>0x0})
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x11, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x14)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0xfffffffffffffc56, &(0x7f00000000c0)={&(0x7f00000003c0)={0x20, r1, 0x71d, 0x70bd25, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x0, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0x0, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0x0, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x0, 0x3, r9}, @NL802154_ATTR_IFINDEX={0x0, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x0, 0x3, r10}, @NL802154_ATTR_IFINDEX={0x0, 0x3, r11}, @NL802154_ATTR_WPAN_DEV={0x0, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x0, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0x0, 0x6, 0x2}]}, 0x20}}, 0x0)

[  519.851970] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  519.858052] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  519.882047] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  519.890299] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.907070] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.936846] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.956955] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.966814] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  519.976160] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  519.984986] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  519.986324] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  519.994076] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  520.011079] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  520.021375] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  520.042397] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  520.074078] Interruptibility = 00000000  ActivityState = 00000000
[  520.080393] *** Host State ***
[  520.085626] RIP = 0xffffffff811601fe  RSP = 0xffff8880951e79b8
[  520.091633] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  520.099691] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  520.115634] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  520.121638] CR0=0000000080050033 CR3=000000004bf22000 CR4=00000000001426f0
[  520.129099] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  520.136717] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  520.142965] *** Control State ***
[  520.146407] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  520.153113] EntryControls=0000d1ff ExitControls=002fefff
[  520.158554] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  520.165526] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0x0, 0x0, 0x7f, [], 0xc9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:12 executing program 0:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000180)=<r1=>0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f0000000400)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f00000002c0)="da", 0x1}])
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x1, 0x0, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}])

[  520.172314] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  520.178883]         reason=80000021 qualification=0000000000000000
[  520.185299] IDTVectoring: info=00000000 errcode=00000000
[  520.190750] TSC Offset = 0xfffffee686a3672a
[  520.195147] TPR Threshold = 0x00
[  520.198518] EPT pointer = 0x000000009ae9d01e
[  520.202991] Virtual processor ID = 0x0001
[  520.288274] *** Guest State ***
[  520.297439] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  520.310384] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  520.325709] CR3 = 0x00000000fffbc000
[  520.329633] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  520.336224] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  520.343448] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  520.350224] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  520.359683] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  520.368185] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  520.377504] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  520.386652] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  520.399945] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  520.409170] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  520.417535] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  520.425698] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  520.434093] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  520.442142] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  520.448545] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  520.456068] Interruptibility = 00000000  ActivityState = 00000000
[  520.462356] *** Host State ***
[  520.465540] RIP = 0xffffffff811601fe  RSP = 0xffff8880951e79b8
[  520.471501] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  520.478013] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
01:20:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4010ae68, &(0x7f0000000080)={0x0, 0x0})

01:20:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x0, 0x0, 0x4, r2})

01:20:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan4\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r5=>0x0})
sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x11, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x14)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, r1, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_SEC_DEVKEY={0xc, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x9}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10000001}, 0x20000010)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}}, 0x0)

01:20:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4068aea3, &(0x7f0000000080)={0x0, 0x0})

01:20:13 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}}, 0x0)
select(0x40, &(0x7f0000000140)={0x8}, 0x0, 0x0, 0x0)

[  520.485883] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  520.491815] CR0=0000000080050033 CR3=00000000afb26000 CR4=00000000001426f0
[  520.500147] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  520.507037] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  520.523362] *** Control State ***
[  520.531559] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
01:20:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4008ae6a, &(0x7f0000000080)={0x0, 0x0})

[  520.581876] EntryControls=0000d1ff ExitControls=002fefff
[  520.591304] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  520.609517] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  520.623109] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0xc00caee0, &(0x7f0000000080)={0x0, 0x0})

01:20:13 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/vmstat\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002300)={0x2020}, 0x2020)
read$FUSE(r0, 0x0, 0x0)

01:20:13 executing program 2:
r0 = timerfd_create(0x9, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r1=>0x0})
timerfd_settime(r0, 0x0, &(0x7f0000000040)={{}, {0x0, r1+60000000}}, 0x0)

01:20:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r4, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="a7cfa30ae8be85e00b9e882f960d94ed9298b1affdb7c754655c4c4831491d35012b7c5aa4770c7ec462cec2fd8ddee1b5a95360cf8f717339f28c36762fee3a54bdf6a465b1b9972c4914f307e03b52e9eb0ae44bf87774c3b0c7a502bd486819d6fa069b4006a5b63f56fff160dcd0b4", @ANYRES16=r5, @ANYBLOB="100027bd7000fddbdf250100000008000300", @ANYRES32=r6, @ANYBLOB="080001000000000008000100010000000800010001000000"], 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x1c}}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r9, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x78, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x6c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc5}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0)='802.15.4 MAC\x00', r3)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

[  520.639193]         reason=80000021 qualification=0000000000000000
[  520.646396] IDTVectoring: info=00000000 errcode=00000000
[  520.705666] TSC Offset = 0xfffffee636a061f2
[  520.721453] TPR Threshold = 0x00
[  520.736917] EPT pointer = 0x000000009808101e
[  520.754017] Virtual processor ID = 0x0001
01:20:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}, {0x0, 0x0, 0x0, [], 0xc9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:13 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000980)={'wpan1\x00'})

01:20:13 executing program 0:
openat$procfs(0xffffffffffffff9c, &(0x7f0000001480)='/proc/slabinfo\x00', 0x0, 0x0)

01:20:13 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
recvmmsg(r0, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x101, 0x0)

01:20:13 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
read$FUSE(r0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006680)={0x2020}, 0x2020)

01:20:13 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
write$binfmt_misc(r0, &(0x7f0000000240)={'syz0', "75b8b7eba6a3ebf5cc0a030693300cfd596515c79298c640a159f10c677798e24d0703b21283293689d9736fb90150f3cbce731318ff50080c7cf1ab07b4211078a7e3ccc44fd72921ca87d170a22dedb4e21b994f8dc0c46251da087360e0d549e45a046903168607721e66b4efbbacafd8c77bff87d16a11235fdc8e2895e5c1d30fcd7109f20dc35d5ba08e8e025bcefa144df208db1a87773058e081a7ea1a08b463e09fa71fab655954a5ec073203913234ec17b408daebbdc68c"}, 0xc1)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='\b\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r3, @ANYBLOB], 0x1c}}, 0x0)

01:20:13 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006680)={0x2020}, 0x2020)

01:20:13 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
recvmsg(r0, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0x7a, &(0x7f0000000280)={@dev, @dev, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ab65d7", 0x44, 0x2f, 0x0, @ipv4={[], [], @broadcast}, @empty}}}}, 0x0)

01:20:13 executing program 4:
syz_emit_ethernet(0x96, &(0x7f0000000000)={@random="177fb55b3809", @empty, @void, {@ipv4={0x800, @igmp={{0x20, 0x4, 0x0, 0x0, 0x88, 0x0, 0x0, 0x0, 0x2, 0x0, @multicast2, @multicast1, {[@cipso={0x86, 0x52, 0x0, [{0x0, 0x7, "0c4ac1d99b"}, {0x0, 0x2}, {0x0, 0x2}, {0x0, 0xa, "758405cb31c92529"}, {0x0, 0x12, "e39e645a1691254612e06c2b1e669fb5"}, {0x0, 0x8, "142d17ee0bf5"}, {0x0, 0xc, "90ae325a9e29935345cb"}, {0x0, 0x7, "bc66f9a2a4"}, {0x0, 0xa, "42854c8718d2f2ce"}]}, @ssrr={0x89, 0x17, 0x0, [@multicast2, @rand_addr, @broadcast, @empty, @local]}]}}, {0x0, 0x0, 0x0, @dev}}}}}, 0x0)

01:20:13 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002300)={0x2020}, 0x2020)

01:20:13 executing program 1:
sendmsg$802154_dgram(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0302}}}, 0x14, &(0x7f0000000080)={&(0x7f0000000240)="ceae39024e6253effeb84bb90921362c64fe4d2a2ecaf29b3ef46d15ea0247309a59e7c42930bfaf096f148f02f3f4c39bd1f0e9f284c4d9383b1613719718b74806d41c6cc509109b4acf16a001904de77ad98ccce7acb30c71a21afe98279e4df61a3ea305cf9058e27124fd33a84d25b859bf21d468dbc9a882607506109b01d3534c19b71f9ac8400bc65c99", 0x8e}, 0x1, 0x0, 0x0, 0x8040}, 0x20008001)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r2, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0)='nl802154\x00', r1)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r4, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)

01:20:13 executing program 5:
syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x44, &(0x7f00000002c0))

[  520.937213] *** Guest State ***
[  520.955695] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  520.986211] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  521.010543] CR3 = 0x00000000fffbc000
[  521.024832] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  521.039409] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  521.048902] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  521.061034] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  521.071527] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.084740] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.094937] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.106988] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.115850] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.124632] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  521.133343] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  521.143279] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  521.151338] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  521.160675] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  521.167993] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  521.177365] Interruptibility = 00000000  ActivityState = 00000000
[  521.184327] *** Host State ***
[  521.187615] RIP = 0xffffffff811601fe  RSP = 0xffff8880a04d79b8
[  521.193992] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  521.200419] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  521.208311] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  521.214266] CR0=0000000080050033 CR3=000000004808e000 CR4=00000000001426f0
[  521.221419] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  521.228183] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  521.234335] *** Control State ***
[  521.237787] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  521.244488] EntryControls=0000d1ff ExitControls=002fefff
[  521.249931] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  521.256917] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  521.263681] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  521.270247]         reason=80000021 qualification=0000000000000000
[  521.277114] IDTVectoring: info=00000000 errcode=00000000
[  521.282632] TSC Offset = 0xfffffee5de56d434
[  521.286940] TPR Threshold = 0x00
01:20:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0xfa, 0x8, 0x8, [], 0x38}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:13 executing program 4:
keyctl$restrict_keyring(0xb, 0x0, 0x0, 0x0)

01:20:13 executing program 0:
r0 = timerfd_create(0x8, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r1=>0x0})
timerfd_settime(r0, 0x0, &(0x7f0000000040)={{}, {0x0, r1+60000000}}, &(0x7f0000000080))

01:20:13 executing program 2:
timer_create(0x0, &(0x7f0000001100)={0x0, 0x8}, &(0x7f0000001140))

01:20:13 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x24, &(0x7f00000005c0)="e1074efd", 0x4)

01:20:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan4\x00', <r2=>0x0})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

[  521.290285] EPT pointer = 0x00000000a1e4c01e
[  521.294731] Virtual processor ID = 0x0001
01:20:13 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000023c0)={0x2020}, 0x2020)
read$FUSE(r0, 0x0, 0x0)

01:20:13 executing program 4:
syz_emit_ethernet(0x6a, &(0x7f0000000200)={@random="177fb55b3809", @empty, @val={@void}, {@ipv4={0x8100, @gre={{0x5, 0x4, 0x0, 0x0, 0x58}}}}}, 0x0)

01:20:13 executing program 5:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@generic={0x0, "f92c1317e9d8515af8e7376852ff75cd024e99d4a10936d3ec1cd3db4f00e38b19341d35da6a88a0298bdfdcc2ad03a85169665066599f2066b50e1d75adf6c7a4adf55756385b7d88d8ac0471db98ed433d8d3403252f6eda2fcc253d183e2d4f6f3689980793c10feca4da35723da326a3a2960a6d79e21ea7ab3294b7"}, 0x80, 0x0}, 0x0)

01:20:14 executing program 0:
add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)

[  521.409382] *** Guest State ***
01:20:14 executing program 4:
syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@subvol={'subvol', 0x3d, '&\\]\\\xa3\\\'+)\x97--+(*&.+$*[%(\'+'}}]})

01:20:14 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$inet(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r0, &(0x7f0000001740)={&(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000001680)=[{&(0x7f0000000140)="e0bdf05c514d0a5ef0d31ab29edc4b83cc2d8158c666ed1a95d65c9af49b3ae4513f93ed6ff11603dc96c946ef74277351b6e4c64e99f8b588938084329ce3a7e47f527ebca12c6bbf14c9dcfe24ef275d805bc982c50a6aff8409d9f106bba8db7a16974d3adf9314e32c1c68a3d13540fdcb1c25d515e6c3f15ba6", 0x7c}], 0x1}, 0x0)

[  521.436756] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  521.479464] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  521.535762] CR3 = 0x00000000fffbc000
[  521.549089] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  521.565984] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  521.572248] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  521.579222] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  521.587348] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.595533] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.604118] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.612307] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.620345] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  521.628529] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  521.636716] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  521.644753] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  521.652986] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  521.660949] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  521.667399] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  521.675326] Interruptibility = 00000000  ActivityState = 00000000
[  521.681558] *** Host State ***
[  521.684824] RIP = 0xffffffff811601fe  RSP = 0xffff8880a370f9b8
[  521.690801] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  521.697803] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  521.705683] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  521.711559] CR0=0000000080050033 CR3=00000000a3a19000 CR4=00000000001426f0
[  521.718628] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  521.725347] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  521.731399] *** Control State ***
[  521.734905] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  521.741556] EntryControls=0000d1ff ExitControls=002fefff
[  521.747065] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  521.754033] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  521.760680] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  521.767284]         reason=80000021 qualification=0000000000000000
[  521.773668] IDTVectoring: info=00000000 errcode=00000000
[  521.779114] TSC Offset = 0xfffffee59cc8044e
[  521.783647] TPR Threshold = 0x00
01:20:14 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000000c0)='t', 0x1}, {&(0x7f0000000180)=' ', 0x1}, {&(0x7f00000001c0)="81", 0x1}], 0x3}, 0x0)

01:20:14 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8915, &(0x7f00000015c0))

01:20:14 executing program 4:
r0 = socket(0x11, 0xa, 0x0)
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000001100)={&(0x7f0000000040), 0x2000004c, &(0x7f00000010c0)={0x0}}, 0x0)

01:20:14 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f00000002c0), &(0x7f0000000300)=0x4)

01:20:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0x0, 0x8, 0x8, [], 0x38}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r3, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRES16=r4, @ANYBLOB="100027bd7000fddbdf250100000008000300", @ANYRES32, @ANYBLOB="08000300", @ANYRES32=r5, @ANYBLOB="080001000100000008000300", @ANYRES32=0x0, @ANYBLOB="55481de52c3694"], 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r8, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r2, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)={0xe8, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x88, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "62795ccc1481e9a84cb7a3b34d3b15ab4ab9917de3243ad50a0f34aefc5407e7"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x3c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x4}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0xe8}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0)='802.15.4 MAC\x00', r2)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r10, 0x8933, &(0x7f0000000180)={'wpan0\x00', <r11=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRES16=r1, @ANYBLOB="1d0700000000000000000002000008000300", @ANYRES32=r11, @ANYBLOB], 0x1c}}, 0x0)

[  521.787007] EPT pointer = 0x00000000a526501e
[  521.791400] Virtual processor ID = 0x0001
01:20:14 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_RD_TIME(r0, 0x80247009, &(0x7f0000000180))

01:20:14 executing program 2:
r0 = socket$inet(0x2, 0xa, 0x0)
open(&(0x7f0000001600)='./file0\x00', 0x0, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000015c0))

01:20:14 executing program 0:
keyctl$restrict_keyring(0xc, 0x0, 0x0, 0x0)

01:20:14 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x15, &(0x7f00000005c0)="e1074efd", 0x4)

[  521.909714] *** Guest State ***
01:20:14 executing program 5:
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000002500)="e4", 0x1)

01:20:14 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='security.capability\x00', &(0x7f00000006c0), 0xc, 0x0)

[  521.943946] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2aaa0008e7cce47b195debbd22908d7035ae434fedc3abcc43ed8584df2e65e0938b7423c735e6d5769901320845559403efa3ecd4d831d81a384302768b6d3bbcdbbc321747f389d4ed1bb6a247e3320dcd6345fb6dabb76775494778cf9a3f4a4a4d38092777c1", @ANYRES16=r1, @ANYBLOB="1d0700000000000000001f00000008000300", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r4, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_LISTALL(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x48, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr=' \x01\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x10}]}, 0x48}, 0x1, 0x0, 0x0, 0x20008050}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r8, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000540)={0xcc, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x60, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x4}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x20, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_SEC_KEY={0x44, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x40, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x224af06f}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0)='802.15.4 MAC\x00', 0xffffffffffffffff)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, 0x0, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0xc000)

01:20:14 executing program 4:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x4442, 0x0)
fallocate(r0, 0x0, 0x100000000000000, 0x7)

01:20:14 executing program 2:
openat$full(0xffffffffffffff9c, 0x0, 0x638c00, 0x0)

[  521.990259] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:14 executing program 5:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@random="177fb55b3809", @empty, @void, {@ipv4={0x4305, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @multicast2, @multicast1}, {0x0, 0x0, 0x0, @dev}}}}}, 0x0)

[  522.030503] CR3 = 0x00000000fffbc000
[  522.045968] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  522.056724] audit: type=1800 audit(1616030414.635:95): pid=7413 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="file0" dev="sda1" ino=14145 res=0
[  522.095035] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  522.120062] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  522.127821] audit: type=1800 audit(1616030414.635:96): pid=7413 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="file0" dev="sda1" ino=14145 res=0
[  522.147008] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  522.155411] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.163684] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.172234] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.180305] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.188642] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.197109] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  522.205873] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  522.214295] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  522.222428] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  522.230479] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  522.237159] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  522.244706] Interruptibility = 00000000  ActivityState = 00000000
[  522.250929] *** Host State ***
[  522.254332] RIP = 0xffffffff811601fe  RSP = 0xffff8880a00cf9b8
[  522.260307] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  522.266774] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  522.274829] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  522.280704] CR0=0000000080050033 CR3=000000009db55000 CR4=00000000001426f0
[  522.287788] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  522.294585] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  522.300628] *** Control State ***
[  522.304127] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  522.310776] EntryControls=0000d1ff ExitControls=002fefff
[  522.316278] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  522.323260] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  522.329912] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  522.337024]         reason=80000021 qualification=0000000000000000
01:20:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0x0, 0x0, 0x8, [], 0x38}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:14 executing program 0:
r0 = timerfd_create(0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r1=>0x0})
timerfd_settime(r0, 0x0, &(0x7f0000000040)={{}, {0x0, r1+60000000}}, 0x0)

01:20:14 executing program 4:
prctl$PR_GET_TSC(0x4, &(0x7f0000000000))

01:20:14 executing program 2:
syz_mount_image$msdos(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@known='user.syz\x00', 0x0, 0x0, 0x0)

01:20:14 executing program 5:
syz_open_dev$rtc(&(0x7f00000000c0)='/dev/rtc#\x00', 0x7, 0x600)

01:20:14 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, r4, 0x8ba8904ed95e8635, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000740)={0x64, 0x0, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x8801)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300)='nl802154\x00', 0xffffffffffffffff)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000240)='NLBL_CALIPSO\x00', r3)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r6=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x34, r5, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x440d0}, 0x40004)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x0, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x1c}}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r9, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x78, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5c9e4d6b6fc3e5d33ad867fa483a179bd827ed6774dcfa9b119fc2098b4d299a"}, @NL802154_KEY_ATTR_ID={0x18, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5533d3fd8c95cb5832f42b02dabc408c"}, @NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8000}]}]}, @NL802154_ATTR_SEC_KEY={0x6c, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "05160d193e13c6d55c75b05a9d9487d85a92624807f4e1794600b876a414d746"}, @NL802154_KEY_ATTR_ID={0x10, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fff}]}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc5}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x28, r1, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)

[  522.343477] IDTVectoring: info=00000000 errcode=00000000
[  522.348917] TSC Offset = 0xfffffee558823912
[  522.353274] TPR Threshold = 0x00
[  522.356627] EPT pointer = 0x0000000048b4001e
[  522.361013] Virtual processor ID = 0x0001
01:20:15 executing program 4:
syz_emit_ethernet(0xaa, &(0x7f0000000200)={@random="177fb55b3809", @empty, @val={@void}, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x60}}}}}, 0x0)

01:20:15 executing program 5:
keyctl$restrict_keyring(0x6, 0x0, 0x0, 0x0)

01:20:15 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000180)=' ', 0x1}, {&(0x7f00000001c0)="81", 0x1}], 0x3}, 0x0)

01:20:15 executing program 0:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmmsg$sock(r0, &(0x7f0000000000)=[{{0x0, 0x26, 0x0, 0x0, 0x0, 0x0, 0xe03f0300}}], 0x40000b9, 0x0)

01:20:15 executing program 4:
mq_open(&(0x7f0000000000)='}\x00', 0x40, 0x0, &(0x7f0000000040)={0x100000000, 0x100000001, 0x10001, 0x9})

01:20:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000)='NLBL_UNLBL\x00', 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

[  522.552523] *** Guest State ***
[  522.560367] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  522.591921] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  522.600850] CR3 = 0x00000000fffbc000
[  522.608122] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  522.620840] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  522.637934] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  522.652615] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  522.669756] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.677971] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.686316] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.694875] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.703171] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  522.711283] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  522.719682] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  522.727908] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  522.735949] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  522.744410] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  522.750817] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  522.758373] Interruptibility = 00000000  ActivityState = 00000000
[  522.764990] *** Host State ***
[  522.768172] RIP = 0xffffffff811601fe  RSP = 0xffff8880512379b8
[  522.774214] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  522.780609] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  522.788475] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  522.794694] CR0=0000000080050033 CR3=00000000a50b4000 CR4=00000000001426e0
[  522.801793] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  522.808683] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  522.814805] *** Control State ***
[  522.818305] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  522.825251] EntryControls=0000d1ff ExitControls=002fefff
[  522.830702] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  522.837760] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  522.844488] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}, {0x0, 0x0, 0x0, [], 0x38}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:15 executing program 5:
r0 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5421, &(0x7f00000015c0))

01:20:15 executing program 2:
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffb, &(0x7f0000000000)='rxrpc_s\x00', &(0x7f0000000040)='%\x00')

01:20:15 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$sock(r0, &(0x7f0000000a80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[@timestamping={{0x14}}, @txtime={{0x18}}], 0x30}}], 0x2, 0x0)

01:20:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040)='nl802154\x00', 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_SET_MACPARAMS(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)={0x44, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0x5}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x98}, @IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0x2}, @IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0x8}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x7f}, @IEEE802154_ATTR_LBT_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x20044485}, 0x40)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x71d, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

01:20:15 executing program 0:
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x42, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x101})

[  522.851049]         reason=80000021 qualification=0000000000000000
[  522.857494] IDTVectoring: info=00000000 errcode=00000000
[  522.863075] TSC Offset = 0xfffffee501796f9d
[  522.867379] TPR Threshold = 0x00
[  522.870722] EPT pointer = 0x000000009b1a101e
[  522.875180] Virtual processor ID = 0x0001
01:20:15 executing program 2:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@random="177fb55b3809", @empty, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @multicast2, @multicast1}, {0x0, 0x0, 0x0, @dev}}}}}, 0x0)

01:20:15 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000040)=""/249)

01:20:15 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGID(r0, 0x80084502, &(0x7f0000000140)=""/2)

01:20:15 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000023c0)={0x2020}, 0x2020)
read$FUSE(r0, 0x0, 0x0)

[  522.977227] *** Guest State ***
01:20:15 executing program 1:
socket(0x10, 0x2, 0xffd)

01:20:15 executing program 2:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x84442, 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000040)='security.ima\x00', &(0x7f0000000080)=@v2={0x0, 0x0, 0x0, 0x0, 0x20, "f1319ad9afb432441af84ba2e0a81f82d49db5fa24848363c249e914da703935"}, 0x29, 0x0)

[  522.998311] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  523.045999] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  523.074111] CR3 = 0x00000000fffbc000
[  523.081337] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  523.082084] audit: type=1800 audit(1616030415.655:97): pid=7510 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="file0" dev="sda1" ino=14017 res=0
[  523.094568] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  523.114426] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  523.127100] audit: type=1800 audit(1616030415.695:98): pid=7510 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="file0" dev="sda1" ino=14017 res=0
[  523.135182] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  523.154898] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.163484] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.180818] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.189645] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.198210] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.207005] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  523.215531] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  523.226774] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  523.237287] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  523.245497] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  523.252214] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  523.259826] Interruptibility = 00000000  ActivityState = 00000000
[  523.266226] *** Host State ***
[  523.269432] RIP = 0xffffffff811601fe  RSP = 0xffff88809ea2f9b8
[  523.275546] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  523.282020] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  523.290255] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  523.296218] CR0=0000000080050033 CR3=000000004b5f5000 CR4=00000000001426e0
[  523.303667] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  523.310336] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  523.316457] *** Control State ***
[  523.319902] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  523.326633] EntryControls=0000d1ff ExitControls=002fefff
[  523.332149] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  523.339061] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x6, 0x8, 0x6, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:15 executing program 5:
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@device={'device', 0x3d, './file0'}}], [{@smackfsroot={'smackfsroot', 0x3d, '&'}}]})

01:20:15 executing program 4:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000700)=[{}], 0x8)

01:20:15 executing program 0:
r0 = socket$inet(0x2, 0xa, 0x0)
fcntl$setstatus(r0, 0x4, 0x42c00)
sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

01:20:15 executing program 1:
syz_emit_ethernet(0x6a, &(0x7f0000000200)={@random="177fb55b3809", @empty, @val={@void, {0x8100, 0x7}}, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58}}}}}, 0x0)

01:20:15 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002300)={0x2020}, 0x2020)

[  523.345769] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  523.352391]         reason=80000021 qualification=0000000000000000
[  523.358694] IDTVectoring: info=00000000 errcode=00000000
[  523.364186] TSC Offset = 0xfffffee4c5cb190b
[  523.368492] TPR Threshold = 0x00
[  523.371905] EPT pointer = 0x00000000392e001e
[  523.376318] Virtual processor ID = 0x0001
01:20:16 executing program 2:
syz_emit_ethernet(0x6e, &(0x7f0000000200)={@random="177fb55b3809", @empty, @val={@void}, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2f, 0x0, @rand_addr=0x64010102, @rand_addr=0x64010102, {[@end]}}}}}}, 0x0)

01:20:16 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x22, &(0x7f00000005c0)="e1074efd", 0x4)

01:20:16 executing program 1:
mknod(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
setxattr$incfs_metadata(&(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x6)

01:20:16 executing program 0:
prctl$PR_SET_SECUREBITS(0x1c, 0x68)
prctl$PR_SET_SECUREBITS(0x1c, 0x0)

01:20:16 executing program 5:
shmget$private(0x0, 0x1000, 0x7a00, &(0x7f0000fff000/0x1000)=nil)

01:20:16 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x3, &(0x7f00000005c0)="e1074efd", 0x4)

[  523.542665] *** Guest State ***
[  523.585410] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  523.595340] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  523.612679] CR3 = 0x00000000fffbc000
[  523.617474] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  523.627221] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  523.635809] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  523.645791] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  523.656606] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.668365] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.679224] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.687946] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.696564] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  523.705770] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  523.714126] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  523.722556] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  523.730528] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  523.739182] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  523.746015] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  523.753961] Interruptibility = 00000000  ActivityState = 00000000
[  523.760181] *** Host State ***
[  523.764218] RIP = 0xffffffff811601fe  RSP = 0xffff888023a479b8
[  523.770248] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  523.777710] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  523.785686] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  523.791929] CR0=0000000080050033 CR3=0000000093c6c000 CR4=00000000001426e0
[  523.798999] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  523.805735] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  523.811875] *** Control State ***
[  523.815321] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  523.822039] EntryControls=0000d1ff ExitControls=002fefff
[  523.827481] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x0, 0x8, 0x6, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:16 executing program 5:
modify_ldt$write(0x1, &(0x7f0000000000), 0x10)

01:20:16 executing program 2:
syz_emit_ethernet(0x36, &(0x7f0000000000)={@random="177fb55b3809", @empty, @void, {@ipv4={0x8906, @igmp={{0x8, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @multicast2, @multicast1, {[@cipso={0x86, 0x9, 0x0, [{0x0, 0x3, '\f'}]}]}}, {0x0, 0x0, 0x0, @dev}}}}}, 0x0)

01:20:16 executing program 0:
shmat(0x0, &(0x7f0000fff000/0x1000)=nil, 0x4000)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)

01:20:16 executing program 4:
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000040)={{0x2, 0xee00, 0xee00, 0xee00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xffffffffffffffff})

01:20:16 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f0000000100)='./file0\x00', 0x400000000009000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x73a}], 0x0, &(0x7f0000000040))
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)

[  523.834452] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  523.841105] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  523.847737]         reason=80000021 qualification=0000000000000000
[  523.854132] IDTVectoring: info=00000000 errcode=00000000
[  523.859567] TSC Offset = 0xfffffee478c28b6b
[  523.863932] TPR Threshold = 0x00
[  523.867286] EPT pointer = 0x00000000a33ad01e
[  523.871814] Virtual processor ID = 0x0001
01:20:16 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, r0)

01:20:16 executing program 4:
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0xe0c0, 0x0)

01:20:16 executing program 0:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_ADD_RULE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)={0x420}, 0x420}}, 0x0)

[  523.936636] squashfs: SQUASHFS error: unable to read xattr id index table
01:20:16 executing program 5:
syz_mount_image$fuse(&(0x7f0000000680)='fuse\x00', &(0x7f00000006c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

01:20:16 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
recvmmsg(r0, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x2140, 0x0)

[  523.998542] *** Guest State ***
[  524.006837] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:16 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x7, &(0x7f00000005c0)="e1074efd", 0x4)

[  524.056969] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  524.098751] CR3 = 0x00000000fffbc000
[  524.112151] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  524.118154] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  524.125465] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  524.132657] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  524.140640] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.150470] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.166522] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.174571] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.183665] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.195500] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  524.204378] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  524.212765] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  524.220729] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  524.229406] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  524.236300] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  524.244259] Interruptibility = 00000000  ActivityState = 00000000
[  524.250500] *** Host State ***
[  524.254301] RIP = 0xffffffff811601fe  RSP = 0xffff8880a0a9f9b8
[  524.260543] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  524.267611] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  524.275898] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  524.282464] CR0=0000000080050033 CR3=0000000092f74000 CR4=00000000001426f0
[  524.289477] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  524.296995] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  524.303791] *** Control State ***
[  524.307254] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  524.313962] EntryControls=0000d1ff ExitControls=002fefff
[  524.319412] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  524.326596] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  524.333311] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  524.339878]         reason=80000021 qualification=0000000000000000
[  524.346291] IDTVectoring: info=00000000 errcode=00000000
01:20:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x0, 0x8, 0x6, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:16 executing program 2:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_PIE_OFF(r0, 0x7006)

01:20:16 executing program 0:
add_key$keyring(&(0x7f0000000080)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffc)

01:20:16 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f0000000100)='./file0\x00', 0x400000000009000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x73a}], 0x0, &(0x7f0000000040))
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:16 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x10, &(0x7f00000005c0)="e1074efd", 0x4)

01:20:16 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x13, &(0x7f00000005c0)="e1074efd", 0x4)

[  524.351780] TSC Offset = 0xfffffee43aaac618
[  524.356092] TPR Threshold = 0x00
[  524.359455] EPT pointer = 0x000000009ebf501e
[  524.363931] Virtual processor ID = 0x0001
01:20:17 executing program 2:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)={0x14, 0x14, 0x1}, 0x14}}, 0x0)

01:20:17 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/meminfo\x00', 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)

01:20:17 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_PLL_SET(r0, 0x40207012, 0x0)

01:20:17 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000680))

[  524.430688] squashfs: SQUASHFS error: unable to read xattr id index table
01:20:17 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f0000000100)='./file0\x00', 0x400000000009000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x73a}], 0x0, &(0x7f0000000040))
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:17 executing program 2:
request_key(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='-\x00', 0x0)

[  524.507569] *** Guest State ***
[  524.527510] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  524.575193] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  524.603672] squashfs: SQUASHFS error: unable to read xattr id index table
[  524.611173] CR3 = 0x00000000fffbc000
[  524.615960] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  524.622827] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  524.629100] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  524.645012] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  524.663658] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.672670] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.680736] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.690133] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.698672] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  524.707102] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  524.715571] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  524.723965] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  524.732387] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  524.740358] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  524.747388] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  524.755326] Interruptibility = 00000000  ActivityState = 00000000
[  524.762060] *** Host State ***
[  524.765252] RIP = 0xffffffff811601fe  RSP = 0xffff8880b069f9b8
[  524.771209] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  524.778553] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  524.786915] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  524.793263] CR0=0000000080050033 CR3=00000000af96e000 CR4=00000000001426e0
[  524.800276] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  524.807645] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  524.814117] *** Control State ***
[  524.817586] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  524.824611] EntryControls=0000d1ff ExitControls=002fefff
[  524.830062] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  524.837036] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  524.843840] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  524.850427]         reason=80000021 qualification=0000000000000000
[  524.856790] IDTVectoring: info=00000000 errcode=00000000
[  524.862337] TSC Offset = 0xfffffee3f409ee3a
[  524.866647] TPR Threshold = 0x00
[  524.869993] EPT pointer = 0x00000000a9be001e
01:20:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x0, 0x0, 0x6, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:17 executing program 5:
io_setup(0x1, &(0x7f0000000300))

01:20:17 executing program 0:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SIGNAL_INFO(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x60}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x5d, 0x3f2, 0x0, 0x0, 0x0, "", ["", "", "", "", "", "", "", "", ""]}, 0x10}}, 0x240048d0)

01:20:17 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f0000000100)='./file0\x00', 0x400000000009000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x73a}], 0x0, &(0x7f0000000040))
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:20:17 executing program 2:
syz_emit_ethernet(0xd6, &(0x7f0000000000)={@random="177fb55b3809", @empty, @void, {@ipv4={0x800, @igmp={{0x30, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x2, 0x0, @multicast2, @multicast1, {[@cipso={0x86, 0x52, 0x0, [{0x0, 0x7, "0c4ac1d99b"}, {0x0, 0x2}, {0x2, 0x2}, {0x0, 0xa, "758405cb31c92529"}, {0x0, 0x12, "e39e645a1691254612e06c2b1e669fb5"}, {0x0, 0x8, "142d17ee0bf5"}, {0x0, 0xc, "90ae325a9e29935345cb"}, {0x0, 0x7, "bc66f9a2a4"}, {0x0, 0xa, "42854c8718d2f2ce"}]}, @ssrr={0x89, 0x1b, 0x0, [@multicast2, @rand_addr, @broadcast, @empty, @local, @dev]}, @timestamp_addr={0x44, 0x1c, 0x0, 0x1, 0x0, [{@broadcast}, {}, {@private}]}, @timestamp={0x44, 0x20, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}, {0x0, 0x0, 0x0, @dev}}}}}, 0x0)

01:20:17 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockname(r0, 0x0, &(0x7f0000000080))

[  524.874547] Virtual processor ID = 0x0001
01:20:17 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000200))

01:20:17 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
getxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)=@random={'osx.', '\\-.+#^\x00'}, &(0x7f00000001c0)=""/17, 0x11)

01:20:17 executing program 2:
kexec_load(0x0, 0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x4}], 0x0)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmmsg$sock(r0, &(0x7f0000000000)=[{{0x0, 0x26, 0x0}}], 0x40000b9, 0x0)

[  524.942967] squashfs: SQUASHFS error: unable to read xattr id index table
01:20:17 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x1b, &(0x7f00000005c0)="e1074efd", 0x4)

[  525.010994] *** Guest State ***
[  525.026344] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:17 executing program 0:
r0 = timerfd_create(0x8, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r1=>0x0})
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{}, {0x0, r1+60000000}}, 0x0)

01:20:17 executing program 4:
kexec_load(0x0, 0x2, &(0x7f0000000040)=[{0x0}, {&(0x7f00000000c0)="158075f542d03a1974cee2a0f6fdd5bd", 0x10}], 0x0)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmmsg$sock(r0, &(0x7f0000000000)=[{{0x0, 0x26, 0x0}}], 0x40000b9, 0x0)

[  525.080534] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  525.096865] CR3 = 0x00000000fffbc000
[  525.100700] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  525.107784] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  525.119873] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  525.129060] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  525.141948] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.149936] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.160008] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.181716] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.202529] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.210569] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  525.219818] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  525.229952] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  525.238720] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  525.248817] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  525.262684] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  525.270217] Interruptibility = 00000000  ActivityState = 00000000
[  525.277512] *** Host State ***
[  525.280775] RIP = 0xffffffff811601fe  RSP = 0xffff8880a00cf9b8
[  525.287556] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  525.295102] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  525.303451] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  525.309468] CR0=0000000080050033 CR3=00000000a1d14000 CR4=00000000001426f0
[  525.317375] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  525.324466] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  525.330518] *** Control State ***
[  525.334675] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  525.341943] EntryControls=0000d1ff ExitControls=002fefff
[  525.347397] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  525.355009] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  525.362111] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  525.368678]         reason=80000021 qualification=0000000000000000
[  525.375802] IDTVectoring: info=00000000 errcode=00000000
01:20:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}, {0x0, 0x0, 0x0, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:18 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x894b, &(0x7f00000015c0))

01:20:18 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$search(0xa, r0, &(0x7f0000000080)='syzkaller\x00', &(0x7f00000000c0)={'syz', 0x2}, 0x0)

01:20:18 executing program 1:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000cc0)='/dev/full\x00', 0x0, 0x0)
fanotify_mark(r0, 0x42, 0x8000008, 0xffffffffffffffff, 0x0)

01:20:18 executing program 0:
syz_emit_ethernet(0x7a, &(0x7f0000000280)={@dev, @dev, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ab65d7", 0x44, 0x2b, 0x0, @ipv4={[], [], @broadcast}, @empty}}}}, 0x0)

01:20:18 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/cpuinfo\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000001dc0)={0x2020}, 0x2020)

[  525.381330] TSC Offset = 0xfffffee3af745030
[  525.385912] TPR Threshold = 0x00
[  525.389329] EPT pointer = 0x00000000a224001e
[  525.393803] Virtual processor ID = 0x0001
01:20:18 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000000c0)={0x2020}, 0x2020)

01:20:18 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000001a80)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='fuse\x00', 0x0, &(0x7f0000000280)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee01}, 0x2c, {'group_id'}})

01:20:18 executing program 4:
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x7, @tid=0xffffffffffffffff}, 0x0)

01:20:18 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$sock(r0, &(0x7f000000d380)=[{{0x0, 0x0, &(0x7f0000009c80)=[{&(0x7f0000007600)="8e", 0x1}], 0x1}}], 0x1, 0x24000800)

01:20:18 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x6, &(0x7f00000005c0)="e1074efd", 0x4)

01:20:18 executing program 4:
r0 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8903, &(0x7f00000015c0))

[  525.575961] *** Guest State ***
[  525.583800] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  525.595027] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  525.610230] CR3 = 0x00000000fffbc000
[  525.619658] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  525.638566] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  525.646747] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  525.664097] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  525.677668] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.693519] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.708099] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.718264] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.727324] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  525.735775] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  525.744213] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  525.752767] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  525.760762] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  525.769395] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  525.776219] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  525.784141] Interruptibility = 00000000  ActivityState = 00000000
[  525.790366] *** Host State ***
[  525.794146] RIP = 0xffffffff811601fe  RSP = 0xffff88808fa3f9b8
[  525.800134] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  525.807244] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  525.815526] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  525.821897] CR0=0000000080050033 CR3=000000005039d000 CR4=00000000001426e0
[  525.828913] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  525.836241] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  525.842699] *** Control State ***
[  525.846150] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  525.853632] EntryControls=0000d1ff ExitControls=002fefff
[  525.859088] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  525.866642] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  525.873812] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  525.880392]         reason=80000021 qualification=0000000000000000
[  525.887457] IDTVectoring: info=00000000 errcode=00000000
01:20:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x8, 0x1, 0xb6, [], 0xff}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:18 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002100)={0x2020}, 0x207f)

01:20:18 executing program 5:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x4000, 0x0)

01:20:18 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002080)={0x2020}, 0x2020)
read$FUSE(r0, 0x0, 0x0)

01:20:18 executing program 4:
openat$zero(0xffffffffffffff9c, &(0x7f0000002180)='/dev/zero\x00', 0x99082, 0x0)

01:20:18 executing program 1:
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x40286608, 0x0)

[  525.893409] TSC Offset = 0xfffffee362e56c4b
[  525.897873] TPR Threshold = 0x00
[  525.901221] EPT pointer = 0x000000009bf2801e
[  525.906675] Virtual processor ID = 0x0001
01:20:18 executing program 0:
ioctl$TIOCSISO7816(0xffffffffffffffff, 0xc0285443, &(0x7f0000000000))
shmctl$SHM_STAT_ANY(0x0, 0xf, &(0x7f0000000040)=""/4096)

01:20:18 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockname(r0, 0x0, &(0x7f0000000080))

01:20:18 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000040)=@file={0x0, './file0\x00'}, 0xfffffffffffffdd5)

01:20:18 executing program 5:
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/uts\x00')

01:20:18 executing program 2:
r0 = timerfd_create(0x8, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r1=>0x0})
timerfd_settime(r0, 0x0, &(0x7f0000000040)={{}, {0x0, r1+60000000}}, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000240)={{0x77359400}}, 0x0)

01:20:18 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
read$FUSE(r0, 0x0, 0x0)
read$FUSE(r0, &(0x7f00000086c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f000000a700)={0x2020}, 0x2020)

[  526.046616] *** Guest State ***
[  526.058948] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  526.088861] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  526.117462] CR3 = 0x00000000fffbc000
[  526.126841] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  526.147997] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  526.157852] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  526.164730] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  526.174352] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.183499] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.197911] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.206677] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.215165] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.223976] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  526.232525] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  526.240505] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  526.249387] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  526.257825] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  526.264686] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  526.272588] Interruptibility = 00000000  ActivityState = 00000000
[  526.278816] *** Host State ***
[  526.282665] RIP = 0xffffffff811601fe  RSP = 0xffff88808bc879b8
[  526.288633] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  526.295665] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  526.303956] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  526.309840] CR0=0000000080050033 CR3=00000000b079e000 CR4=00000000001426f0
[  526.317636] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  526.324728] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  526.330768] *** Control State ***
[  526.334826] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  526.342038] EntryControls=0000d1ff ExitControls=002fefff
01:20:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x0, 0x1, 0xb6, [], 0xff}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:19 executing program 1:
syz_emit_ethernet(0xaa, &(0x7f0000000200)={@random="177fb55b3809", @empty, @val={@void}, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58}}}}}, 0x0)

01:20:19 executing program 5:
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x6612, 0x0)

01:20:19 executing program 4:
r0 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8953, 0x0)

01:20:19 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, 0x0, 0x0)

01:20:19 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x4020940d, &(0x7f0000000900))

[  526.347485] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  526.355214] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  526.362303] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  526.368879]         reason=80000021 qualification=0000000000000000
[  526.375818] IDTVectoring: info=00000000 errcode=00000000
[  526.381255] TSC Offset = 0xfffffee32156afde
[  526.386509] TPR Threshold = 0x00
[  526.389943] EPT pointer = 0x0000000092f7401e
[  526.395491] Virtual processor ID = 0x0001
01:20:19 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000)='tmpfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x6d]}}]})

01:20:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x1, &(0x7f0000000000)=@raw=[@jmp], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:19 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x24, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x24}}, 0x0)

01:20:19 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f00000005c0)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}], 0x1, 0x4008080)
sendmmsg$inet(r0, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)='&', 0x1}], 0x1}}], 0x1, 0x0)

01:20:19 executing program 2:
fanotify_mark(0xffffffffffffffff, 0x42, 0x8000008, 0xffffffffffffffff, 0x0)

01:20:19 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8910, &(0x7f0000000080)={'tunl0\x00', 0x0})

[  526.577302] *** Guest State ***
[  526.585452] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  526.597867] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  526.620746] CR3 = 0x00000000fffbc000
[  526.633484] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  526.646995] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  526.655443] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  526.672707] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  526.680781] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.692993] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.706111] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.714218] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.722523] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  526.730486] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  526.738524] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  526.746848] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  526.754877] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  526.762910] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  526.769297] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  526.777764] Interruptibility = 00000000  ActivityState = 00000000
[  526.784232] *** Host State ***
[  526.787415] RIP = 0xffffffff811601fe  RSP = 0xffff8880510079b8
[  526.793977] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  526.800480] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  526.808483] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  526.814460] CR0=0000000080050033 CR3=00000000abb8a000 CR4=00000000001426e0
[  526.821545] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  526.828205] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  526.834466] *** Control State ***
[  526.837915] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  526.844633] EntryControls=0000d1ff ExitControls=002fefff
[  526.850075] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  526.857065] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  526.863779] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  526.870430]         reason=80000021 qualification=0000000000000000
[  526.876797] IDTVectoring: info=00000000 errcode=00000000
01:20:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x0, 0x0, 0xb6, [], 0xff}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:19 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000)='tmpfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x6d]}}]})

01:20:19 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x24, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x24}}, 0x0)

01:20:19 executing program 2:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
io_cancel(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
io_submit(r0, 0x0, 0x0)

01:20:19 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x15, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

01:20:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=@framed={{}, [@exit]}, &(0x7f0000000080)='GPL\x00', 0x7, 0xce, &(0x7f00000000c0)=""/206, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  526.882325] TSC Offset = 0xfffffee2d88877ba
[  526.886720] TPR Threshold = 0x00
[  526.890064] EPT pointer = 0x000000009f04101e
[  526.894533] Virtual processor ID = 0x0001
01:20:19 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x45)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000440)=""/245, 0xf5}, {&(0x7f0000000e00)=""/96, 0x60}, {&(0x7f0000001040)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

01:20:19 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x24, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x24}}, 0x0)

01:20:19 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000440)={0x14}, 0x40)

01:20:19 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000)='tmpfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x6d]}}]})

01:20:19 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000fc0)='net/tcp6\x00')
getresuid(&(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400))

01:20:19 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x24, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x24}}, 0x0)

[  527.034985] *** Guest State ***
[  527.053491] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  527.114873] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  527.128071] CR3 = 0x00000000fffbc000
[  527.136319] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  527.145856] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  527.152581] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  527.159573] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  527.172180] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.183318] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.192947] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.201141] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.209715] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.218145] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  527.227512] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  527.236244] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  527.244756] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  527.253181] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  527.260053] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  527.267663] Interruptibility = 00000000  ActivityState = 00000000
[  527.273977] *** Host State ***
[  527.277185] RIP = 0xffffffff811601fe  RSP = 0xffff8880500d79b8
[  527.283223] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  527.289634] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  527.297628] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  527.303683] CR0=0000000080050033 CR3=0000000033652000 CR4=00000000001426f0
[  527.310700] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  527.317424] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  527.323913] *** Control State ***
[  527.327389] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  527.334112] EntryControls=0000d1ff ExitControls=002fefff
[  527.339569] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  527.346533] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  527.353256] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  527.359822]         reason=80000021 qualification=0000000000000000
01:20:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}, {0x0, 0x0, 0x0, [], 0xff}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:19 executing program 4:
clock_getres(0x6, &(0x7f0000000b80))

01:20:19 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x127e, 0xffffffffffffffff)

01:20:19 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r0)

01:20:19 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, 0x0)

01:20:19 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000)='tmpfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x6d]}}]})

[  527.366221] IDTVectoring: info=00000000 errcode=00000000
[  527.371735] TSC Offset = 0xfffffee29a04b591
[  527.376042] TPR Threshold = 0x00
[  527.379402] EPT pointer = 0x00000000a471101e
[  527.383914] Virtual processor ID = 0x0001
01:20:20 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_PROTOCOL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, 0x1, 0x6, 0x5}, 0x14}}, 0x0)

01:20:20 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000001c0)={@local, @private1, @private2={0xfc, 0x2, [], 0x68}, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20c301e2})
sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0)

01:20:20 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x7, 0x0, 0x0, 0x0, 0x2}, 0x40)

01:20:20 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a3, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000000)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2}}}})

01:20:20 executing program 1:
syz_mount_image$msdos(0x0, 0x0, 0x0, 0x1, &(0x7f0000002240)=[{&(0x7f0000001180)="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", 0xffa, 0x6}], 0x0, 0x0)

01:20:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8915, &(0x7f0000000080)={'wg1\x00', 0x0})

[  527.550423] *** Guest State ***
[  527.575154] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  527.609814] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  527.619145] CR3 = 0x00000000fffbc000
[  527.623262] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  527.629322] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  527.635583] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  527.644400] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  527.652555] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.663807] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.672113] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.680094] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.690035] print_req_error: I/O error, dev loop1, sector 0
[  527.692960] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  527.705251] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  527.715005] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  527.724214] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  527.733055] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  527.741027] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  527.748224] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  527.756475] Interruptibility = 00000000  ActivityState = 00000000
[  527.763158] *** Host State ***
[  527.768593] RIP = 0xffffffff811601fe  RSP = 0xffff8880500d79b8
[  527.775468] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  527.782361] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  527.790461] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  527.797191] print_req_error: I/O error, dev loop1, sector 0
[  527.797777] CR0=0000000080050033 CR3=0000000033652000 CR4=00000000001426e0
[  527.810746] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  527.818367] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  527.825015] *** Control State ***
[  527.828600] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  527.836191] EntryControls=0000d1ff ExitControls=002fefff
[  527.842242] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  527.849177] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  527.856779] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  527.863783]         reason=80000021 qualification=0000000000000000
[  527.870094] IDTVectoring: info=00000000 errcode=00000000
01:20:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x80, 0x6, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000480)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4c03, 0x0)

01:20:20 executing program 2:
io_setup(0x5, &(0x7f0000000040)=<r0=>0x0)
io_cancel(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)

01:20:20 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)

01:20:20 executing program 4:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
io_getevents(r0, 0x0, 0x0, 0x0, 0x0)

01:20:20 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c08, &(0x7f0000000040)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "fe71ef3dc0ba2df8f0f9904849ca78845b415b5c930849c1bba1e016fc898b065c723dc07cbdbb3558035cc85d465de8d09cbdbe5454ed3af1d0904cc17ebc9c", "393a4f75479865b34893559c8994d5cbad33d5ce9cef92a7c80d1f63911f2c2e"})

[  527.876334] TSC Offset = 0xfffffee253030c60
[  527.880655] TPR Threshold = 0x00
[  527.884827] EPT pointer = 0x000000009a87c01e
[  527.889228] Virtual processor ID = 0x0001
01:20:20 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000180)=0x3, 0x4)

01:20:20 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8916, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:20 executing program 5:
syz_read_part_table(0x0, 0x0, &(0x7f00000006c0))

01:20:20 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x1, 0x4)

01:20:20 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000000)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @rand_addr=0x64010102}}}})

01:20:20 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x80108906, 0x0)

[  528.040235] *** Guest State ***
[  528.054118] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  528.088940] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  528.115996] CR3 = 0x00000000fffbc000
[  528.129707] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  528.145347] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  528.159717] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  528.175550] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  528.190083] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.200394] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.216820] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.228689] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.237886] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.247411] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  528.256607] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  528.265618] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  528.274403] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  528.284506] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  528.291116] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  528.299353] Interruptibility = 00000000  ActivityState = 00000000
[  528.306819] *** Host State ***
[  528.310145] RIP = 0xffffffff811601fe  RSP = 0xffff8880a91879b8
[  528.316731] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  528.324030] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  528.332048] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  528.337947] CR0=0000000080050033 CR3=0000000093004000 CR4=00000000001426e0
[  528.345135] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  528.351859] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  528.357901] *** Control State ***
[  528.361427] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  528.368086] EntryControls=0000d1ff ExitControls=002fefff
[  528.373599] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  528.380509] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  528.387242] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x0, 0x6, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:21 executing program 1:
clone(0x40000000, &(0x7f0000000000)="3875c172cbdbbad49e7d7a7d4fcda0d1a56cf561d3fbefa9", 0x0, &(0x7f00000000c0), &(0x7f0000000100)="b42380970afe81d01ce9c864b78e1d6fb53696917aba1a1c92e524aa0785bfffb27521216f6fcaad49c0ca2f782370f7432d3f40046f70d509f018068c7dd72071c80879e087782f3a6ad17c7d5dfbd9b5d48369a99c147ff1193321c3c61c6591561867c0d17114ef5bd34299692cdd7cedece2e9e6c4ac5cb82db0cf3f215bfad8b626c7be3c92875fc6cec27ea43e75364d9822dd31ad132a2e8553bc261c002db6a3b28b254519355d0213a4e9e654848359dfbf34944226e9")

01:20:21 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000002bc0)={&(0x7f0000002b00), 0xc, &(0x7f0000002b80)={&(0x7f0000002b40)={0x14}, 0x14}}, 0x0)

01:20:21 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x400000000000, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)
ioctl$LOOP_SET_FD(r1, 0x4c06, r0)

01:20:21 executing program 0:
bpf$MAP_CREATE(0x8, &(0x7f0000000040), 0x40)

01:20:21 executing program 5:
r0 = gettid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)

[  528.393890]         reason=80000021 qualification=0000000000000000
[  528.400210] IDTVectoring: info=00000000 errcode=00000000
[  528.405794] TSC Offset = 0xfffffee211102d80
[  528.410120] TPR Threshold = 0x00
[  528.413543] EPT pointer = 0x000000009d24401e
[  528.418815] Virtual processor ID = 0x0001
01:20:21 executing program 2:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f0000000400)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}])

01:20:21 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000400)='attr/keycreate\x00')

01:20:21 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x8}, 0x40)

01:20:21 executing program 5:
clock_gettime(0x1, &(0x7f00000004c0))

[  528.506376] IPVS: ftp: loaded support on port[0] = 21
[  528.598630] *** Guest State ***
[  528.612129] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:21 executing program 5:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002080)={0x2020}, 0x2020)

01:20:21 executing program 0:
syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x1)

[  528.642026] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  528.695446] IPVS: ftp: loaded support on port[0] = 21
[  528.702295] CR3 = 0x00000000fffbc000
[  528.710664] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  528.734887] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  528.744452] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  528.769851] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  528.791164] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.813254] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.824684] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.834781] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.842904] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  528.850935] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  528.860653] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  528.869362] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  528.878394] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  528.887349] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  528.894940] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  528.903782] Interruptibility = 00000000  ActivityState = 00000000
[  528.910073] *** Host State ***
[  528.914597] RIP = 0xffffffff811601fe  RSP = 0xffff8880b4a879b8
[  528.920602] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  528.927881] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  528.936288] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  528.942349] CR0=0000000080050033 CR3=0000000092c56000 CR4=00000000001426f0
[  528.949352] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  528.956095] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  528.962290] *** Control State ***
[  528.965776] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  528.972590] EntryControls=0000d1ff ExitControls=002fefff
[  528.978125] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  528.986862] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}, {0x0, 0x0, 0x0, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:21 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x5450, 0x0)

01:20:21 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000b00)='timerslack_ns\x00')

01:20:21 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000140)='tls\x00', 0x4)

01:20:21 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000780)='net/ip6_mr_cache\x00')

01:20:21 executing program 1:
pselect6(0x40, &(0x7f00000008c0), 0x0, 0x0, &(0x7f0000000980)={0x77359400}, 0x0)

[  528.993944] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  529.003632]         reason=80000021 qualification=0000000000000000
[  529.009948] IDTVectoring: info=00000000 errcode=00000000
[  529.015557] TSC Offset = 0xfffffee1c4316fd0
[  529.019948] TPR Threshold = 0x00
[  529.023422] EPT pointer = 0x000000005306801e
[  529.027856] Virtual processor ID = 0x0001
01:20:21 executing program 4:
creat(&(0x7f0000000940)='./file0\x00', 0x0)
lsetxattr(&(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)=@known='trusted.overlay.upper\x00', 0x0, 0x0, 0x0)

01:20:21 executing program 0:
clock_gettime(0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000bc0)='TIPCv2\x00', 0xffffffffffffffff)

01:20:21 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8930, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:21 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000440)={'erspan0\x00', 0x0})

01:20:21 executing program 0:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x8000}])

01:20:21 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000fc0)='net/tcp6\x00')
timerfd_settime(r0, 0x0, &(0x7f0000000080), 0x0)

[  529.198535] *** Guest State ***
[  529.217418] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  529.236018] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  529.257743] CR3 = 0x00000000fffbc000
[  529.264828] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  529.270899] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  529.279602] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  529.289029] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  529.301823] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.309834] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.337911] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.348152] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.358239] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.375822] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  529.391589] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  529.399583] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  529.408254] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  529.423544] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  529.437102] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  529.444743] Interruptibility = 00000000  ActivityState = 00000000
[  529.450964] *** Host State ***
[  529.454233] RIP = 0xffffffff811601fe  RSP = 0xffff88804f6979b8
[  529.460209] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  529.467232] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  529.475108] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  529.481439] CR0=0000000080050033 CR3=0000000099005000 CR4=00000000001426f0
[  529.489760] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  529.496502] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  529.502640] *** Control State ***
[  529.506086] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  529.512808] EntryControls=0000d1ff ExitControls=002fefff
[  529.518428] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  529.525440] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  529.532187] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  529.538756]         reason=80000021 qualification=0000000000000000
[  529.545217] IDTVectoring: info=00000000 errcode=00000000
[  529.550662] TSC Offset = 0xfffffee171cdbd0c
[  529.555045] TPR Threshold = 0x00
01:20:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x9, 0x1, 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:22 executing program 5:
bpf$MAP_CREATE(0xc, &(0x7f0000000040), 0x40)

01:20:22 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x1262, 0xffffffffffffffff)

01:20:22 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='rxrpc_propose_ack\x00'}, 0x10)

01:20:22 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
unshare(0x400)
sync_file_range(r0, 0x0, 0x0, 0x4)

[  529.558403] EPT pointer = 0x00000000a314d01e
[  529.563081] Virtual processor ID = 0x0001
[  529.738703] *** Guest State ***
[  529.750658] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  529.778459] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  529.791700] CR3 = 0x00000000fffbc000
[  529.795449] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  529.823189] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  529.829196] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  529.836739] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  529.846285] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.854736] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.863211] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.872527] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.880507] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  529.889273] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  529.897754] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  529.906204] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  529.914639] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  529.923105] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  529.929510] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  529.937740] Interruptibility = 00000000  ActivityState = 00000000
[  529.944486] *** Host State ***
[  529.947859] RIP = 0xffffffff811601fe  RSP = 0xffff8880966c79b8
[  529.954605] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  529.961011] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  529.969673] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  529.976048] CR0=0000000080050033 CR3=000000004af4d000 CR4=00000000001426e0
[  529.983638] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
01:20:22 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c03, r0)

01:20:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x10000000ffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff)

01:20:22 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)=ANY=[@ANYBLOB='\x00'])
setxattr$trusted_overlay_upper(&(0x7f0000001480)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.upper\x00', &(0x7f00000014c0)={0x6, 0xfb, 0xefd, 0x0, 0x0, "b145e3180bb48426b58ee26ae64909d4", "8dfa95f490b5c29ff9389f224c1d0f8d82b5401c68b18752f1f24810951641b2d28aa470a5fec7cc1cabfbdc679b6581b170cb2963e4d4421cf7cf61bf2e91106a5ccf86ced704dd5a91ce8fb6fa3bd4f0264986d9029c368058c1e293fdeab2ecadd3a1ccd738982be05e6527994f4d77691586962fb2ae58e80d061dbba03c9a595ffd4fb2788cd2a8e6147bf811fed93b0583e9ccd11df48aff0b5e0fc187392aa58728bbb313b8de8064e11cf658d4bb435e975574075faaae14529f47d687b1178c084e23c07574ca6d52155b5710231f80b96d6e3f99a05008ff65fc5a88242e8c12cf627442215a5eac9c07457af4980fb3cff8e999c94b6a95bb86457a9d71f139c054c26c88591fefa00524a080ffea5e29a99539b2beacc330b9c4c787e8adb5cf3e1dc30e877e2df587d44e9f2b204a99d914651fb183f816760ae3075916630905f52ddea2dad60a27da4650af5d05443215f78a826fd0599d12a4d9fabe4a3778ea20893b1afa01b78753cd758899b74aaad16b3f573eb2f39153b8c5cd0cbcd06274a462773e3f52bafe685084f9e482a3258cd3aedb1504cc0dcd567917600e564ff2d2fe8fb4afcd235db6db4fcda2b8f53798039f73dbd10b8c2f99697743a5b78a141f18a831aa794dd9430e2ab8b596e3d78e59d6763a86b0885e8f627002a5d77eac470fb685a4f7814b130fa4a7e5e66b3e6e3fae7bf31321c9f8858d8996c56391e41ed62fa28b4db74582f7578bc297d36e8c4d2266a64476654a23aa3878cc4e4b1c2d961f6e223498e0937572c7db8e6265063101cab017a65a7c77a503fec556060f8102caa95c5a23eebcdd3d1897f05f1328acae7446b5d5db454013c7e42c4d96accf8ddfe71fc7e5f56370d18a69dc699ad1303cb38a11f83d1a8660846755cd47a7f3a433a4011ee128b1e1ffec5a440621a6d044bd17ceee1f5cfec1dd35f41b89a816eaf5f25754307cb3968eae10d566fb79679c7af6ff82b28766cd99539dc09cefc0523a2112c5c81b269c8ec59131dbb9e5cb04d94b28f586b68b5d7df852866ad550768b34712a6080648ca5e3ddbb0996f0b0497ea907c6225d86664a4d5a659782373672b91e6c8ded3445dab6302bf55de0ba17560668426dcc562f757b019c878969a364a5e60be8eb6c3595846b7cbdbd0e1f88422a50d083bf65dd9dd2f5919bf38c2a74fce75f20517a17be51efd6f794e0f59e91da0478b833184db399e635d5c6a469bd5d1dde0c426fff46a4aea7af93ab32afef4d7864e7c7c6b81001293d1888b45f75e98707513fbd69ae16ac5b344532b7d62dcbfc1edc2bceab8a0ec62bf4638f13b968b764ece346288fceec159e68f49db618ea2ad067b301bb69ef7f983afd323738d9abdc729080130b00ee1e82997e9a41f03dd0712d73e334555e440d782adc17302bd3688b37e21dcc044cd139b7cf575ea372916ad6b94e6624cd77a97f18941e69eac13636a30e66cfdb31621145784864f25e61d66eabbafd2580bf1dd950a3e4884bf23c223711c833c715e8b1bf6a187da53bf021b53e5a3297e6d235b6effdd41c4b4de8a5bdbc84b002857e2483e35f3594809261454b257896e966c69b1fd95cc319e309e00e3f70b708794b742bb19234df85411c225b86c0115454a965b278dd5f6a7ea0e21c8679b57bf9090a1ce919c4d1056839725dcaa73640f3a9cc517284806653063fbb48bb614f1587f1cccb65f074c4508670f25e7a1fb3bb5b0c1a3d13b3a70a05f9be65880580809e80a5358132ed29a0ff8286d8de4812e4a0b5eb8bb12374ba43cf555fd033b9d4e95280293971fc81ff68c866df2cc49fecf90651b04de9d755dd77186b31de06d9828971c4202b98f757ffa00b0a7a3fab432dda48f6e3f2ac364a7a5749f56bf32142b2ad6c82f394477a7556a247d4863b2ba06b33e862f9ba43599c013d5739b3ce841e1776dbf03ef0b9c3fe3a138b2af1604c789b528dba03b5bdf6109adaf94aa24dad44b3257ca0f4e6800aaf1c0ef19c9461a56486d6909514b98603846d6ffb5d0acb5718050000007420c86dd9f0bb66e55dd70438cf20ee740cf780ea58b9562df870fc18659a6d9185873870790c9f087082365f40d7de077b81131d1b6651cc2fbe656fa7ed8f56c03d082fbce1dc67325c57d5af51d5fd243eb34b3ff952dd17d84a5688be17341f9d1a12e14f164f1065769d1ee1500afd2b52eeb470412fe623d58815b0f1170d519659959471b23fae3175f1409148daeb6d1f27622fa63bf06ad61362aa831c5ef62a03607eb2b8542c4b17d1d3f915d93f5df579068f015f0c78d2d87805ebfe8e6f57ddeaeef2a73e0283680227f1987561999d1a4a9e1b11ab945458a17f5c8d161b82b416e00bc90d2d5f5efffeafea0c30a6dbef943d4a580c4785118da34fd15514b81a8e7b5a9eebfe59b0d3565ded6c5200b20bd56eed9f95bb0e4d68bb99ce629a646c69270492b00e984317bb17f6bb29c264f64347b4948044b9f35f72889a0733e9b5381beaa1f69a72aa57cc00c24916d98f26fe0cf0457ec975b037cca64d581dd32005b7d7d39f26eb688002561366d68057d4183e940b6509468f0268174b35e0e13a101a3071b58df7cbdbc7819b523e30b74ed088a32c7ba159abd986a4607ebfc036e396645705b076543dd27b33b7bcf5b2f7fe989902d346aea6c7ef67573c83903e09570bc48017e01bfe1686e9fe3da28e727d679ddca33ce193fd3c4a525c25eb9d4e0d727dd0c9c9ee3709755344828402a6d384ea16ad9bdac4518df78eb1a848c269c7571d56742c2ff67fba4a57aefc93c45f814e4eb8cb9c04989072a25c8ccca82862053c1c0fde1891e5c8f8783118485f25ada68a1dce26eacdd4ddc84d07473d61cf6ee6a4d28b022311f1b7151763e083488866a8a7edddc8f61ffb6451764a6008f022d346c819ec86a0255258265e5ce28da25f84e90cdf97abf746108d782661f5533547099a4f8928a071f0afbebcb4acb82eb3f8aa14df0823ceade1dfc7e052fdb79d7dabd5477f4d18b602721892c56a8de2e0a955dbd60201fbc4ebf088b6efd6ad133cdf5134825517a8a21e16ab52ce3dc4b75ff07e33d74d68d5bd04056c88cfeea72065bed06eb9ac039d8130477ca68b36c06a15567e178012e2e090b42bdc235e05ca662aae33c1f736aefb41621ed734813db359d6ee2c3ac01aec680369b7164325c6fbfe0b28363f7d88f132f0eae29f132757772fc7336c5554907ab10b7143da1b62d9dbaa960fb7e32700334ee6a00f0f4b68e86dc0cdf09a8919b37d5cca678cdb09b1ba31e32e6a8a873faff01e7e37aebdac6fe276539eb764c37b2c54942b2c3bff04ecebaffbfd871efd41b6392a1e3be49a078abd76f6ce08431ea920d04ea2972291169487a056d4719eb08c1f52ed3ea26af31ae9d9d16463387e6e1a6b0d66040a7af2f0ce3a0b8df477f06c64f30ba59f6dfade2cee217cf56fadc107d603c80a2e68dd8b11e84dad6857495435c6bf5d7af2bf02c3b05e472b736114ef171a5358908657a4923460e295097081baf8410e17c9fa58e908d67124cc25d73e8c09ddfdfc7f663fb40a72691164490b7ea506084777283b653d2622972afe4ab4b24919f12f54cb3e03fff483632543a202b4662b1056f6b20830f8bd0cdf2c48ee0f1ca966251d4c0ece6dc318a7b2da1c37204b7a699fd195b817f669c7060c958f2bddbb868aae4801325c7933833d65bc5a95a0cf12212053a7f140359ec41e4f13241f9dbce60b15c81b349f18e2839907b75ae71fed5d2551b289ab139cfe4d80bc495dba7142cf2a65607b9bdf2b6c7045251544a6dc7e9f91dd55a3c962531ab30ddfe6cb91d578d08fb4b8e390ea816694298f9422f5e7a4610a3739d7ef3f5d4de5a45ab4220275620fb3020adb0f805d05b7cf14b216185f88295c1758ba6a98381da167c6ef57a3724013490de36a844f54e7d46f303a7f1ef50f1c273650c31eb37226a83c7915417e5d9692dace1c0c782a44ce661f3197e63bd9b0b0a78e2e2d2b3346e35294fb0b660909fb84acd0dd3390339568c223cfe8199abf117d6a548171a8e06f6d988f3979ebe4bb576d92fcf1231d943654de1a4d1ca08195d31ef8c12f62f25929a35e920eea9c3dd21b19b173a1a324e65949c5b204923e9a96100cdb5cff70351af51351ec38200cd8e7c5d6fb56a1607f88cbda686dcd4412855c16a9beccc2f0aa5420ca108115230574b1a5c67227d749fa247121bc689a2d44af153a929faca22cf1d9192eb148dcd8223c6d83c914be7cfdcbddbb6992ac47041e7b0b6a2dc8c91136e659b9b412101588f72ea73b4a41b2eb6f7b6d9d02502bb9856f46dd52890ee63913737cfb9e990950682c5bd1b627193272ae40d80cdad7d7a0ec90284af17aaaff7837039c58120929d287154406067bebec84e7a6fa44fab2cda175ee21e13739b9d092a893400a6db84d428393dc131023ab96fce6a681ba79f7e0ceb348b0d88c862629b9ed6ed18671926eaeb750c15b1f29e81e37b94ad7c07680e6fd7efcde6c2cc923d1c5c77642b0853e2fa7beabba21e8f733748a249de444266f083cdf6533d80407e9f46a870ff96745e9ae3efc2f1a3dcdd9668b095ae302dbcc08dc56f85295619ee5a53cabf0adae2277e8238bac02879ce81ea9402aec43f1f2ff0f6f2ae795fcd1af34901ce4c444c63f8445e788e518abe68acb34c31980980a01c0f838d01a8fa77fb542c96b341fb8ce311da00f6c601c2e66adc5a87637297e548a22f2365fc948a780045b12e21c199fca8cafb67c69e6d12327718bca40d35957d734c418a7ddbd9d2572a555ed2bf73ae50c554cec16e3d55d61f81f884df0646205d818a0b5d1917e5ad7df05b7ba6d0d0b816addec7a9b693363209e8faf5c7e87f9dd1abfda1040f77be95060ddd4a9933f5e56b0bb9b69fa871450a7ab44058c69c9683eeb01e4a705db5ad827623bf7611398c9191e70081e529cf55366549de94a354aea61f069a0757662920a9d3f108c403b0665f570531e278bf63a41568ec07ff2bfd3e33b9b18a0f230a685a974e1616aa8d97eda5ace56e48923eb38435b84045df9c2fe947be28a8f811b3aefc5ad471de532f970ba218935eebfc200be3d2b87176c4c2f24a6582e8260bb78db5102f80bc3b25c5ea26a8068b4000e291af6ebfa14f0b93dde9b553f09f9bb7d5ebf95a0cc83396473b23b163bd8c2e835c8424924a7a9cdfdbf0ff41c396601bb2dad29af9eaef631a56e1182d1552ebaea36f34ac5991a03603b96525fbabc641e5bc858af167e5e1112023c90150df13df6e25b800f73305742"}, 0xefd, 0x0)

01:20:22 executing program 2:
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000000)={0x7fffffff}, 0x8)

01:20:22 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x2, &(0x7f0000000900))

[  529.998887] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  530.021467] *** Control State ***
[  530.039322] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  530.066434] EntryControls=0000d1ff ExitControls=002fefff
[  530.100359] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:22 executing program 2:
bpf$MAP_CREATE(0x14, &(0x7f0000000040), 0x40)

01:20:22 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
unshare(0x400)
close(r0)
sync_file_range(r0, 0x0, 0x0, 0x0)

[  530.117957] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  530.126130] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  530.137351] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  530.144831]         reason=80000021 qualification=0000000000000000
[  530.155446] IDTVectoring: info=00000000 errcode=00000000
[  530.177264] TSC Offset = 0xfffffee127f6160a
01:20:22 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8930, &(0x7f0000000180)={'wlan1\x00'})

01:20:22 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2, &(0x7f0000000000)={0x0, {{0x2, 0x0, @local}}, {{0x2, 0x0, @dev}}}, 0x108)

01:20:22 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0xc0481273, 0xffffffffffffffff)

01:20:22 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000080)={[{@fat=@discard='discard'}]})

01:20:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x0, 0x1, 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:22 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x1, &(0x7f0000000040)=@raw=[@call], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  530.198990] TPR Threshold = 0x00
[  530.203282] EPT pointer = 0x00000000ab39c01e
[  530.216170] Virtual processor ID = 0x0001
01:20:22 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)

01:20:22 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x401)

01:20:22 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, &(0x7f0000000080)=@framed={{}, [@jmp={0x5, 0x0, 0x9}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0xfd, &(0x7f0000000200)=""/253, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  530.363161] FAT-fs (loop2): bogus number of reserved sectors
[  530.388492] FAT-fs (loop2): Can't find a valid FAT filesystem
[  530.405963] *** Guest State ***
01:20:23 executing program 0:
syz_read_part_table(0x0, 0x1, &(0x7f00000006c0)=[{&(0x7f0000001000)="9ae72ed043eac7429b83eb25d41cb01d5573986db20fe1aa6e95d933c0d04055caf93b514433aa4382915a0b6a5a96377e7522538d3e4a203d9e4af6435c6f8076271b8287f0913036d2bc064191f71d07eba2a749e6a3a5637b3dd077438386298110832fdc540e5248a972b8846757825c60b59988268035a428ca1f5a7bae29214388ae77b77bae85aff1f3fb7a8d7245cac69e2d7b82fd017f73bd9d44e1611e4ba64da595a8fb41e555aee55187255cdfb5d2d7d8e664f5d957bc17708567eb68ceba99620b92c0d9c7a9f79d634806d2d8228eb1c1c0271b49ac1f30fb6c16cddd2ab88b20e41d806d513fe5366e42d328ba8680aa8eaa1503d67bcd2e775632a787446ec8c2f6a77f07674ecff03a17bfb740a3490c11f057bcde08fc233119455702ac198ed8f5b0d744cb280f33b485703395409ed3dfa41b6606e61cd55a6cca5e773b005432351f192d0da39b0c84f1e5824592246212dba6bfaed52af0a2a62d5fe64c787ac3ec8498fe6f23db3eba24e18b5b3d8ceb2e3386d2d8684e7d4af4d4a380b24660f6fcfaf1f34f14fc61581c7d3008ed24598b7b77b0927d2f96bcb4f38150f0d336e894d9182edb707b31ac5925b474d6941799d3442df6f75778768a0b2aeeff5576680700187b80ef5a818cc08613ef2d21f7b6787dafdbee760da87be9fe67708d438c24a24e58b04dd0d9b3bbd6bc1c4738be", 0x200}])

[  530.430285] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:23 executing program 1:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='pagemap\x00')
prctl$PR_GET_NAME(0x10, &(0x7f0000000100)=""/9)

01:20:23 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x40081271, 0xffffffffffffffff)

01:20:23 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000540)='maps\x00')

[  530.478762] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:23 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/mcfilter6\x00')
lseek(r0, 0x9, 0x0)

01:20:23 executing program 1:
pselect6(0x40, &(0x7f00000008c0), 0x0, &(0x7f0000000940)={0xfff}, &(0x7f0000000980)={0x77359400}, &(0x7f0000000a00)={&(0x7f00000009c0)={[0xfff]}, 0x8})

[  530.554940] CR3 = 0x00000000fffbc000
[  530.574446] Dev loop0: unable to read RDB block 1
[  530.579325] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  530.579334] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  530.579344] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  530.606447]  loop0: unable to read partition table
01:20:23 executing program 2:
syz_genetlink_get_family_id$batadv(&(0x7f0000002280)='batadv\x00', 0xffffffffffffffff)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000002600)=""/100, 0x64)

[  530.629653] loop0: partition table beyond EOD, truncated
[  530.648275] loop_reread_partitions: partition scan of loop0 () failed (rc=-5)
[  530.677950] Dev loop0: unable to read RDB block 1
[  530.683760] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  530.692713]  loop0: unable to read partition table
[  530.700777] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  530.710796] loop0: partition table beyond EOD, truncated
[  530.716512] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  530.727696] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  530.736290] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  530.745811] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  530.770101] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  530.793013] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  530.793565] Dev loop0: unable to read RDB block 1
[  530.818401]  loop0: unable to read partition table
[  530.818435] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  530.823969] loop0: partition table beyond EOD, 
[  530.835996] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  530.849355] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  530.849946] truncated
[  530.860240] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  530.868540] Interruptibility = 00000000  ActivityState = 00000000
[  530.875239] loop_reread_partitions: partition scan of loop0 () failed (rc=-5)
[  530.882854] *** Host State ***
[  530.886171] RIP = 0xffffffff811601fe  RSP = 0xffff88803a73f9b8
[  530.897216] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  530.908266] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  530.920350] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  530.927574] CR0=0000000080050033 CR3=00000000ab48a000 CR4=00000000001426e0
[  530.939520] Dev loop0: unable to read RDB block 1
[  530.943497] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  530.950018]  loop0: unable to read partition table
[  530.958945] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  530.965397] loop0: partition table beyond EOD, truncated
[  530.967621] *** Control State ***
[  530.977003] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  530.987551] EntryControls=0000d1ff ExitControls=002fefff
[  530.995514] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  531.005255] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  531.018295] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  531.025520]         reason=80000021 qualification=0000000000000000
[  531.032956] IDTVectoring: info=00000000 errcode=00000000
[  531.040229] TSC Offset = 0xfffffee0cc6d8508
01:20:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}, {0x0, 0x0, 0x4}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:23 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f00000013c0)=@report={0x4c, 0x20, 0x0, 0x0, 0x0, {0x0, {@in6=@private1, @in6=@private2}}}, 0x4c}}, 0x0)

01:20:23 executing program 1:
creat(&(0x7f0000000300)='./file0\x00', 0x0)
io_setup(0x5ff, &(0x7f0000000040)=<r0=>0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000000)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
io_submit(r0, 0x2, &(0x7f0000000840)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000080)="100000000600c04a0100000000000000", 0x10}])

01:20:23 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000580)={'ip_vti0\x00', &(0x7f0000000500)={'gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @loopback}}}})

01:20:23 executing program 2:
syz_mount_image$msdos(0x0, 0x0, 0x0, 0x1, &(0x7f0000002240)=[{&(0x7f0000000180)="f5", 0x1, 0x80000001}], 0x0, 0x0)

01:20:23 executing program 0:
syz_read_part_table(0x0, 0x2, &(0x7f00000006c0)=[{&(0x7f0000001000)="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", 0x3f8, 0x1}, {&(0x7f0000000380)}])

[  531.045592] TPR Threshold = 0x00
[  531.049035] EPT pointer = 0x00000000a471101e
[  531.056719] Virtual processor ID = 0x0001
01:20:23 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
setresuid(0x0, 0xee00, 0xee00)
ioctl$LOOP_SET_FD(r0, 0x125f, 0xffffffffffffffff)

01:20:23 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x400000000000, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
setresuid(0x0, 0xee00, 0xee00)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
sched_setattr(r2, 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000009900)='/dev/ion\x00', 0x400800, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c06, r0)

01:20:23 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8991, &(0x7f0000000080)={'tunl0\x00', 0x0})

[  531.193414] Dev loop0: unable to read RDB block 1
[  531.212993]  loop0: unable to read partition table
[  531.218012] loop0: partition table beyond EOD, truncated
01:20:23 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000040)='net/rt_cache\x00')

[  531.245131] *** Guest State ***
[  531.263605] loop_reread_partitions: partition scan of loop0 () failed (rc=-5)
[  531.275219] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f00000000c0), 0x6)

01:20:23 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x8923, &(0x7f0000000040)={'veth1_vlan\x00', @ifru_hwaddr=@dev})

[  531.317864] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  531.358032] CR3 = 0x00000000fffbc000
[  531.362527] Dev loop0: unable to read RDB block 1
[  531.367467]  loop0: unable to read partition table
[  531.380241] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  531.387617] loop0: partition table beyond EOD, truncated
[  531.400945] loop_reread_partitions: partition scan of loop0 () failed (rc=-5)
[  531.408403] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  531.426802] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  531.439185] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  531.447744] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  531.456712] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  531.469660] Dev loop0: unable to read RDB block 1
[  531.474654] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  531.474667] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  531.474679] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  531.474688] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  531.474701] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  531.474708] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  531.474720] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  531.474727] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  531.474735] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  531.474741] Interruptibility = 00000000  ActivityState = 00000000
[  531.474745] *** Host State ***
[  531.474753] RIP = 0xffffffff811601fe  RSP = 0xffff8880b029f9b8
[  531.474767] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  531.474776] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  531.495722]  loop0: unable to read partition table
[  531.501181] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  531.510023] loop0: partition table beyond EOD, 
[  531.516144] CR0=0000000080050033 CR3=00000000ab48a000 CR4=00000000001426f0
[  531.523147] truncated
[  531.537646] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  531.606472] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  531.612868] *** Control State ***
[  531.617679] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  531.630823] EntryControls=0000d1ff ExitControls=002fefff
[  531.639446] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  531.651488] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  531.658436] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  531.670342]         reason=80000021 qualification=0000000000000000
01:20:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x9, 0x30, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:24 executing program 5:
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000004300)='fuseblk\x00', 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize'}}]}})

01:20:24 executing program 1:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mknod$loop(&(0x7f0000000180)='./bus/file1\x00', 0x0, 0x1)
setxattr$security_capability(&(0x7f00000001c0)='./bus/file1\x00', &(0x7f0000000200)='security.capability\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000400)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0'])
chown(&(0x7f0000000600)='./bus/file1\x00', 0x0, 0x0)

01:20:24 executing program 4:
socketpair(0xa, 0x2, 0x4000000, &(0x7f0000000000))

01:20:24 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:24 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/nf_conntrack_expect\x00')
timerfd_gettime(r0, 0x0)

[  531.677066] IDTVectoring: info=00000000 errcode=00000000
[  531.695154] TSC Offset = 0xfffffee0585fbcc4
[  531.705636] TPR Threshold = 0x00
[  531.709049] EPT pointer = 0x00000000399d701e
[  531.715598] Virtual processor ID = 0x0001
01:20:24 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x1, &(0x7f0000000000)=@raw=[@jmp], &(0x7f0000000040)='syzkaller\x00', 0x689f, 0xa4, &(0x7f0000000080)=""/164, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:24 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x240001)
r2 = dup2(r1, r0)
waitid$P_PIDFD(0x3, r2, 0x0, 0x2, 0x0)

01:20:24 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r0, 0x8921, &(0x7f0000000640)={'veth1_to_hsr\x00', @ifru_data=0x0})

01:20:24 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x16, 0x0, 0xfffffffe, 0xfffffffc, 0x0, 0x1}, 0x40)

01:20:24 executing program 1:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mknod$loop(&(0x7f0000000180)='./bus/file1\x00', 0x0, 0x1)
setxattr$security_capability(&(0x7f00000001c0)='./bus/file1\x00', &(0x7f0000000200)='security.capability\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000400)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0'])
chown(&(0x7f0000000600)='./bus/file1\x00', 0x0, 0x0)

[  531.930468] *** Guest State ***
01:20:24 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={0x0}, 0x300, 0x0, 0x8000000000000000}, 0x0)

[  531.955490] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  531.988861] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  532.031210] CR3 = 0x00000000fffbc000
[  532.045130] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  532.082695] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  532.104001] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  532.126066] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  532.144095] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  532.157752] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  532.170546] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  532.185695] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  532.194362] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  532.203848] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  532.216215] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  532.225663] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  532.237705] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  532.247158] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  532.257719] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  532.269296] Interruptibility = 00000000  ActivityState = 00000000
[  532.279610] *** Host State ***
[  532.284312] RIP = 0xffffffff811601fe  RSP = 0xffff8880b4a779b8
[  532.290353] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  532.302015] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  532.309883] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  532.319505] CR0=0000000080050033 CR3=00000000912c0000 CR4=00000000001426e0
[  532.328633] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  532.338716] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  532.348560] *** Control State ***
[  532.355376] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  532.364145] EntryControls=0000d1ff ExitControls=002fefff
[  532.369666] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  532.380372] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  532.389167] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  532.399174]         reason=80000021 qualification=0000000000000000
[  532.407580] IDTVectoring: info=00000000 errcode=00000000
[  532.416425] TSC Offset = 0xfffffedffd4f6429
[  532.420809] TPR Threshold = 0x00
[  532.427238] EPT pointer = 0x000000009e95201e
[  532.435325] Virtual processor ID = 0x0001
01:20:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x0, 0x30, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:25 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [], @remote}}, 0x1c)

01:20:25 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg(r0, &(0x7f0000003f00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001f00)=[{0x10}, {0x10, 0x1}], 0x20}}], 0x2, 0x0)

01:20:25 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002b40)={0x1c, 0x3, 0x1, 0xb03, 0x0, 0x0, {}, [@CTA_MARK_MASK={0x8}]}, 0x1c}}, 0x0)

01:20:25 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getpgrp(0x0)
rt_tgsigqueueinfo(0x0, r0, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x9})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r4, &(0x7f0000000080)={0x10, 0xffffffffffffffda}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r4, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r5 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r5, 0x4, 0x6100)
write$cgroup_type(r5, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:25 executing program 1:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mknod$loop(&(0x7f0000000180)='./bus/file1\x00', 0x0, 0x1)
setxattr$security_capability(&(0x7f00000001c0)='./bus/file1\x00', &(0x7f0000000200)='security.capability\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000400)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0'])
chown(&(0x7f0000000600)='./bus/file1\x00', 0x0, 0x0)

01:20:25 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8902, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:25 executing program 0:
socket$inet6(0xa, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/timer\x00', 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000180)={0x0, <r1=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r1+30000000}, 0x0)

01:20:25 executing program 4:
select(0x40, &(0x7f0000000000), 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x2710})

01:20:25 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0)
r1 = epoll_create(0x6)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)

01:20:25 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@private1, @private1, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x8]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20c301e2, r3})

01:20:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x0, 0x30, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:25 executing program 0:
socket$inet6(0xa, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/timer\x00', 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000180)={0x0, <r1=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r1+30000000}, 0x0)

01:20:25 executing program 2:
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x2, 0x0)
bind(r2, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80)
getsockname$packet(r2, &(0x7f00000004c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000500)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000024000705000000000000100000001f00", @ANYRES32=r3, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@delchain={0x70, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xfff3}, {0x0, 0xffff}}, [@filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x44, 0x2, [@TCA_BPF_ACT={0x34, 0x1, [@m_sample={0x30, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}]}, @TCA_BPF_NAME={0xc, 0x6, './file0\x00'}]}}]}, 0x70}}, 0x0)

01:20:25 executing program 4:
syz_open_procfs(0x0, &(0x7f00000000c0)='attr/exec\x00')

01:20:25 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1d}, 0x40)

[  533.026161] *** Guest State ***
[  533.037583] HTB: quantum of class FFFFFFF3 is big. Consider r2q change.
[  533.050399] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  533.110833] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  533.157881] CR3 = 0x00000000fffbc000
01:20:25 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'wg1\x00', &(0x7f0000000100)=@ethtool_gstrings={0x1b, 0x8}})

[  533.204246] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  533.235543] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:25 executing program 1:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mknod$loop(&(0x7f0000000180)='./bus/file1\x00', 0x0, 0x1)
setxattr$security_capability(&(0x7f00000001c0)='./bus/file1\x00', &(0x7f0000000200)='security.capability\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000400)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0'])
chown(&(0x7f0000000600)='./bus/file1\x00', 0x0, 0x0)

01:20:25 executing program 4:
clock_getres(0x0, &(0x7f0000000b80))

01:20:25 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'gre0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @remote}}}})

[  533.266309] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  533.306055] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  533.347783] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:26 executing program 5:
io_setup(0x5, &(0x7f0000000000))
io_setup(0xffff, &(0x7f0000000140))

[  533.390106] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:26 executing program 4:
bpf$MAP_CREATE(0xf, &(0x7f0000000040), 0x40)

[  533.440109] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  533.519767] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:26 executing program 4:
select(0x40, &(0x7f0000000040)={0x7}, 0x0, 0x0, 0x0)

[  533.570012] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  533.629885] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  533.690195] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  533.719523] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  533.740129] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  533.759717] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  533.775115] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  533.805877] Interruptibility = 00000000  ActivityState = 00000000
[  533.818444] *** Host State ***
[  533.834482] RIP = 0xffffffff811601fe  RSP = 0xffff8880504479b8
[  533.844890] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  533.851654] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  533.905217] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  533.911181] CR0=0000000080050033 CR3=00000000a61f3000 CR4=00000000001426e0
[  533.918195] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  533.928996] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  533.935661] *** Control State ***
[  533.939123] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  533.950790] EntryControls=0000d1ff ExitControls=002fefff
[  533.956793] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  533.968043] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  533.975244] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  533.986235]         reason=80000021 qualification=0000000000000000
[  533.993171] IDTVectoring: info=00000000 errcode=00000000
[  533.998616] TSC Offset = 0xfffffedf64a99b13
01:20:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x0, 0x30, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  534.007720] TPR Threshold = 0x00
[  534.011952] EPT pointer = 0x00000000aa48b01e
[  534.016478] Virtual processor ID = 0x0001
01:20:26 executing program 0:
socket$inet6(0xa, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/timer\x00', 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000180)={0x0, <r1=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r1+30000000}, 0x0)

01:20:26 executing program 1:
syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8922, &(0x7f0000000000)='lo:|T{\xdcD\xd2\xaf>o\xd6Q\x00\x19\x02\x00\xdd8\xde\x1bb\x00\x00\x00\x00\x89d^\x8f\xecb6\xd6\xd7AF,\xa3\x00\x00\x00\x00\x91\xed\x80\xff\x00\x00C\xeb&\xc6\xd6\xcb\x85\x9a\xb6OFl\xd3\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00e+\v\x1f\xa5\xac\xaf\x80\xbal\xc2\xcb\x03\byuE\x9fM\r0\xd6e\x10\xfe\xdd\x1a\xc2$\x04r\x01\xa9z4#Y*\xa7\"\x8e\xa3\x9dQ\x01[1')
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x2, 0x0)
bind(r2, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80)
getsockname$packet(r2, &(0x7f00000004c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000500)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000024000705000000000000100000001f00", @ANYRES32=r3, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)

01:20:26 executing program 4:
io_setup(0x5, &(0x7f0000000000))
io_setup(0x40, &(0x7f0000000a40)=<r0=>0x0)
io_setup(0x1, &(0x7f0000000040))
io_destroy(r0)

01:20:26 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000100), 0x4)

01:20:26 executing program 5:
socketpair(0x10, 0x3, 0x8001, &(0x7f0000000000))

[  534.125889] *** Guest State ***
[  534.148102] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  534.161992] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  534.175592] CR3 = 0x00000000fffbc000
[  534.179427] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  534.189526] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:26 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x8902, &(0x7f0000000900))

01:20:26 executing program 1:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x45)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000440)=""/245, 0x597}, {&(0x7f0000000300)=""/170, 0xaa}, {&(0x7f0000000e00)=""/96, 0x8}, {&(0x7f0000000600)=""/204, 0x2c6}, {&(0x7f0000001040)=""/4096, 0x1011}], 0x5}}], 0x14, 0x0, 0x0)

01:20:26 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x5421, &(0x7f0000000900))

[  534.200296] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  534.207828] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
01:20:26 executing program 0:
socket$inet6(0xa, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
openat$ttyS3(0xffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/timer\x00', 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000180)={0x0, <r1=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r1+30000000}, 0x0)

01:20:26 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x8943, &(0x7f0000000180)={'veth1_to_bridge\x00', @ifru_hwaddr=@multicast})

01:20:26 executing program 5:
clone(0x40000000, &(0x7f0000000000)="3875c172cbdbbad49e7d7a7d4fcda0d1a56cf561d3fbefa9", &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100)="b42380970afe81d01ce9c864b78e1d6fb53696917aba1a1c92e524aa0785bfffb27521216f6fcaad49c0ca2f782370f7432d3f40046f70d509f018068c7dd72071c80879e087782f3a6ad17c7d5dfbd9b5d48369a99c147ff1193321c3c61c6591561867c0d17114ef5bd34299692cdd7cedece2e9e6c4ac5cb82db0cf3f215bfad8b626c7be3c92875fc6cec27ea43e75364d9822dd31ad132a2e8553bc261c002db6a3b28b254519355d0213a4e9e654848359dfbf34944226e9")

[  534.248484] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  534.323846] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  534.355519] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  534.396520] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  534.420084] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  534.445123] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  534.466326] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  534.497126] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  534.520869] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  534.549064] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  534.555913] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  534.568157] Interruptibility = 00000000  ActivityState = 00000000
[  534.575748] *** Host State ***
[  534.579072] RIP = 0xffffffff811601fe  RSP = 0xffff8880532d79b8
[  534.590166] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  534.597254] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  534.614063] IPVS: ftp: loaded support on port[0] = 21
[  534.624660] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  534.651499] CR0=0000000080050033 CR3=000000004e817000 CR4=00000000001426f0
[  534.669097] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  534.685184] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  534.699406] *** Control State ***
[  534.708613] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  534.724688] EntryControls=0000d1ff ExitControls=002fefff
[  534.736939] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  534.753120] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  534.766059] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  534.790978]         reason=80000021 qualification=0000000000000000
[  534.805440] IDTVectoring: info=00000000 errcode=00000000
[  534.814200] TSC Offset = 0xfffffedece30eb90
[  534.818767] TPR Threshold = 0x00
[  534.824299] EPT pointer = 0x0000000098fa701e
[  534.828832] Virtual processor ID = 0x0001
01:20:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}, {0x0, 0x0, 0x0, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:27 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000003c0), 0x0, &(0x7f0000000540)={[{@numtail='nonumtail=0'}]})

01:20:27 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x894a, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000000)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2}}}})

01:20:27 executing program 1:
syz_read_part_table(0x0, 0x2, &(0x7f00000006c0)=[{&(0x7f0000001000)="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", 0x200}, {0x0}])
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000280)='9p\x00', 0x0, 0x0)

01:20:27 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x1c}}, 0x0)

01:20:27 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x1c}}, 0x0)

[  534.987924] FAT-fs (loop4): bogus number of reserved sectors
[  535.013428] FAT-fs (loop4): Can't find a valid FAT filesystem
[  535.043290] Dev loop1: unable to read RDB block 1
[  535.057602]  loop1: unable to read partition table
[  535.068686] *** Guest State ***
01:20:27 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x1c}}, 0x0)

[  535.098843] loop1: partition table beyond EOD, truncated
[  535.107116] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:27 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000002300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000022c0)={&(0x7f0000000040)={0x1ec4, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_EEE_MODES_OURS={0x1eb0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x1001, 0x4, "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"}, @ETHTOOL_A_BITSET_VALUE={0xb9, 0x4, "51b575236ba6ec0635de37d27059fffa638c184291662bfa81db5d1ff759067266c44f9e937af4ff189d7ce9b453238e8066f700259e6a853d2e9937b1f7516fed19aa3e9812ee115240b98cb9bd1d14a8c774fbaafd74a1c93a4f7279387c9483e10d714695dc2520442939fcf0ee0d5de3a4b7acd983615dbf95b7e74abe964bd79f68a0ad93af6c23438ef3967f8c81c5aa00d6312e1b95c20a7e1d96d2961787c921149a03e83a0b6a09d9441fb2abfb3d9cbe"}, @ETHTOOL_A_BITSET_MASK={0xde9, 0x5, "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"}]}]}, 0x1ec4}}, 0x0)

01:20:27 executing program 4:
select(0x40, &(0x7f0000000000), 0x0, 0x0, 0x0)

[  535.139465] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[  535.204116] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  535.240310] CR3 = 0x00000000fffbc000
01:20:27 executing program 2:
syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000002940)='./file0\x00', 0x0, 0x0, 0x0, 0x0)

01:20:27 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x1c}}, 0x0)

01:20:27 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xeb2be1b5e3c0ad58, 0x0)

[  535.248668] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  535.266436] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  535.325974] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  535.333446] Dev loop1: unable to read RDB block 1
[  535.339922]  loop1: unable to read partition table
[  535.369620] loop1: partition table beyond EOD, truncated
[  535.378747] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  535.394964] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[  535.407296] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  535.418956] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  535.437464] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  535.456323] Dev loop1: unable to read RDB block 1
[  535.464913]  loop1: unable to read partition table
[  535.470087] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  535.479960] loop1: partition table beyond EOD, truncated
[  535.488745] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  535.498848] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  535.507507] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  535.517018] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  535.540803] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  535.555533] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  535.573444] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  535.581069] Interruptibility = 00000000  ActivityState = 00000000
[  535.587365] *** Host State ***
[  535.590623] RIP = 0xffffffff811601fe  RSP = 0xffff88808f9e79b8
[  535.597422] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  535.603982] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  535.611929] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  535.617890] CR0=0000000080050033 CR3=00000000398e0000 CR4=00000000001426f0
[  535.625103] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  535.631938] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  535.638206] *** Control State ***
[  535.641823] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  535.648598] EntryControls=0000d1ff ExitControls=002fefff
[  535.654163] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  535.661240] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  535.667975] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  535.674662]         reason=80000021 qualification=0000000000000000
[  535.681139] IDTVectoring: info=00000000 errcode=00000000
[  535.686649] TSC Offset = 0xfffffede4dab303c
01:20:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x3, 0x50, 0x60, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:28 executing program 2:
io_setup(0x101, &(0x7f0000000040)=<r0=>0x0)
io_setup(0x40, &(0x7f0000000a40))
io_destroy(r0)
io_setup(0x4, &(0x7f0000000180))

01:20:28 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00', <r1=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0x1, &(0x7f0000000000)=@raw=[@jmp], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], r1, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:28 executing program 0:
socketpair(0x1e, 0x0, 0x0, &(0x7f0000001040))

01:20:28 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
fcntl$lock(r0, 0x5, &(0x7f0000000040))

[  535.691066] TPR Threshold = 0x00
[  535.694500] EPT pointer = 0x000000009f92e01e
[  535.698976] Virtual processor ID = 0x0001
01:20:28 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x45)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000440)=""/245, 0x597}, {&(0x7f0000000300)=""/170, 0xaa}, {&(0x7f0000000e00)=""/96, 0x487}, {&(0x7f0000000600)=""/204, 0x2c6}, {&(0x7f0000001040)=""/4096, 0x1011}], 0x5}}], 0x14, 0x0, 0x0)

01:20:28 executing program 1:
clone(0x40000000, 0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000100)="b42380970afe81d01ce9c864b78e1d6fb53696917aba1a1c92e524aa0785bfffb27521216f6fcaad49c0ca2f782370f7432d3f40046f70d509f018068c7dd72071c80879e087")

01:20:28 executing program 5:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
io_destroy(r0)
io_destroy(r0)

[  535.822255] *** Guest State ***
[  535.838976] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  535.868921] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  535.894541] CR3 = 0x00000000fffbc000
[  535.903414] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  535.919373] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  535.935209] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  535.958565] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  535.981012] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  535.989019] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.002924] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.014975] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.023658] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.031940] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  536.039915] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  536.048175] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  536.056560] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  536.064592] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  536.071083] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
01:20:28 executing program 4:
syz_mount_image$msdos(0x0, 0x0, 0x0, 0x2, &(0x7f0000002240)=[{&(0x7f0000000080)="9c37d811c00565b0e6", 0x9, 0x8}, {&(0x7f0000001180)="d8918b5a674770a7c5c17c7e6b8589001db211ceb81ebdf1cb1471590358e67c0cce6c66b7f6b550baeba766474be11ef8fd8764b825f2ce34b45d6bdba3c54e7b81cc9ae89687e18552d499701af52815c53ac08348a67f61946ecaa495e878e5d182fccbe8d649e3d609699a6d2844964854879987b385d226c31e04062f692dc132a16b0c70b6ab571a84bc7352ac48d14a8697a80f76db7c65f0b3418f55602c", 0xa2, 0x6}], 0x0, 0x0)

01:20:28 executing program 0:
clone(0x40000000, 0x0, 0x0, &(0x7f00000000c0), 0x0)

01:20:28 executing program 2:
bpf$MAP_CREATE(0x4, 0x0, 0x91)

01:20:28 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x40)

[  536.078558] Interruptibility = 00000000  ActivityState = 00000000
[  536.084868] *** Host State ***
[  536.088057] RIP = 0xffffffff811601fe  RSP = 0xffff88808bdc79b8
[  536.094130] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  536.100536] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  536.117352] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  536.136671] CR0=0000000080050033 CR3=00000000a9c69000 CR4=00000000001426e0
[  536.157406] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  536.167544] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  536.190902] *** Control State ***
[  536.195025] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  536.226292] EntryControls=0000d1ff ExitControls=002fefff
[  536.232963] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x0, 0x50, 0x60, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:28 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "7384dff42e5fccbc6e5f3376d1a61c0001b1c1985d91c2e535162efbafa7c3dfb352533fd642aefb982df73fc84effd56da3ad5b1e7d8f6a894f6651a1f51806", "d85ef46185fb8c5adada8042567c0eaa63962354b9f098615f2721d2f96c0247"})

[  536.240004] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  536.250727] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  536.258283]         reason=80000021 qualification=0000000000000000
[  536.265282] IDTVectoring: info=00000000 errcode=00000000
[  536.271333] TSC Offset = 0xfffffedde5654572
[  536.277200] TPR Threshold = 0x00
[  536.280668] EPT pointer = 0x00000000a6d4301e
[  536.286409] Virtual processor ID = 0x0001
01:20:28 executing program 5:
clone(0x95087480, 0x0, &(0x7f00000002c0), 0x0, 0x0)

01:20:28 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8921, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:28 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)={0xd}, 0x40)

01:20:28 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, &(0x7f0000000080)=@framed={{}, [@map]}, &(0x7f0000000140)='GPL\x00', 0x4, 0xfd, &(0x7f0000000200)=""/253, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  536.432900] *** Guest State ***
[  536.451821] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  536.474452] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  536.498025] CR3 = 0x00000000fffbc000
[  536.507498] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  536.521559] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  536.528700] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  536.538368] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  536.549211] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.560270] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.570669] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.586507] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.596677] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  536.609073] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  536.617344] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  536.629772] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  536.638145] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  536.646593] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  536.653590] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  536.661447] Interruptibility = 00000000  ActivityState = 00000000
[  536.667734] *** Host State ***
[  536.671248] RIP = 0xffffffff811601fe  RSP = 0xffff88808bdc79b8
[  536.677284] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  536.684034] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  536.692197] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  536.702268] CR0=0000000080050033 CR3=00000000a821c000 CR4=00000000001426f0
[  536.709354] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  536.716373] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  536.723286] *** Control State ***
[  536.726787] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  536.733833] EntryControls=0000d1ff ExitControls=002fefff
[  536.739661] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:29 executing program 1:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
io_submit(r0, 0x0, 0x0)
io_setup(0xffff, &(0x7f0000000140))

01:20:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000000c0)=@buf={0x0, &(0x7f0000000000)})

01:20:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000400)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000180)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0xfffffff7, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x92}]}})

[  536.755587] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  536.762371] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  536.769001]         reason=80000021 qualification=0000000000000000
[  536.775783] IDTVectoring: info=00000000 errcode=00000000
[  536.799019] TSC Offset = 0xfffffedd91b6fbe9
[  536.810229] TPR Threshold = 0x00
[  536.824795] EPT pointer = 0x0000000091e1801e
[  536.837606] Virtual processor ID = 0x0001
[  536.907570] IPVS: ftp: loaded support on port[0] = 21
[  536.979864] IPVS: ftp: loaded support on port[0] = 21
01:20:29 executing program 0:
select(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x4}, 0x0, &(0x7f0000000300)={0x77359400})

01:20:29 executing program 4:
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}}, 0x0)

01:20:29 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@local, @private1, @remote={0xfe, 0x80, [0x6, 0x0, 0x2, 0x8, 0x2, 0xa, 0x30, 0xb, 0xb, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20c301e2, r3})
sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0)

01:20:29 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000040)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "fe71ef3dc0ba2df8f0f9904849ca78845b415b5c930849c1bba1e016fc898b065c723dc07cbdbb3558035cc85d465de8d09cbdbe5454ed3af1d0904cc17ebc9c", "393a4f75479865b34893559c8994d5cbad33d5ce9cef92a7c80d1f63911f2c2e"})

01:20:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x0, 0x0, 0x60, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:29 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x125f, 0x0)

01:20:29 executing program 1:
unshare(0x400)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, 0xffffffffffffffff)

01:20:29 executing program 4:
io_setup(0x6, &(0x7f0000000040))
io_setup(0x1, &(0x7f0000000780)=<r0=>0x0)
io_destroy(r0)

01:20:29 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'})

01:20:29 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x80041285, 0xffffffffffffffff)

01:20:29 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000040)={'tunl0\x00', &(0x7f00000000c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x4, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})

[  537.147274] *** Guest State ***
[  537.162138] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:29 executing program 1:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = socket$inet6(0xa, 0x3, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@remote, 0x0, 0x0, 0x0, 0x1}, 0x20)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/mcfilter6\x00')
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x4}, 0x0)
sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
open(0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
socketpair(0x1e, 0x802, 0x0, &(0x7f0000000600)={<r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000016c0), 0x200000, 0x0)

01:20:29 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [], @private}}, 0x1c)

01:20:29 executing program 2:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='timerslack_ns\x00')

[  537.197647] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  537.225774] CR3 = 0x00000000fffbc000
[  537.241240] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:29 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000002300)={0x0, 0x0, 0x0, 0xffffc90000000000}, 0x0)

01:20:29 executing program 0:
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000040)=""/2, 0x2)

[  537.265436] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  537.294547] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  537.339830] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  537.348082] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  537.357820] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  537.373612] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  537.420647] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  537.436185] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  537.447024] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  537.455248] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  537.465245] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  537.474456] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  537.484194] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  537.496430] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  537.504948] Interruptibility = 00000000  ActivityState = 00000000
[  537.512093] *** Host State ***
[  537.515406] RIP = 0xffffffff811601fe  RSP = 0xffff88803855f9b8
[  537.523320] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  537.529839] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  537.539515] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  537.560584] CR0=0000000080050033 CR3=00000000a5981000 CR4=00000000001426f0
[  537.583711] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  537.590593] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  537.598821] *** Control State ***
[  537.602474] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  537.609135] EntryControls=0000d1ff ExitControls=002fefff
[  537.616337] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  537.623804] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}, {0x0, 0x0, 0x0, [], 0x3}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:30 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c05, r0)

01:20:30 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000002300)={0x0, 0x0, 0x0, 0xf}, 0x0)

01:20:30 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(r0, 0x8922, &(0x7f00000002c0)={'ip6tnl0\x00', @ifru_addrs=@ipx})

01:20:30 executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='hrtimer_start\x00'}, 0x10)

01:20:30 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x4c0a, 0xffffffffffffffff)

[  537.630565] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  537.638373]         reason=80000021 qualification=0000000000000000
[  537.645378] IDTVectoring: info=00000000 errcode=00000000
[  537.657577] TSC Offset = 0xfffffedd303dc509
[  537.662389] TPR Threshold = 0x00
[  537.665770] EPT pointer = 0x00000000a16cf01e
[  537.670177] Virtual processor ID = 0x0001
01:20:30 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x400000000000, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8922, &(0x7f0000000000)='lo:|T{\xdcD\xd2\xaf>o\xd6Q\x00\x19\x02\x00\xdd8\xde\x1bb\x00\x00\x00\x00\x89d^\x8f\xecb6\xd6\xd7AF,\xa3\x00\x00\x00\x00\x91\xed\x80\xff\x00\x00C\xeb&\xc6\xd6\xcb\x85\x9a\xb6OFl\xd3\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00e+\v\x1f\xa5\xac\xaf\x80\xbal\xc2\xcb\x03\byuE\x9fM\r0\xd6e\x10\xfe\xdd\x1a\xc2$\x04r\x01\xa9z4#Y*\xa7\"\x8e\xa3\x9dQ\x01[1')
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f0000000140)='trusted.overlay.origin\x00', &(0x7f0000000180)='y\x00', 0x2, 0x2)
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)

01:20:30 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/xfrm_stat\x00')
write$vga_arbiter(r0, 0x0, 0x0)

01:20:30 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x400000000000, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c06, r0)

01:20:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@local, @private1, @remote={0xfe, 0x80, [0x6, 0x0, 0x2, 0x8, 0x2, 0xa, 0x30, 0xb, 0xb, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20c301e2, r3})
sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x50)

[  537.759148] *** Guest State ***
[  537.766672] ip6tnl0: Invalid MTU 0 requested, hw min 68
[  537.777096] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:30 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@local, @private1, @remote={0xfe, 0x80, [0x6, 0x0, 0x2, 0x8, 0x2, 0xa, 0x30, 0xb, 0xb, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20c301e2, r3})
sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0)

01:20:30 executing program 4:
socketpair(0x0, 0xf, 0x0, &(0x7f0000000440))

[  537.868766] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  537.907260] CR3 = 0x00000000fffbc000
[  537.919519] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  537.958466] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  537.969118] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  537.984944] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  537.993591] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.007200] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.028064] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.047694] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.065162] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.074736] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  538.087346] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  538.097710] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  538.116917] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  538.128617] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  538.137405] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  538.158422] Interruptibility = 00000000  ActivityState = 00000000
[  538.174603] *** Host State ***
[  538.177888] RIP = 0xffffffff811601fe  RSP = 0xffff8880b399f9b8
[  538.188084] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  538.196100] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  538.208142] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  538.215359] CR0=0000000080050033 CR3=00000000a5981000 CR4=00000000001426f0
[  538.226239] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  538.234168] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  538.240291] *** Control State ***
[  538.247893] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  538.255837] EntryControls=0000d1ff ExitControls=002fefff
[  538.268683] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  538.277001] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  538.287588] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  538.295493]         reason=80000021 qualification=0000000000000000
[  538.305618] IDTVectoring: info=00000000 errcode=00000000
[  538.312418] TSC Offset = 0xfffffedcdc6bfa36
[  538.316806] TPR Threshold = 0x00
[  538.320227] EPT pointer = 0x000000009875501e
01:20:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x3, 0x56, 0x0, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
r1 = socket$key(0xf, 0x3, 0x2)
writev(r1, &(0x7f0000000680)=[{&(0x7f0000000100)="cdf61788fd981ab0e796075fe816fa955cacf6a8834ec3af4688097804eb8451a550fc0e2aae31abbcae41bb373960a6e4a9e7d7383a613a5d1debe1a7576c93687940345add54e85f6712c774", 0x4d}, {&(0x7f0000000240)="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", 0xfc}, {&(0x7f0000000080)}, {&(0x7f0000000180)="cc436b8564d8f860e4cd90c317ee0550599ff1fe6aaf8a56e3a7d29e8f6fb08ba986c0ae6862086566451013", 0x2c}, {&(0x7f0000000340)="372eb0b0a47e9f2168504f6e328317f3a26194c894ca7d66d0366561d9590ad0c47ce003ac59bb4f092b4b910ca59a4d244e7d56f58a86dc0bd70a333214d2b46090e7ba80cb8483375ebc4db6ba02beea06fdca767e875315987dfa60df9bb3aa7bade7ea4e67b580d5c406d01867009e2c1ca617c7833cd4d98556eb7e86f3d4af2ac9b18dbe6cebb6d0e64feb7c91", 0x90}, {&(0x7f0000000400)="ba133d51d716e2780460ecea7eb252457d5d7499c7304dba986400ab9e23779526a98ac3f05620d3e470616d29e6ec7c48e20ac850c65c427fd9e681db83a21a0e04eb120c45c4e0c9161841e155b5c9dc85354c6fffbfcde48a58739bfbf8ddeeb5adb13794cee89356ef34bfad99d335f25a251149", 0x76}, {&(0x7f0000000480)="71b99213780e67eb12dedcbc0d49f7a6dbc6eb9034d7bb721d7d29e57897ab7e19d6248a617a34acd7538b76706e2590dc31f1578484039e43441ccaa079a5ce831a063431ae5f3f301f94ea03d27e03d254fb71d74192687667e095d1c928df6990ea495f1238d73d9c5ce9178c8027dd97da30a9c761cca6c45925180d08", 0x7f}, {&(0x7f0000000500)="1fa9f1bfce2dc8e1c3d8478b297449fe945631a16576d1976adaac8a87b4f4607d157dccf7321991ca2951aad3874649fa7d9faa13d543cf5b10b2aee9ab5efa4099dd87a9191ab9bbe3075942b6c78bbbe8fedb2c253513410c69ede1b061293579b7d5282b8b127756367ba2f7c01442b9d979af599e1095d6e34a5295bf1a5d20a8e8e2c1644b6800f1c64a0566b5e53bc21db6f4dd25b29cee79b9c11ac604175d784241d6f6758ac946286f9608db74e4016c321786dee25a1840c31f4ce17c000b45b107a64c8230e58ab97cedaa3d62e15f03bed041fd3a5341b1", 0xde}, {&(0x7f0000000600)="9dd26c0a2632f4cdb1cc372b01397461afc63f15e531f9ec6514631d8dcc78e5fe7f271e56562ca065fc22403a33bb92803ad97a4ef84c64fb3704d8df2e4cbd7e5c2e6cdbf558eb", 0x48}], 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@local, @private1, @remote={0xfe, 0x80, [0x6, 0x0, 0x2, 0x8, 0x2, 0xa, 0x30, 0xb, 0xb, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20c301e2, r4})
sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0)

01:20:30 executing program 4:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002380))

01:20:30 executing program 5:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000002240), 0x0, &(0x7f0000002380))
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002440), 0x0)

01:20:30 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x400000000000, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r1, 0x4c06, r0)

01:20:30 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000100)=0x5, 0x4)

[  538.329159] Virtual processor ID = 0x0001
[  538.392364] Dead loop on virtual device ip6_vti0, fix it urgently!
[  538.411551] FAT-fs (loop5): bogus number of reserved sectors
[  538.414946] Dead loop on virtual device ip6_vti0, fix it urgently!
01:20:31 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x16, 0x3, 0x0, 0xfffffffc}, 0x40)

01:20:31 executing program 4:
r0 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x401, 0x20000)
vmsplice(r0, &(0x7f0000001300)=[{&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000000100)="dca1abfd77bef47d4c001305d102210a97225d1d74beb3d1b0665c457fcde36dc1ce6aaf2325f2bd09", 0x29}, {&(0x7f0000001240)="9608b9a8dec0e5cc4c5a4d2d6a83412bdb6c5f22846cc9b6f678aa46bef2b027e417510c471e9d3a7be985c39fd080986141517d5e7a89cb55dabfb22302068bcf60f4eb4a03f162cb5a9a9fb0b8403731b3651c950699d14acbed8deff524688104bc07970bf8bcca8654ba59724867cbbd5380586cab2968a77e3adc2a876a79af35c851cf9ab5e764574276d70aae", 0x90}, {&(0x7f0000000140)="2114885713be1b5ef8a5d393e575a90f10fcaa6f27c1df83225b7a50c0b3e097b7bdc6105a7becd0b40e2958d111718da81acd6708280e90a6a9637842e42c2650646c87af646a9cbe", 0x49}], 0x4, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000001c0)={@local, @private1, @remote={0xfe, 0x80, [0x6, 0x0, 0x2, 0x8, 0x2, 0xa, 0x30, 0xb, 0xb, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20c301e2, r4})
sendmmsg(r1, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0)

01:20:31 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "7384dff42e5fccbc6e5f3376d1a61c0001b1c1985d91c2e535162efbafa7c3dfb352533fd642aefb982df73fc84effd56da3ad5b1e7d8f6a894f6651a1f51806", "d85ef46185fb8c5adada8042567c0eaa63962354b9f098615f2721d2f96c0247"})
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff)

[  538.456235] FAT-fs (loop5): Can't find a valid FAT filesystem
[  538.461881] *** Guest State ***
[  538.469531] Dead loop on virtual device ip6_vti0, fix it urgently!
[  538.489437] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:31 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='pagemap\x00')
write$vga_arbiter(r0, 0x0, 0x0)

[  538.512159] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  538.535446] FAT-fs (loop5): bogus number of reserved sectors
[  538.551837] CR3 = 0x00000000fffbc000
01:20:31 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)=ANY=[@ANYBLOB='\x00'])
setxattr$trusted_overlay_upper(&(0x7f0000001480)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.upper\x00', &(0x7f00000014c0)={0x6, 0xfb, 0xf0b, 0x0, 0x0, "b145e3180bb48426b58ee26ae64909d4", "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"}, 0xf0b, 0x0)

01:20:31 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x204000)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c06, r0)

[  538.566379] FAT-fs (loop5): Can't find a valid FAT filesystem
[  538.566997] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  538.594242] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  538.639738] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  538.659627] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  538.697613] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.714613] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  538.719467] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.749116] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.774066] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.790332] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  538.804926] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  538.835390] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  538.848219] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  538.858522] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  538.871772] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  538.878189] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  538.890281] Interruptibility = 00000000  ActivityState = 00000000
[  538.906470] *** Host State ***
[  538.910331] RIP = 0xffffffff811601fe  RSP = 0xffff88809954f9b8
[  538.916485] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  538.927961] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  538.936935] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  538.947247] CR0=0000000080050033 CR3=000000008ddd0000 CR4=00000000001426e0
[  538.954563] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  538.966320] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  538.973204] *** Control State ***
[  538.976649] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  538.988844] EntryControls=0000d1ff ExitControls=002fefff
[  538.994995] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  539.006431] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  539.013762] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  539.025257]         reason=80000021 qualification=0000000000000000
[  539.031708] IDTVectoring: info=00000000 errcode=00000000
[  539.037149] TSC Offset = 0xfffffedc7b67e873
[  539.046796] TPR Threshold = 0x00
[  539.050175] EPT pointer = 0x000000004908c01e
01:20:31 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x0, 0x56, 0x0, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:31 executing program 0:
clone(0x40000000, 0x0, 0x0, 0x0, &(0x7f0000000100))

01:20:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000180)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0xfffffff7, 0x0, [{0x0, 0x3f}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x92}]}})

01:20:31 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)

01:20:31 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x1, &(0x7f0000000040)=@raw=[@func], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:31 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="e00000001400010029bd7000fddbdf25000000000000000000000000000000000a0101020000000000000000000000004e2100064e2100000200a0ff"], 0xe0}}, 0x0)

[  539.055516] Virtual processor ID = 0x0001
[  539.107293] netlink: 144 bytes leftover after parsing attributes in process `syz-executor.1'.
[  539.140213] IPVS: ftp: loaded support on port[0] = 21
01:20:31 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8937, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:31 executing program 4:
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
socketpair(0x1f, 0x0, 0x0, &(0x7f0000000440))

[  539.163398] *** Guest State ***
01:20:31 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@delchain={0x24, 0x26, 0xf31}, 0x24}}, 0x0)

01:20:31 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
setresuid(0x0, 0xee00, 0xee00)
ioctl$LOOP_SET_FD(r0, 0x4c05, 0xffffffffffffffff)

01:20:31 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xfda6)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@private1, @private1, @local={0xfe, 0x80, [0x2, 0x0, 0x0, 0x0, 0x8]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20c301e2, r3})

01:20:31 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x45)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000440)=""/245, 0xf5}, {&(0x7f0000000300)=""/170, 0xaa}, {&(0x7f0000000e00)=""/96, 0x60}, {&(0x7f0000001040)=""/4096, 0x1000}], 0x4}}], 0x1, 0x0, 0x0)

[  539.204858] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  539.236753] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  539.283107] CR3 = 0x00000000fffbc000
[  539.298108] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  539.320765] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  539.350860] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  539.368334] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  539.392273] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.405352] IPVS: ftp: loaded support on port[0] = 21
[  539.411224] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.419284] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.428733] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.437136] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.446393] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  539.454741] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  539.465565] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  539.474367] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  539.483334] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  539.490219] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  539.499069] Interruptibility = 00000000  ActivityState = 00000000
[  539.506314] *** Host State ***
[  539.509570] RIP = 0xffffffff811601fe  RSP = 0xffff8880a16af9b8
[  539.516722] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  539.523876] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  539.532511] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  539.538504] CR0=0000000080050033 CR3=00000000aa851000 CR4=00000000001426f0
[  539.546560] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  539.553396] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  539.559569] *** Control State ***
[  539.564492] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  539.571944] EntryControls=0000d1ff ExitControls=002fefff
[  539.577599] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  539.584780] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  539.592118] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  539.598948]         reason=80000021 qualification=0000000000000000
01:20:32 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}, {0x0, 0x0, 0x0, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:32 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8931, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:32 executing program 5:
socketpair(0xa, 0x2, 0x8, &(0x7f0000001040))

01:20:32 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000fc0)='net/tcp6\x00')
read$usbfs(r0, &(0x7f0000000100)=""/115, 0x73)

01:20:32 executing program 2:
syz_mount_image$msdos(0x0, 0x0, 0x0, 0x2, &(0x7f0000002240)=[{&(0x7f0000000080)="9c", 0x1}, {&(0x7f0000001180)="d8918b5a674770a7c5c17c", 0xb, 0x6}], 0x0, 0x0)

01:20:32 executing program 0:
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000006c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

[  539.605459] IDTVectoring: info=00000000 errcode=00000000
[  539.610958] TSC Offset = 0xfffffedc1b69f109
[  539.615295] TPR Threshold = 0x00
[  539.618641] EPT pointer = 0x000000009bf2801e
[  539.623241] Virtual processor ID = 0x0002
01:20:32 executing program 1:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x2000, &(0x7f0000002380))
setxattr$trusted_overlay_origin(&(0x7f0000002940)='./file0\x00', &(0x7f0000002980)='trusted.overlay.origin\x00', &(0x7f00000029c0)='y\x00', 0x2, 0x0)

01:20:32 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x1086, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x40)

01:20:32 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000140)={'tunl0\x00', &(0x7f00000000c0)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x3d, 0x0, @local, @local}}}})

01:20:32 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0)

01:20:32 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x8941, &(0x7f0000000900))

[  539.738501] *** Guest State ***
[  539.745592] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  539.757840] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  539.770110] CR3 = 0x00000000fffbc000
01:20:32 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f2, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000000)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2}}}})

[  539.791502] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  539.808760] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  539.823944] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  539.861773] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  539.870063] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.878989] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.893517] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.901846] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.909811] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  539.918886] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  539.927297] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  539.935810] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  539.945837] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  539.954769] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  539.970983] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  539.978548] Interruptibility = 00000000  ActivityState = 00000000
[  539.985191] *** Host State ***
[  539.992312] RIP = 0xffffffff811601fe  RSP = 0xffff8880a16af9b8
[  539.998621] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  540.005365] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  540.013820] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  540.019892] CR0=0000000080050033 CR3=0000000095805000 CR4=00000000001426f0
[  540.027600] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  540.034596] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  540.040972] *** Control State ***
[  540.044498] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  540.051631] EntryControls=0000d1ff ExitControls=002fefff
[  540.060921] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:32 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x2, 0x4, 0x80, [], 0x81}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:32 executing program 4:
io_setup(0x5e19, &(0x7f0000000040))
io_setup(0x1, &(0x7f0000000100))
io_setup(0x1, &(0x7f0000000140))
io_destroy(0x0)
io_setup(0x40, &(0x7f0000000a40))
io_setup(0x72, &(0x7f0000000080))

01:20:32 executing program 5:
syz_mount_image$msdos(0x0, 0x0, 0x0, 0x4, &(0x7f0000002240)=[{&(0x7f0000000080)="9c", 0x1}, {0x0, 0x0, 0xd07}, {&(0x7f0000001180)="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", 0xffb, 0x6}, {&(0x7f0000002180)="ab", 0x1}], 0x0, 0x0)

01:20:32 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8914, 0x0)

01:20:32 executing program 0:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)

01:20:32 executing program 1:
clone(0x40000000, 0x0, 0x0, 0x0, 0x0)

[  540.071665] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  540.078455] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  540.085388]         reason=80000021 qualification=0000000000000000
[  540.094319] IDTVectoring: info=00000000 errcode=00000000
[  540.099872] TSC Offset = 0xfffffedbcc55836a
[  540.104919] TPR Threshold = 0x00
[  540.108366] EPT pointer = 0x00000000a284c01e
[  540.113058] Virtual processor ID = 0x0001
01:20:32 executing program 5:
socketpair(0x2c, 0x0, 0x0, &(0x7f00000002c0))

[  540.208403] *** Guest State ***
01:20:32 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
sendmsg$inet6(r0, &(0x7f0000000480)={&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}, 0x0)

01:20:32 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000040)={0x0, 0x0, 0xfffffffffffffffe}, 0x0)

[  540.242073] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  540.256066] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:32 executing program 4:
syz_mount_image$msdos(&(0x7f0000000480)='msdos\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@fat=@usefree='usefree'}, {@dots='dots'}], [{@context={'context', 0x3d, 'system_u'}}, {@appraise='appraise'}, {@pcr={'pcr'}}]})

01:20:32 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000140), 0x4)

01:20:32 executing program 0:
socket$inet_udp(0x2, 0x2, 0x0)
clone(0x40000000, &(0x7f0000000000)="3875c172cbdbbad49e7d7a7d4fcda0d1a56cf561d3fbefa9", &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100)="b42380970afe81d01ce9c864b78e1d6fb53696917aba1a1c92e524aa0785bfffb27521216f6fcaad49c0ca2f782370f7432d3f40046f70d509f018068c7dd72071c80879e087782f3a6ad17c7d5dfbd9b5d48369a99c147ff1193321c3c61c6591561867c0d17114ef5bd34299692cdd7cedece2e9e6c4ac5cb82db0cf3f215bfad8b626c7be3c92875fc6cec27ea43e75364d9822dd31ad132a2e8553bc261c002db6a3b28b254519355d0213a4e9e654848359dfbf34944226e9")

[  540.304167] CR3 = 0x00000000fffbc000
[  540.319563] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  540.340044] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  540.355710] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  540.376996] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  540.401772] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.409915] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.424348] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.436750] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.450370] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.459143] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  540.472295] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  540.490518] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  540.498928] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  540.508077] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  540.516897] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  540.525657] Interruptibility = 00000000  ActivityState = 00000000
[  540.532622] *** Host State ***
[  540.535924] RIP = 0xffffffff811601fe  RSP = 0xffff8880395079b8
[  540.543000] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  540.549522] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  540.558591] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  540.565252] CR0=0000000080050033 CR3=00000000392e0000 CR4=00000000001426e0
[  540.573058] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  540.579834] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  540.587747] *** Control State ***
[  540.592138] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  540.598915] EntryControls=0000d1ff ExitControls=002fefff
[  540.605508] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  540.613206] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  540.621675] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  540.628378]         reason=80000021 qualification=0000000000000000
[  540.635809] IDTVectoring: info=00000000 errcode=00000000
[  540.642058] TSC Offset = 0xfffffedb8bc27c59
[  540.647235] TPR Threshold = 0x00
[  540.651921] EPT pointer = 0x00000000919c801e
01:20:33 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x0, 0x4, 0x80, [], 0x81}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:33 executing program 5:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

01:20:33 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000380)=[{&(0x7f0000000040)="200000000202000019000000500100000f000000000000000000000004000000000002000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="0000e3310000000011000000b138543112eb43ac9dbc7e1411f64d55010040", 0x1f, 0x4e0}, {&(0x7f0000000180)="010000c2bfd0f9d404b0868d0000000500402f", 0x13, 0x560}, {0x0, 0x0, 0xfffffffffffffffc}], 0x0, &(0x7f0000000500))

01:20:33 executing program 2:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/psched\x00')

[  540.656469] Virtual processor ID = 0x0001
01:20:33 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@delchain={0x24, 0x26, 0xf31}, 0x24}}, 0x0)

[  540.739264] EXT4-fs warning (device loop4): ext4_multi_mount_protect:287: Invalid MMP block in superblock
[  540.805716] *** Guest State ***
[  540.822502] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  540.838934] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  540.855273] EXT4-fs warning (device loop4): ext4_multi_mount_protect:287: Invalid MMP block in superblock
[  540.881023] CR3 = 0x00000000fffbc000
[  540.893646] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  540.904444] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  540.911980] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  540.918810] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  540.931982] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.940271] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.949676] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.959187] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.968277] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  540.979844] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  540.988688] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  540.997830] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  541.013300] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  541.024946] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  541.033403] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  541.045176] Interruptibility = 00000000  ActivityState = 00000000
[  541.053534] *** Host State ***
[  541.056858] RIP = 0xffffffff811601fe  RSP = 0xffff8880b31379b8
01:20:33 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffff, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff)

01:20:33 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8992, &(0x7f0000000080)={'tunl0\x00', 0x0})

01:20:33 executing program 2:
socket$inet_udp(0x2, 0x2, 0x0)
clone(0x40000000, &(0x7f0000000000), 0x0, &(0x7f00000000c0), &(0x7f0000000100)="b42380970afe81d01ce9c864b78e1d6fb53696917aba1a1c92e524aa0785bfffb27521216f6fcaad49c0ca2f782370f7432d3f40046f70d509f018068c7dd72071c80879e087782f3a6ad17c7d5dfbd9b5d48369a99c147ff1193321c3c6")

01:20:33 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0)

[  541.069456] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  541.077576] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  541.089685] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  541.110300] CR0=0000000080050033 CR3=000000004be07000 CR4=00000000001426f0
[  541.126243] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  541.142902] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  541.164298] *** Control State ***
[  541.168859] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
01:20:33 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000000)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2}}}})

01:20:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000180)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0xfffffff7, 0x0, [{0x0, 0x3f}]}})

[  541.176902] EntryControls=0000d1ff ExitControls=002fefff
01:20:33 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffff, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c03, &(0x7f0000000040)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "fe71ef3dc0ba2df8f0f9904849ca78845b415b5c930849c1bba1e016fc898b065c723dc07cbdbb3558035cc85d465de8d09cbdbe5454ed3af1d0904cc17ebc9c", "393a4f75479865b34893559c8994d5cbad33d5ce9cef92a7c80d1f63911f2c2e"})

[  541.226908] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  541.253064] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  541.278600] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  541.295836]         reason=80000021 qualification=0000000000000000
[  541.314881] IDTVectoring: info=00000000 errcode=00000000
[  541.332394] TSC Offset = 0xfffffedb3a0256bd
01:20:34 executing program 4:
syz_mount_image$msdos(0x0, 0x0, 0x0, 0x1, &(0x7f0000000740)=[{&(0x7f0000000500)='P', 0x1, 0x10000}], 0x0, 0x0)

01:20:34 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000003c0)={'ip_vti0\x00', &(0x7f0000000380)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @broadcast}}}})

01:20:34 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
unshare(0x400)
ioctl$LOOP_SET_FD(r0, 0x5452, 0xffffffffffffffff)

[  541.355901] TPR Threshold = 0x00
[  541.364128] EPT pointer = 0x000000009c24901e
[  541.389278] Virtual processor ID = 0x0001
01:20:34 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x0, 0x0, 0x80, [], 0x81}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:34 executing program 1:
bpf$MAP_CREATE(0x15, &(0x7f0000000040), 0x40)

01:20:34 executing program 5:
syz_read_part_table(0x0, 0x1, &(0x7f00000006c0)=[{&(0x7f0000001000)="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", 0x1ff, 0x1}])

01:20:34 executing program 1:
mkdir(0x0, 0x0)
socket$inet6(0xa, 0x3, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/mcfilter6\x00')
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x4}, 0x0)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
open(0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
socketpair(0x1e, 0x802, 0x0, &(0x7f0000000600)={<r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000016c0), 0x200000, 0x0)

[  541.581581] *** Guest State ***
[  541.594117] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  541.610072] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  541.619915] CR3 = 0x00000000fffbc000
[  541.624639] Dev loop5: unable to read RDB block 1
[  541.630060]  loop5: unable to read partition table
[  541.639837] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  541.640303] loop5: partition table beyond EOD, truncated
[  541.658110] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  541.666714] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[  541.744541] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  541.765491] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  541.776561] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  541.786262] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  541.798724] Dev loop5: unable to read RDB block 1
[  541.803987] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  541.809257]  loop5: unable to read partition table
[  541.813478] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  541.822280] loop5: partition table beyond EOD, truncated
[  541.829282] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  541.840342] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[  541.846327] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  541.858705] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  541.869790] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  541.873158] IPVS: ftp: loaded support on port[0] = 21
[  541.878025] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  541.892730] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  541.893559] Dev loop5: unable to read RDB block 1
[  541.899293] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  541.907394]  loop5: unable to read partition table
[  541.918501] Interruptibility = 00000000  ActivityState = 00000000
[  541.921329] loop5: partition table beyond EOD, truncated
[  541.926203] *** Host State ***
[  541.934082] RIP = 0xffffffff811601fe  RSP = 0xffff8880b31379b8
[  541.940952] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  541.948119] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  541.956808] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  541.967197] CR0=0000000080050033 CR3=00000000aa8c4000 CR4=00000000001426f0
[  541.975160] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  541.998336] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  542.014363] *** Control State ***
[  542.024003] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  542.031393] EntryControls=0000d1ff ExitControls=002fefff
[  542.036849] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:34 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000000)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\x7f\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x00\x00\x00\x00\xa1\xa2\xe0g\x98', 0x4)
fallocate(r0, 0x0, 0x0, 0x400005)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, 0x0, 0x0, @unused=[0x0, 0x0, 0x0, 0x8], @name="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"})
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000200)={{}, 0x0, 0x0, @unused, @devid})

01:20:34 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000002240), 0x0, &(0x7f0000002380))
newfstatat(0xffffffffffffff9c, &(0x7f0000002400)='./file0\x00', &(0x7f0000002440), 0x0)

01:20:34 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:34 executing program 5:
syz_read_part_table(0x0, 0x1, &(0x7f00000006c0)=[{&(0x7f0000001000)="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", 0x1ff, 0x1}])

01:20:34 executing program 1:
r0 = getpgid(0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[  542.043861] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  542.050884] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  542.057496]         reason=80000021 qualification=0000000000000000
[  542.063897] IDTVectoring: info=00000000 errcode=00000000
[  542.083392] TSC Offset = 0xfffffedad1f14b51
[  542.099927] TPR Threshold = 0x00
[  542.104522] EPT pointer = 0x000000004f85f01e
[  542.114364] Virtual processor ID = 0x0001
[  542.127164] FAT-fs (loop0): bogus number of reserved sectors
[  542.136337] FAT-fs (loop0): Can't find a valid FAT filesystem
01:20:34 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x0, 0x0, 0x0, [], 0x81}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  542.151157] Dev loop5: unable to read RDB block 1
[  542.158598]  loop5: unable to read partition table
[  542.177070] loop5: partition table beyond EOD, truncated
01:20:34 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280)='ethtool\x00', 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x18, r0, 0x305, 0x0, 0x0, {0x15}, [@HEADER={0x4}]}, 0x18}}, 0x0)

[  542.199608] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[  542.273625] FAT-fs (loop0): bogus number of reserved sectors
[  542.363565] FAT-fs (loop0): Can't find a valid FAT filesystem
01:20:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:35 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:35 executing program 5:
syz_read_part_table(0x0, 0x1, &(0x7f00000006c0)=[{&(0x7f0000001000)="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", 0x1ff, 0x1}])

01:20:35 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8971, &(0x7f0000000080)={'tunl0\x00', 0x0})

[  542.573502] *** Guest State ***
[  542.582065] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  542.591325] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  542.600255] CR3 = 0x00000000fffbc000
[  542.605424] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  542.622248] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  542.646347] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  542.792025] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  542.821252] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:35 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000440)={0x14, 0x0, 0x8, 0x90}, 0x40)

01:20:35 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:35 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

[  542.837501] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  542.851247] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  542.866710] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:35 executing program 1:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e75"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
lchown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r4, 0x0)
lstat(&(0x7f0000002d00)='./file0\x00', 0x0)

01:20:35 executing program 2:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x2000, &(0x7f0000002380))

[  542.901345] Dev loop5: unable to read RDB block 1
[  542.906386]  loop5: unable to read partition table
[  542.921253] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  542.928428] loop5: partition table beyond EOD, 
[  542.936124] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  542.946140] truncated
[  542.960759] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  542.984726] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[  542.985551] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
01:20:35 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1)
sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x81)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400), 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}]]}, 0x54}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af26, &(0x7f0000000000))
r2 = creat(0x0, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, 0x0)

[  543.009485] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  543.048014] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  543.057847] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  543.230743] Interruptibility = 00000000  ActivityState = 00000000
[  543.245260] *** Host State ***
[  543.262120] RIP = 0xffffffff811601fe  RSP = 0xffff88804fa279b8
[  543.288693] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  543.315064] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  543.336012] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  543.342359] CR0=0000000080050033 CR3=00000000526f8000 CR4=00000000001426f0
[  543.370140] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  543.379901] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  543.409487] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  543.442487] *** Control State ***
[  543.455311] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  543.466099] EntryControls=0000d1ff ExitControls=002fefff
[  543.488399] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  543.505278] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  543.515568] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  543.524512]         reason=80000021 qualification=0000000000000000
[  543.534054] IDTVectoring: info=00000000 errcode=00000000
[  543.539552] TSC Offset = 0xfffffeda4786de06
[  543.547652] TPR Threshold = 0x00
[  543.554265] EPT pointer = 0x00000000120e401e
[  543.558726] Virtual processor ID = 0x0001
01:20:36 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x0, 0x0, 0x0, [], 0x81}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:36 executing program 5:
syz_read_part_table(0x0, 0x1, &(0x7f00000006c0)=[{&(0x7f0000001000)="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", 0x1ff, 0x1}])

01:20:36 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:36 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1600bd63, &(0x7f0000000200), 0x4)

01:20:36 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8000000008d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0xfffffd82)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = getpgrp(0x0)
rt_tgsigqueueinfo(r4, r0, 0x1e, &(0x7f0000000300)={0x18, 0xfffffff7})
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x1, 0x0, 0x8}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r5, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r5, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r6, 0x4, 0x6100)
write$cgroup_type(r6, &(0x7f0000000200)='threaded\x00', 0x175d900f)

01:20:36 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1)
sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x81)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400), 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}]]}, 0x54}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af26, &(0x7f0000000000))
r2 = creat(0x0, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, 0x0)

01:20:36 executing program 1:
pipe2(&(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001c00000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='lock_acquire\x00', r1}, 0x10)
dup2(r2, r0)

[  543.690692] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  543.721813] Dev loop5: unable to read RDB block 1
[  543.726814]  loop5: unable to read partition table
[  543.737951] *** Guest State ***
[  543.752805] loop5: partition table beyond EOD, truncated
[  543.765572] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:36 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x3, 0x5)
setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f0000000000)=ANY=[], 0x1)
r2 = dup(r1)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000040)={<r3=>0x0, @local, @local}, &(0x7f00000000c0)=0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000800)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_dsmark={{0xb, 0x1, 'dsmark\x00'}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6}]}}]}, 0x3c}}, 0x0)

01:20:36 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(0xffffffffffffffff, 0x0, 0x100)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xa8, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x80, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1)
sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x64, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x5c}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af26, &(0x7f0000000000))
r4 = creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000080))

01:20:36 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x5460, 0x0)

[  543.977448] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[  544.007012] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
01:20:36 executing program 4:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])

[  544.049079] CR3 = 0x00000000fffbc000
[  544.066199] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:36 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000001400)='gretap0\x00', 0x10)

[  544.095743] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  544.158265] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  544.161854] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  544.194035] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  544.217511] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  544.235560] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  544.252592] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  544.269685] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  544.286717] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  544.302694] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  544.319659] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  544.337901] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  544.354958] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  544.371870] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  544.384171] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  544.395660] Interruptibility = 00000000  ActivityState = 00000000
[  544.403540] *** Host State ***
[  544.406745] RIP = 0xffffffff811601fe  RSP = 0xffff8880243379b8
[  544.417694] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  544.429180] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  544.442548] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  544.448957] CR0=0000000080050033 CR3=00000000aa8c4000 CR4=00000000001426e0
[  544.459857] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  544.468815] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  544.479096] *** Control State ***
[  544.485251] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  544.495225] EntryControls=0000d1ff ExitControls=002fefff
[  544.502706] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  544.509634] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:37 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}, {0x0, 0x0, 0x0, [], 0x81}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:37 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="28000000100001080000000000005c5400000000", @ANYRES32=0x0, @ANYBLOB="000000a0ebfaf00008001b"], 0x28}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
gettid()
pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000380)='./file1\x00', 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nvram\x00', 0x40000, 0x0)
lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000940)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000900)={&(0x7f0000000740)=@can_newroute={0x1b4, 0x18, 0x8, 0x70bd26, 0x25dfdbff, {0x1d, 0x1, 0x5}, [@CGW_CS_XOR={0x8, 0x5, {0xfffffffffffffffb, 0x7, 0xfffffffffffffffa, 0x96}}, @CGW_CS_XOR={0x8, 0x5, {0x4, 0xfffffffffffffffa, 0xfffffffffffffff9, 0x4}}, @CGW_MOD_AND={0x15, 0x1, {{{0x3, 0x0, 0x0, 0x1}, 0x5, 0x1, 0x0, 0x0, "45da5518ea72c581"}}}, @CGW_MOD_OR={0x15, 0x2, {{{0x2, 0x0, 0x1}, 0x2, 0x2, 0x0, 0x0, "1f2eb0b1a0ae2303"}, 0x2}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x1, 0x0, 0x1}, 0x4, 0x5, 0x0, 0x0, "655f7d638d20682b"}}}, @CGW_MOD_UID={0x8, 0xe, r3}, @CGW_MOD_OR={0x15, 0x2, {{{0x1, 0x1, 0x1}, 0x7, 0x2, 0x0, 0x0, "1ddf3a74bedd32a4"}, 0x6}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0x5, 0xfffffffffffffffd, 0x8}}, @CGW_CS_CRC8={0x11e, 0x6, {0x79, 0x4, 0x62, 0x4, 0xff, "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", 0x1, "0789f69d374fc4354f343358ea5a75cbfca3051d"}}]}, 0x1b4}}, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8008000}, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x2, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000640)={0x20, 0x0, 0x6, 0x0, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10085}, 0x0)
sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

01:20:37 executing program 4:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x0, 0x0)
fork()
ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000000c0))

01:20:37 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000200), 0x4)

01:20:37 executing program 5:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xb0, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x88, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7c}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1)
sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x58, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x58}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x5c}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af26, &(0x7f0000000000))
creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000080))

01:20:37 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(0xffffffffffffffff, 0x0, 0x100)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xa8, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x80, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1)
sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x64, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x5c}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af26, &(0x7f0000000000))
r4 = creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000080))

[  544.520059] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  544.528702]         reason=80000021 qualification=0000000000000000
[  544.538447] IDTVectoring: info=00000000 errcode=00000000
[  544.545930] TSC Offset = 0xfffffed9aa71bdc3
[  544.550252] TPR Threshold = 0x00
[  544.557316] EPT pointer = 0x00000000249c201e
[  544.563770] Virtual processor ID = 0x0001
01:20:37 executing program 1:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000001240)='(\x00')

[  544.678018] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  544.715326] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  544.781049] *** Guest State ***
01:20:37 executing program 4:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x1, 0x0, 0xf080}, 0x100)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xb0, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x88, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7c}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1)
sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x64, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x5c}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af26, &(0x7f0000000000))
r4 = creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000080))

[  544.806757] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:37 executing program 1:
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x0, 0x1})

01:20:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0x6, 0x1, 'mirred\x00'}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x700000000000000}, 0x0)

[  544.853768] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  544.876514] bridge0: port 2(bridge_slave_1) entered disabled state
[  544.883203] bridge0: port 1(bridge_slave_0) entered disabled state
[  544.887738] CR3 = 0x00000000fffbc000
01:20:37 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22}, 0x10)
listen(r0, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x15, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x4, 0xa}, @exp_smc={0xfe, 0x6}, @fastopen={0x22, 0x3, '\x00'}, @mptcp=@ack={0x1e, 0x12, 0x0, 0x4, "9f00d3a9c1e5b83ff2096d6e619d"}, @mptcp=@remove_addr={0x1e, 0x10, 0x0, 0x0, "13b13200f7046e7ac95e086406"}, @fastopen={0x22, 0x8, "1853dd841479"}]}}}}}}}, 0x0)

[  544.935094] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  544.945918] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  544.974285] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  544.998646] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  545.008444] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  545.034562] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:37 executing program 1:
socket$nl_sock_diag(0x10, 0x3, 0x4)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
request_key(0x0, &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\trust\xe3c*sgrVex:De', 0x0)
r0 = getpid()
rt_tgsigqueueinfo(0x0, r0, 0x0, 0x0)
ptrace(0xffffffffffffffff, r0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x42, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mount$fuse(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000002100)='fuse\x00', 0x0, &(0x7f0000004140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
read$FUSE(r1, &(0x7f000000c3c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0xffffffff, 0x400001}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000002140)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x10)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r3, &(0x7f0000008380)={0x2020}, 0x2000a3a0)

[  545.056167] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  545.085902] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  545.115316] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  545.124792] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  545.146219] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  545.161637] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  545.165061] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  545.177347] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  545.188348] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  545.198726] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  545.207730] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  545.214792] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  545.223126] Interruptibility = 00000000  ActivityState = 00000000
[  545.229899] *** Host State ***
[  545.239499] RIP = 0xffffffff811601fe  RSP = 0xffff8880a9a179b8
[  545.246157] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  545.253247] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  545.261944] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  545.268502] CR0=0000000080050033 CR3=0000000091d52000 CR4=00000000001426e0
[  545.276147] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  545.283818] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  545.290663] *** Control State ***
[  545.294197] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  545.301895] EntryControls=0000d1ff ExitControls=002fefff
[  545.307432] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  545.315278] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  545.322533] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  545.329623]         reason=80000021 qualification=0000000000000000
[  545.336528] IDTVectoring: info=00000000 errcode=00000000
[  545.342113] TSC Offset = 0xfffffed919de13c3
[  545.348106] TPR Threshold = 0x00
[  545.351656] EPT pointer = 0x000000005294101e
[  545.356852] Virtual processor ID = 0x0001
01:20:37 executing program 5:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)}, 0x100)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xb0, 0x0, 0x300, 0x0, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x88, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7c}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r2)
r3 = dup3(r1, r0, 0x80000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r3, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x58, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x54}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f0000000080))

[  545.376563] device bridge_slave_0 left promiscuous mode
[  545.385813] bridge0: port 1(bridge_slave_0) entered disabled state
[  545.401962] device bridge_slave_1 left promiscuous mode
[  545.407585] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.434788] bond0: Releasing backup interface bond_slave_0
[  545.441043] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  545.461786] bond0: Releasing backup interface bond_slave_1
[  545.476850] team0: Port device team_slave_0 removed
[  545.484561] team0: Port device team_slave_1 removed
[  545.489809] batman_adv: batadv0: Removing interface: batadv_slave_0
[  545.498430] batman_adv: batadv0: Removing interface: batadv_slave_1
[  545.507143] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.2'.
01:20:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x3, 0x0, 0x0, [], 0xff}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:38 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="28000000100001080000000000005c5400000000", @ANYRES32=0x0, @ANYBLOB="000000a0ebfaf00008001b"], 0x28}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
gettid()
pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000380)='./file1\x00', 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nvram\x00', 0x40000, 0x0)
lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000940)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000900)={&(0x7f0000000740)=@can_newroute={0x1b4, 0x18, 0x8, 0x70bd26, 0x25dfdbff, {0x1d, 0x1, 0x5}, [@CGW_CS_XOR={0x8, 0x5, {0xfffffffffffffffb, 0x7, 0xfffffffffffffffa, 0x96}}, @CGW_CS_XOR={0x8, 0x5, {0x4, 0xfffffffffffffffa, 0xfffffffffffffff9, 0x4}}, @CGW_MOD_AND={0x15, 0x1, {{{0x3, 0x0, 0x0, 0x1}, 0x5, 0x1, 0x0, 0x0, "45da5518ea72c581"}}}, @CGW_MOD_OR={0x15, 0x2, {{{0x2, 0x0, 0x1}, 0x2, 0x2, 0x0, 0x0, "1f2eb0b1a0ae2303"}, 0x2}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x1, 0x0, 0x1}, 0x4, 0x5, 0x0, 0x0, "655f7d638d20682b"}}}, @CGW_MOD_UID={0x8, 0xe, r3}, @CGW_MOD_OR={0x15, 0x2, {{{0x1, 0x1, 0x1}, 0x7, 0x2, 0x0, 0x0, "1ddf3a74bedd32a4"}, 0x6}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0x5, 0xfffffffffffffffd, 0x8}}, @CGW_CS_CRC8={0x11e, 0x6, {0x79, 0x4, 0x62, 0x4, 0xff, "0e1310055ce18add83b672647d61feb9081519308edcfe0b4abe66ede93b532c38e77c099509aaba9be51d99004ade83af7259dee67c4618896c88e2b5676ec9aa6eb35e90acd4a3881b1ef2f85a35e2c34e10a22e40f6f05a2ee3e4711d99683be83bfa6354b04ca71cce6c80795ea970000c4dfc9d348978ecd988e0c547d1aab2fd637f8d9e396114ba6a344db81fc2c45a2c3d647f668f6f98872e3277aef54c65cdf8c5b0ef2015f38400c4e168956e16fcb4b2706f92d2e20729eaea47b74903e3356cc3e6c1b25d1d7073df3c52ef2bf8f2b2e6827dd2b28504fc7f47e9b75d4562b6b8d6a3d3aac3e1953ae18d8432aff324ca89135121b376e2f89f", 0x1, "0789f69d374fc4354f343358ea5a75cbfca3051d"}}]}, 0x1b4}}, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8008000}, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x2, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000640)={0x20, 0x0, 0x6, 0x0, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10085}, 0x0)
sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

01:20:38 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='tegra_dma_tx_status\x00'}, 0x10)
perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x70, 0x6, 0x7, 0x6, 0x5, 0x0, 0x6, 0x80220, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x3, 0x7}, 0x10002, 0x7, 0x2, 0x7, 0x1000, 0x0, 0x100}, 0xffffffffffffffff, 0xd, r0, 0x2)
r1 = memfd_create(&(0x7f0000000000)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\x7f\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x00\x00\x00\x00\xa1\xa2\xe0g\x98', 0x4)
fallocate(r1, 0x0, 0x0, 0x400005)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, 0x0, 0x0, @unused=[0x20, 0x80000001, 0x2, 0x8], @name="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"})
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000040)=<r3=>0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000180)={"0db0dcae41f8ae8ffb09033b0881081c", 0x0, r3, {0x3, 0x80000001}, {0x0, 0x8}, 0x401, [0xe2, 0x24b, 0x20, 0x561, 0x400000, 0x7, 0x101, 0x10081, 0x1, 0xffffffffffffffc0, 0x3f, 0x4, 0x9, 0x3, 0x9, 0x6]})

01:20:38 executing program 5:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)}, 0x100)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xb0, 0x0, 0x300, 0x0, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x88, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7c}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r2)
r3 = dup3(r1, r0, 0x80000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r3, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x58, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x54}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f0000000080))

[  545.580110] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.2'.
01:20:38 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)}, 0x100)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0], 0x1000001bd)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000580)={0xb0, 0x0, 0x300, 0x0, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6d, 0x30}}}}, [@NL80211_ATTR_TID_CONFIG={0x88, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7c}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7ff}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x810}, 0x11)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000080)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}], 0x0, &(0x7f00000000c0)=ANY=[])
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c44, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0xee01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r2)
r3 = dup3(r1, r0, 0x80000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r3, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x58, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0xc000}, 0x4000004)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xb88e, 0x37}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x72f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x54}, 0x1, 0x0, 0x0, 0x40840}, 0x4004890)
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0xb2)
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f0000000080))

01:20:38 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="28000000100001080000000000005c5400000000", @ANYRES32=0x0, @ANYBLOB="000000a0ebfaf00008001b"], 0x28}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
gettid()
pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000380)='./file1\x00', 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nvram\x00', 0x40000, 0x0)
lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000940)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000900)={&(0x7f0000000740)=@can_newroute={0x1b4, 0x18, 0x8, 0x70bd26, 0x25dfdbff, {0x1d, 0x1, 0x5}, [@CGW_CS_XOR={0x8, 0x5, {0xfffffffffffffffb, 0x7, 0xfffffffffffffffa, 0x96}}, @CGW_CS_XOR={0x8, 0x5, {0x4, 0xfffffffffffffffa, 0xfffffffffffffff9, 0x4}}, @CGW_MOD_AND={0x15, 0x1, {{{0x3, 0x0, 0x0, 0x1}, 0x5, 0x1, 0x0, 0x0, "45da5518ea72c581"}}}, @CGW_MOD_OR={0x15, 0x2, {{{0x2, 0x0, 0x1}, 0x2, 0x2, 0x0, 0x0, "1f2eb0b1a0ae2303"}, 0x2}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x1, 0x0, 0x1}, 0x4, 0x5, 0x0, 0x0, "655f7d638d20682b"}}}, @CGW_MOD_UID={0x8, 0xe, r3}, @CGW_MOD_OR={0x15, 0x2, {{{0x1, 0x1, 0x1}, 0x7, 0x2, 0x0, 0x0, "1ddf3a74bedd32a4"}, 0x6}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0x5, 0xfffffffffffffffd, 0x8}}, @CGW_CS_CRC8={0x11e, 0x6, {0x79, 0x4, 0x62, 0x4, 0xff, "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", 0x1, "0789f69d374fc4354f343358ea5a75cbfca3051d"}}]}, 0x1b4}}, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8008000}, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x2, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000640)={0x20, 0x0, 0x6, 0x0, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10085}, 0x0)
sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

[  545.734262] *** Guest State ***
[  545.735361] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  545.755673] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:38 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x2, &(0x7f0000000180)=<r0=>0x0)
io_cancel(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)

[  545.801952] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  545.845544] CR3 = 0x00000000fffbc000
[  545.856408] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  545.866695] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  545.894956] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:38 executing program 4:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280)='ethtool\x00', 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x18, r0, 0x305, 0x0, 0x0, {0x15}, [@HEADER={0x4}]}, 0x18}}, 0x0)

01:20:38 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, r0)
keyctl$setperm(0x5, r1, 0x0)

[  545.937779] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  545.976916] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
01:20:38 executing program 1:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x0, @bcast, @netrom={'nr', 0x0}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})

01:20:38 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89b0, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

[  546.021733] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.046231] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:38 executing program 1:
socketpair(0x29, 0x5, 0x0, &(0x7f0000001680))

[  546.088027] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.133757] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.145253] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.158419] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  546.170225] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  546.185194] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  546.212339] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  546.225343] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  546.233780] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  546.241905] Interruptibility = 00000000  ActivityState = 00000000
[  546.256381] *** Host State ***
[  546.259777] RIP = 0xffffffff811601fe  RSP = 0xffff8880237ef9b8
[  546.267296] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  546.274304] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  546.282696] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  546.288651] CR0=0000000080050033 CR3=0000000094a30000 CR4=00000000001426f0
[  546.296646] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  546.303968] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  546.310526] *** Control State ***
[  546.313992] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  546.321240] EntryControls=0000d1ff ExitControls=002fefff
[  546.326682] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}, {0x0, 0x0, 0x0, [], 0xff}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:38 executing program 2:
nanosleep(&(0x7f0000000080), 0x0)
fork()
sched_rr_get_interval(0x0, &(0x7f0000000380))

01:20:38 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="28000000100001080000000000005c5400000000", @ANYRES32=0x0, @ANYBLOB="000000a0ebfaf00008001b"], 0x28}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
gettid()
pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000380)='./file1\x00', 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nvram\x00', 0x40000, 0x0)
lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000940)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000900)={&(0x7f0000000740)=@can_newroute={0x1b4, 0x18, 0x8, 0x70bd26, 0x25dfdbff, {0x1d, 0x1, 0x5}, [@CGW_CS_XOR={0x8, 0x5, {0xfffffffffffffffb, 0x7, 0xfffffffffffffffa, 0x96}}, @CGW_CS_XOR={0x8, 0x5, {0x4, 0xfffffffffffffffa, 0xfffffffffffffff9, 0x4}}, @CGW_MOD_AND={0x15, 0x1, {{{0x3, 0x0, 0x0, 0x1}, 0x5, 0x1, 0x0, 0x0, "45da5518ea72c581"}}}, @CGW_MOD_OR={0x15, 0x2, {{{0x2, 0x0, 0x1}, 0x2, 0x2, 0x0, 0x0, "1f2eb0b1a0ae2303"}, 0x2}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x1, 0x0, 0x1}, 0x4, 0x5, 0x0, 0x0, "655f7d638d20682b"}}}, @CGW_MOD_UID={0x8, 0xe, r3}, @CGW_MOD_OR={0x15, 0x2, {{{0x1, 0x1, 0x1}, 0x7, 0x2, 0x0, 0x0, "1ddf3a74bedd32a4"}, 0x6}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0x5, 0xfffffffffffffffd, 0x8}}, @CGW_CS_CRC8={0x11e, 0x6, {0x79, 0x4, 0x62, 0x4, 0xff, "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", 0x1, "0789f69d374fc4354f343358ea5a75cbfca3051d"}}]}, 0x1b4}}, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8008000}, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x2, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000640)={0x20, 0x0, 0x6, 0x0, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10085}, 0x0)
sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

01:20:38 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140)='wireguard\x00', 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001680)={&(0x7f0000000100), 0xc, &(0x7f0000001640)={&(0x7f0000000180)={0x88, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c='\xa0\xcb\x87\x9aG\xf5\xbcdL\x0ei?\xa6\xd01\xc7J\x15S\xb6\xe9\x01\xb9\xff/Q\x8cx\x04/\xb5B'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6}, @WGDEVICE_A_PEERS={0x2c, 0x8, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "5bfcbb04f19408f2505dbe49437e167d6f39399d4dc30791ac9182604db97b80"}]}]}]}, 0x88}}, 0x0)

01:20:38 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x891f, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:38 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000004940)={0x19, 0x4, 0x4, 0x1, 0x0, 0x1, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x40)

[  546.334409] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  546.341451] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  546.348016]         reason=80000021 qualification=0000000000000000
[  546.354690] IDTVectoring: info=00000000 errcode=00000000
[  546.360158] TSC Offset = 0xfffffed896c7bd2a
[  546.364538] TPR Threshold = 0x00
[  546.367893] EPT pointer = 0x00000000a185601e
[  546.372343] Virtual processor ID = 0x0001
01:20:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000900)={0x0, 0x0, "cc46dd", 0x1, 0x2})

01:20:39 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8946, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:39 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8935, 0x0)

[  546.523301] *** Guest State ***
[  546.537135] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:39 executing program 4:
bpf$LINK_GET_FD_BY_ID(0x21, 0x0, 0x0)

01:20:39 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
io_setup(0x7, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000a00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x0, r0, 0x0}])

01:20:39 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0)
connect$rose(r0, &(0x7f00000003c0)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, 0x1, @default}, 0x1c)

[  546.595801] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  546.654755] CR3 = 0x00000000fffbc000
[  546.671047] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  546.689074] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  546.708833] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  546.727723] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  546.744823] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.763216] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.795890] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.813246] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.834311] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  546.852461] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  546.869589] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  546.887219] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  546.904964] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  546.922057] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  546.936675] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  546.955829] Interruptibility = 00000000  ActivityState = 00000000
[  546.969203] *** Host State ***
[  546.975765] RIP = 0xffffffff811601fe  RSP = 0xffff8880237ef9b8
[  546.989419] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  547.008266] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  547.025391] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  547.037905] CR0=0000000080050033 CR3=0000000092cb3000 CR4=00000000001426f0
[  547.052802] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  547.069024] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  547.075259] *** Control State ***
[  547.078765] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  547.086964] EntryControls=0000d1ff ExitControls=002fefff
[  547.092533] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  547.099584] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  547.107612] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  547.114905]         reason=80000021 qualification=0000000000000000
01:20:39 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x3, 0x8, 0x80, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:39 executing program 5:
shmget(0x3, 0x4000, 0xb1fb01fe9f0bff1a, &(0x7f0000ffc000/0x4000)=nil)

[  547.121975] IDTVectoring: info=00000000 errcode=00000000
[  547.128276] TSC Offset = 0xfffffed82a119e3b
[  547.133191] TPR Threshold = 0x00
[  547.136609] EPT pointer = 0x00000000a62dd01e
[  547.142946] Virtual processor ID = 0x0001
[  547.246993] *** Guest State ***
[  547.259259] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  547.289533] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  547.304066] CR3 = 0x00000000fffbc000
[  547.319240] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  547.335144] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  547.341341] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  547.348064] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  547.357339] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  547.378323] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  547.401286] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  547.423480] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  547.445654] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  547.469223] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  547.486953] device hsr_slave_1 left promiscuous mode
[  547.494557] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  547.509242] device hsr_slave_0 left promiscuous mode
[  547.517406] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  547.536826] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  547.558448] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  547.574288] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  547.594917] Interruptibility = 00000000  ActivityState = 00000000
[  547.613323] *** Host State ***
[  547.619441] bond0 (unregistering): Released all slaves
[  547.631290] RIP = 0xffffffff811601fe  RSP = 0xffff88805260f9b8
[  547.638412] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  547.658786] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  547.671060] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  547.677028] CR0=0000000080050033 CR3=000000009fff9000 CR4=00000000001426f0
[  547.684971] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  547.692315] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  547.698426] *** Control State ***
[  547.710752] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  547.717491] EntryControls=0000d1ff ExitControls=002fefff
[  547.723737] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  547.731142] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  547.737854] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  547.746454]         reason=80000021 qualification=0000000000000000
[  547.766926] IDTVectoring: info=00000000 errcode=00000000
[  547.778989] TSC Offset = 0xfffffed7c6a3356a
[  547.788881] TPR Threshold = 0x00
[  547.793619] EPT pointer = 0x00000000a476801e
[  547.798094] Virtual processor ID = 0x0001
[  549.880954] IPVS: ftp: loaded support on port[0] = 21
[  549.996966] chnl_net:caif_netlink_parms(): no params data found
[  550.048895] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.056167] bridge0: port 1(bridge_slave_0) entered disabled state
[  550.064322] device bridge_slave_0 entered promiscuous mode
[  550.071761] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.078255] bridge0: port 2(bridge_slave_1) entered disabled state
[  550.085729] device bridge_slave_1 entered promiscuous mode
[  550.104613] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  550.113376] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  550.132814] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  550.139869] team0: Port device team_slave_0 added
[  550.145892] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  550.153413] team0: Port device team_slave_1 added
[  550.170930] batman_adv: batadv0: Adding interface: batadv_slave_0
[  550.177160] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  550.203877] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  550.216628] batman_adv: batadv0: Adding interface: batadv_slave_1
[  550.223600] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  550.248862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  550.259461] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  550.266989] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  550.286623] device hsr_slave_0 entered promiscuous mode
[  550.292429] device hsr_slave_1 entered promiscuous mode
[  550.298347] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  550.305441] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  550.374694] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.381086] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.387661] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.394037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  550.422194] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  550.428276] 8021q: adding VLAN 0 to HW filter on device bond0
[  550.437895] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  550.447642] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  550.454999] bridge0: port 1(bridge_slave_0) entered disabled state
[  550.462420] bridge0: port 2(bridge_slave_1) entered disabled state
[  550.472341] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  550.478393] 8021q: adding VLAN 0 to HW filter on device team0
[  550.487182] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  550.495123] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.501521] bridge0: port 1(bridge_slave_0) entered forwarding state
[  550.511207] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  550.518705] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.525083] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.539564] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  550.547676] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  550.557194] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  550.571269] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  550.578639] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  550.587377] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  550.593578] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  550.606647] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[  550.615460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  550.622350] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  550.632348] 8021q: adding VLAN 0 to HW filter on device batadv0
[  550.685005] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[  550.695290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  550.726426] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[  550.734578] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[  550.742114] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[  550.751622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  550.758927] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  550.766706] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  550.775422] device veth0_vlan entered promiscuous mode
[  550.784574] device veth1_vlan entered promiscuous mode
[  550.793731] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[  550.803033] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[  550.816171] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[  550.826547] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  550.834869] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  550.843146] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  550.852874] device veth0_macvtap entered promiscuous mode
[  550.858862] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[  550.868277] device veth1_macvtap entered promiscuous mode
[  550.876909] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[  550.886827] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[  550.895744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  550.905861] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  550.915210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  550.924955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  550.934194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  550.943998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  550.953173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  550.963290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  550.973954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  550.981312] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  550.988386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  550.996969] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  551.006479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  551.016494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.025743] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  551.035490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.044855] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  551.054638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.064234] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  551.074086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.084040] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[  551.091073] batman_adv: batadv0: Interface activated: batadv_slave_1
[  551.097868] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  551.105778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  551.224380] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.231207] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.259547] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  551.269071] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  551.299536] device bridge_slave_0 left promiscuous mode
[  551.312586] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.325159] device bridge_slave_1 left promiscuous mode
[  551.333008] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.361373] bond0: Releasing backup interface bond_slave_0
[  551.376371] bond0: Releasing backup interface bond_slave_1
[  551.396185] team0: Port device team_slave_0 removed
01:20:44 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000380)=@raw=[@jmp={0x5, 0x0, 0x0, 0x0, 0x0, 0x80}, @func, @alu], &(0x7f0000000000)='syzkaller\x00', 0x6, 0xe8, &(0x7f0000000400)=""/232, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:44 executing program 2:
socketpair(0x21, 0x0, 0x0, &(0x7f00000002c0))

01:20:44 executing program 4:
socketpair(0x25, 0x0, 0x0, &(0x7f0000000100))

01:20:44 executing program 1:
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/timer\x00', 0x110441)

01:20:44 executing program 5:
socket$inet_sctp(0x2, 0x2, 0x84)

01:20:44 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x0, 0x8, 0x80, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  551.407355] team0: Port device team_slave_1 removed
[  551.416424] batman_adv: batadv0: Removing interface: batadv_slave_0
[  551.431682] batman_adv: batadv0: Removing interface: batadv_slave_1
01:20:44 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$SNDCTL_SEQ_TESTMIDI(r0, 0x40045108, 0x0)

01:20:44 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000380)=[@in={0x2, 0x4e21, @loopback}, @in={0x2, 0x0, @multicast1}], 0x20)

01:20:44 executing program 2:
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2000, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno'}})

01:20:44 executing program 5:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0)

01:20:44 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x6, 0x0, &(0x7f0000000240)=0x84)

01:20:44 executing program 1:
setsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000000)={0x0, "511f6c"}, 0x6)
socketpair(0x6, 0x0, 0x0, &(0x7f0000000740))

[  551.593882] *** Guest State ***
[  551.597202] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:44 executing program 4:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r0, 0x0, 0x0)

01:20:44 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140)='wireguard\x00', 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000180)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x4}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x2c}}, 0x0)

[  551.648137] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  551.677214] CR3 = 0x00000000fffbc000
01:20:44 executing program 1:
nanosleep(0x0, 0x0)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000140)={0x0, 0x0, "fcc94d", 0x7})
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x6, 0x0, 0x0)
fork()
sched_rr_get_interval(0x0, 0x0)

01:20:44 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x16, 0x0, 0x0)

[  551.696629] RSP = 0x0000000000000000  RIP = 0x0000000000000000
01:20:44 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
io_setup(0x7, &(0x7f0000000040)=<r1=>0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/snd/timer\x00', 0x0)
io_submit(r1, 0x3, &(0x7f0000000a00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x0, r0, &(0x7f0000000080)="089a16", 0x3, 0xce34}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x6e3, r2, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0])

[  551.735050] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  551.780981] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  551.818438] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  551.859278] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  551.895251] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  551.916012] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  551.947615] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  551.955903] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  551.977715] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  552.006240] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  552.028809] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  552.039284] device hsr_slave_1 left promiscuous mode
[  552.050583] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  552.065712] device hsr_slave_0 left promiscuous mode
[  552.071672] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  552.089057] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  552.110669] Interruptibility = 00000000  ActivityState = 00000000
[  552.128905] *** Host State ***
[  552.135517] RIP = 0xffffffff811601fe  RSP = 0xffff88804d49f9b8
[  552.153554] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  552.172648] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  552.188281] bond0 (unregistering): Released all slaves
[  552.194519] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  552.211798] CR0=0000000080050033 CR3=00000000a32bc000 CR4=00000000001426f0
[  552.219828] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  552.231770] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  552.237892] *** Control State ***
[  552.252281] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  552.259095] EntryControls=0000d1ff ExitControls=002fefff
[  552.266668] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  552.277042] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  552.294405] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  552.309866]         reason=80000021 qualification=0000000000000000
[  552.326987] IDTVectoring: info=00000000 errcode=00000000
01:20:45 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x0, 0x8, 0x80, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  552.358891] TSC Offset = 0xfffffed5758672a0
[  552.376469] TPR Threshold = 0x00
[  552.388018] EPT pointer = 0x000000005165d01e
[  552.401089] Virtual processor ID = 0x0001
01:20:45 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e20, @loopback}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, @in6={0xa, 0x0, 0x0, @empty}], 0x3c)

01:20:45 executing program 4:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000080)={0x3, 0x0, 0x1, 0x1})

01:20:45 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
read$proc_mixer(r0, 0x0, 0x0)

01:20:45 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000040)=[@in={0x2, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @mcast1}], 0x2c)

01:20:45 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e20, @loopback}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, @in6={0xa, 0x0, 0x0, @empty}], 0x3c)

01:20:45 executing program 4:
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)

01:20:45 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x0, 0x1a14}, 0x40)

01:20:45 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000147000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000000c0)=ANY=[])

01:20:45 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e20, @loopback}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, @in6={0xa, 0x0, 0x0, @empty}], 0x3c)

[  552.589322] *** Guest State ***
[  552.614040] EXT4-fs (loop2): Invalid log block size: 18177
[  552.625479] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  552.659506] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  552.678445] CR3 = 0x00000000fffbc000
[  552.685632] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  552.699840] EXT4-fs (loop2): Invalid log block size: 18177
[  552.707816] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  552.723670] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  552.743608] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  552.752224] print_req_error: I/O error, dev loop2, sector 0
[  552.757962] Buffer I/O error on dev loop2, logical block 0, async page read
[  552.777210] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  552.794162] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  552.809842] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  552.836100] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  552.855845] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  552.883864] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  552.907722] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  552.924478] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  552.946718] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  552.974988] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  552.994771] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  553.011051] Interruptibility = 00000000  ActivityState = 00000000
[  553.023850] *** Host State ***
[  553.031472] RIP = 0xffffffff811601fe  RSP = 0xffff88804e6379b8
[  553.043991] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  553.056996] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  553.073609] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  553.086046] CR0=0000000080050033 CR3=000000004b7f4000 CR4=00000000001426e0
[  553.100749] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  553.115041] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  553.127703] *** Control State ***
[  553.135602] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  553.149990] EntryControls=0000d1ff ExitControls=002fefff
[  553.162373] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  553.176930] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  553.191479] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  553.204687]         reason=80000021 qualification=0000000000000000
[  553.217593] IDTVectoring: info=00000000 errcode=00000000
[  553.229659] TSC Offset = 0xfffffed4eaa83585
[  553.238792] TPR Threshold = 0x00
[  553.246647] EPT pointer = 0x00000000ab25201e
[  553.256625] Virtual processor ID = 0x0001
[  555.403859] IPVS: ftp: loaded support on port[0] = 21
[  555.507470] chnl_net:caif_netlink_parms(): no params data found
[  555.562274] bridge0: port 1(bridge_slave_0) entered blocking state
[  555.568662] bridge0: port 1(bridge_slave_0) entered disabled state
[  555.576370] device bridge_slave_0 entered promiscuous mode
[  555.583978] bridge0: port 2(bridge_slave_1) entered blocking state
[  555.590491] bridge0: port 2(bridge_slave_1) entered disabled state
[  555.597437] device bridge_slave_1 entered promiscuous mode
[  555.617016] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  555.626427] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  555.646616] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  555.653749] team0: Port device team_slave_0 added
[  555.659068] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  555.667124] team0: Port device team_slave_1 added
[  555.684229] batman_adv: batadv0: Adding interface: batadv_slave_0
[  555.690544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.715879] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  555.726861] batman_adv: batadv0: Adding interface: batadv_slave_1
[  555.733156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.758416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  555.769228] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  555.776995] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  555.799593] device hsr_slave_0 entered promiscuous mode
[  555.805411] device hsr_slave_1 entered promiscuous mode
[  555.811764] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  555.818773] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  555.887608] bridge0: port 2(bridge_slave_1) entered blocking state
[  555.893983] bridge0: port 2(bridge_slave_1) entered forwarding state
[  555.900636] bridge0: port 1(bridge_slave_0) entered blocking state
[  555.906976] bridge0: port 1(bridge_slave_0) entered forwarding state
[  555.937575] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  555.945654] 8021q: adding VLAN 0 to HW filter on device bond0
[  555.953917] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  555.963998] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  555.971427] bridge0: port 1(bridge_slave_0) entered disabled state
[  555.978019] bridge0: port 2(bridge_slave_1) entered disabled state
[  555.988138] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  555.994361] 8021q: adding VLAN 0 to HW filter on device team0
[  556.002901] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  556.010550] bridge0: port 1(bridge_slave_0) entered blocking state
[  556.016939] bridge0: port 1(bridge_slave_0) entered forwarding state
[  556.026276] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  556.034159] bridge0: port 2(bridge_slave_1) entered blocking state
[  556.040547] bridge0: port 2(bridge_slave_1) entered forwarding state
[  556.056184] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  556.063757] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  556.079426] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  556.090208] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  556.101572] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  556.107956] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  556.116292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  556.124279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  556.133078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  556.144227] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[  556.152652] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  556.159288] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  556.171102] 8021q: adding VLAN 0 to HW filter on device batadv0
[  556.223596] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[  556.234990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  556.264521] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[  556.272118] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[  556.278607] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[  556.288185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  556.295909] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  556.303497] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  556.313091] device veth0_vlan entered promiscuous mode
[  556.322275] device veth1_vlan entered promiscuous mode
[  556.328027] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[  556.337214] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[  556.348604] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[  556.358594] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  556.366460] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  556.373903] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  556.383855] device veth0_macvtap entered promiscuous mode
[  556.390741] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[  556.398592] device veth1_macvtap entered promiscuous mode
[  556.407661] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[  556.416931] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[  556.426116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  556.436390] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.446345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  556.456424] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.466091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  556.476174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.486332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  556.496096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.506859] batman_adv: batadv0: Interface activated: batadv_slave_0
[  556.514199] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  556.522037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  556.530995] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  556.539575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  556.549424] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.558800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  556.568565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.578051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  556.587810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.596985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  556.606706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.616799] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[  556.623802] batman_adv: batadv0: Interface activated: batadv_slave_1
[  556.631157] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  556.638830] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
01:20:49 executing program 0:
shmget$private(0x0, 0x3000, 0x95cea8c7e5d869c7, &(0x7f0000ffc000/0x3000)=nil)

01:20:49 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8942, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:49 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x9, 0x0, 0x0)

01:20:49 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e20, @loopback}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, @in6={0xa, 0x0, 0x0, @empty}], 0x3c)

01:20:49 executing program 2:
io_setup(0x6, &(0x7f0000000000)=<r0=>0x0)
io_setup(0x5, &(0x7f0000000040))
io_destroy(r0)
io_setup(0x5, &(0x7f0000000180))

01:20:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x0, 0x0, 0x80, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:49 executing program 4:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)={0x0, 0xe, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

01:20:49 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x2, &(0x7f0000000000)=@raw=[@map_val], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:49 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000001a00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xd, 0xd, 0x2, [@datasec={0x0, 0x0, 0x0, 0xf, 0x1, [], "d7"}]}}, &(0x7f0000001b00)=""/4096, 0x2a, 0x1000, 0x1}, 0x20)

[  556.822999] *** Guest State ***
[  556.833363] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:49 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00', 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0xffff}]}, 0x1c}}, 0x0)

[  556.874147] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  556.920187] CR3 = 0x00000000fffbc000
[  556.923933] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  556.945582] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
01:20:49 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, &(0x7f0000000000)=0xfffffffffffffea5)

01:20:49 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0xe, 0x0, &(0x7f0000000240))

01:20:49 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x83, 0x0, 0x0)

01:20:49 executing program 2:
io_setup(0x6, &(0x7f0000000000)=<r0=>0x0)
io_setup(0x5, &(0x7f0000000040))
io_destroy(r0)
io_setup(0x5, &(0x7f0000000180))

01:20:49 executing program 1:
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000400))

[  556.967191] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  556.987501] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  557.040504] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.048532] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
01:20:49 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, 0x0, &(0x7f0000000080))

01:20:49 executing program 5:
bpf$LINK_GET_NEXT_ID(0x17, 0x0, 0x0)

[  557.112064] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.144115] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.172104] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.186127] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  557.206175] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  557.219626] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  557.234860] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  557.243699] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  557.251324] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  557.258896] Interruptibility = 00000000  ActivityState = 00000000
[  557.265967] *** Host State ***
[  557.269214] RIP = 0xffffffff811601fe  RSP = 0xffff88803a1ff9b8
[  557.275857] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  557.282891] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  557.295998] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  557.306686] CR0=0000000080050033 CR3=000000009e31a000 CR4=00000000001426e0
[  557.314047] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  557.325118] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  557.331333] *** Control State ***
[  557.334775] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  557.341646] EntryControls=0000d1ff ExitControls=002fefff
[  557.347108] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  557.354089] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  557.360914] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  557.367478]         reason=80000021 qualification=0000000000000000
01:20:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}, {0x0, 0x0, 0x0, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:50 executing program 1:
socketpair(0x2, 0x3, 0x2, &(0x7f0000000040))

01:20:50 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140)='wireguard\x00', 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000180)={0x30, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6}]}, 0x30}}, 0x0)

01:20:50 executing program 4:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, 0x0, &(0x7f0000000300))

01:20:50 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @dev}], 0x10)

01:20:50 executing program 2:
io_setup(0x6, &(0x7f0000000000)=<r0=>0x0)
io_setup(0x5, &(0x7f0000000040))
io_destroy(r0)
io_setup(0x5, &(0x7f0000000180))

[  557.373828] IDTVectoring: info=00000000 errcode=00000000
[  557.379263] TSC Offset = 0xfffffed2a633dc52
[  557.384459] TPR Threshold = 0x00
[  557.387897] EPT pointer = 0x00000000a38f401e
[  557.392713] Virtual processor ID = 0x0001
01:20:50 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x65, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private2}], 0x1c)

[  557.460239] Bluetooth: hci0 command 0x0409 tx timeout
01:20:50 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89a1, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:50 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8919, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:50 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000000)=@raw=[@map_val], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:50 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140)='wireguard\x00', 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000180)={0x40, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x8, 0x8, 0x0, 0x1, [{0x4}]}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6}]}, 0x40}}, 0x0)

[  557.573735] *** Guest State ***
01:20:50 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8995, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

[  557.595955] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  557.610233] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  557.649427] CR3 = 0x00000000fffbc000
[  557.654542] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  557.664829] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  557.678740] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  557.686777] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  557.695377] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.705454] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.719019] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.731434] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.744172] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  557.752800] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  557.761817] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  557.769860] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  557.777819] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  557.786791] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  557.793428] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  557.801062] Interruptibility = 00000000  ActivityState = 00000000
[  557.807281] *** Host State ***
[  557.810595] RIP = 0xffffffff811601fe  RSP = 0xffff88800d6bf9b8
[  557.816565] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  557.823048] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  557.831199] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  557.837072] CR0=0000000080050033 CR3=00000000a5471000 CR4=00000000001426f0
[  557.844241] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  557.851038] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  557.857079] *** Control State ***
[  557.861968] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  557.868637] EntryControls=0000d1ff ExitControls=002fefff
[  557.874175] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  557.881516] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  557.888160] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x40, 0x8, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:50 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0xd, 0x0, 0x0)

01:20:50 executing program 2:
io_setup(0x6, &(0x7f0000000000)=<r0=>0x0)
io_setup(0x5, &(0x7f0000000040))
io_destroy(r0)
io_setup(0x5, &(0x7f0000000180))

01:20:50 executing program 0:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000005c0)=@bpf_ext={0x1c, 0x3, &(0x7f0000000340)=@framed, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:50 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8934, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:50 executing program 4:
io_setup(0x8, &(0x7f0000000100))
io_setup(0x2, &(0x7f0000000340)=<r0=>0x0)
io_destroy(r0)

[  557.894793]         reason=80000021 qualification=0000000000000000
[  557.901271] IDTVectoring: info=00000000 errcode=00000000
[  557.906707] TSC Offset = 0xfffffed23f17b06d
[  557.911170] TPR Threshold = 0x00
[  557.914526] EPT pointer = 0x0000000053f6f01e
[  557.918911] Virtual processor ID = 0x0001
01:20:50 executing program 0:
shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x0)

01:20:50 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x5, 0x0, 0x0)

01:20:50 executing program 5:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={'rose', 0x0}, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})

01:20:50 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
read$proc_mixer(r0, 0x0, 0x0)

01:20:50 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000080)=0xe)

01:20:50 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8918, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

[  558.061939] *** Guest State ***
[  558.074300] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  558.094506] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  558.108052] CR3 = 0x00000000fffbc000
[  558.128566] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  558.150294] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  558.163727] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  558.182973] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  558.194723] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.212581] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.221477] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.229461] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.239250] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.248018] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  558.256848] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  558.266350] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  558.275479] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  558.284448] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  558.291597] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  558.299201] Interruptibility = 00000000  ActivityState = 00000000
[  558.306287] *** Host State ***
[  558.310174] RIP = 0xffffffff811601fe  RSP = 0xffff88804c4ef9b8
[  558.316150] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  558.323304] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  558.331760] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  558.337643] CR0=0000000080050033 CR3=00000000a38db000 CR4=00000000001426f0
[  558.345436] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  558.352270] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  558.358316] *** Control State ***
[  558.361859] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  558.368509] EntryControls=0000d1ff ExitControls=002fefff
[  558.374154] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x0, 0x8, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:51 executing program 1:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x4240, 0x0)

01:20:51 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x5411, 0x0)

01:20:51 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x13, 0x0, &(0x7f0000000240))

01:20:51 executing program 5:
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x10)

01:20:51 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)

[  558.381141] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  558.387894] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  558.394507]         reason=80000021 qualification=0000000000000000
[  558.401245] IDTVectoring: info=00000000 errcode=00000000
[  558.406673] TSC Offset = 0xfffffed1fc80d3da
[  558.411250] TPR Threshold = 0x00
[  558.414612] EPT pointer = 0x000000004bc4801e
[  558.418997] Virtual processor ID = 0x0001
01:20:51 executing program 5:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)={0x0, 0xa, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

01:20:51 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000000)={{}, {0x0, 0x3938700}}, 0x0)

01:20:51 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={0x0}}, 0x0)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={0x0}}, 0x0)

01:20:51 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, &(0x7f0000000240))

01:20:51 executing program 5:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000003c0)={{0x1, 0x0, 0x0, 0x0, 0x10001}})

01:20:51 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00', 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x18, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}]}, 0x18}}, 0x0)

[  558.602690] *** Guest State ***
[  558.624772] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  558.658413] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  558.676914] CR3 = 0x00000000fffbc000
[  558.690593] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  558.709757] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  558.716060] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  558.723236] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  558.731765] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.740126] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.750704] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.758680] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.766850] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  558.775017] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  558.783070] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  558.791854] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  558.799894] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  558.807851] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  558.814314] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  558.822345] Interruptibility = 00000000  ActivityState = 00000000
[  558.828777] *** Host State ***
[  558.832033] RIP = 0xffffffff811601fe  RSP = 0xffff8880a8c0f9b8
[  558.837998] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  558.844451] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  558.852323] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  558.858191] CR0=0000000080050033 CR3=000000009927b000 CR4=00000000001426f0
[  558.865259] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  558.871974] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  558.878016] *** Control State ***
[  558.881545] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  558.888194] EntryControls=0000d1ff ExitControls=002fefff
[  558.893716] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  558.900916] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  558.907569] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  558.914209]         reason=80000021 qualification=0000000000000000
[  558.920991] IDTVectoring: info=00000000 errcode=00000000
01:20:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}, {0x0, 0x0, 0x0, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:51 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x77, 0x0, 0x0)

01:20:51 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x6, 0x0, &(0x7f0000000240))

01:20:51 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, &(0x7f0000000240))

01:20:51 executing program 5:
kexec_load(0x100300, 0x10, &(0x7f0000000340)=[{0x0, 0x0, 0x0, 0x2000000}], 0x0)

01:20:51 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8931, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

[  558.926428] TSC Offset = 0xfffffed1b2272183
[  558.930795] TPR Threshold = 0x00
[  558.934149] EPT pointer = 0x000000003acda01e
[  558.938536] Virtual processor ID = 0x0001
01:20:51 executing program 2:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vmci\x00', 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@hyper})

01:20:51 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, &(0x7f0000000240))

01:20:51 executing program 1:
clock_getres(0x0, &(0x7f0000000100))

01:20:51 executing program 4:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
read$proc_mixer(r0, 0x0, 0x0)

01:20:51 executing program 2:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

[  559.104825] *** Guest State ***
01:20:51 executing program 4:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
accept$alg(r0, 0x0, 0x0)

[  559.130630] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  559.184733] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  559.234436] CR3 = 0x00000000fffbc000
[  559.250527] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  559.264287] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  559.276424] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  559.287809] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  559.297641] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.312372] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.320469] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.328432] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.337579] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.345673] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  559.353703] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  559.361816] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  559.369841] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  559.377802] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  559.384260] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  559.391788] Interruptibility = 00000000  ActivityState = 00000000
[  559.398017] *** Host State ***
[  559.401365] RIP = 0xffffffff811601fe  RSP = 0xffff88804de1f9b8
[  559.407334] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  559.413785] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  559.421715] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  559.427596] CR0=0000000080050033 CR3=000000009bd4f000 CR4=00000000001426e0
[  559.434657] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  559.441378] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  559.447416] *** Control State ***
[  559.450922] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  559.457570] EntryControls=0000d1ff ExitControls=002fefff
[  559.463095] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  559.470070] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  559.476721] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x8, 0x7f, 0x7f, [], 0xdc}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:52 executing program 2:
socketpair(0x2b, 0x1, 0xfffffff7, &(0x7f0000000080))

01:20:52 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, &(0x7f0000000240))

01:20:52 executing program 1:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000080)={0x0, 0x1, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "659e5bf9"}, 0x0, 0x0, @userptr})

01:20:52 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x2, &(0x7f0000000380)=@raw=[@jmp, @func], &(0x7f0000000000)='syzkaller\x00', 0x6, 0xe8, &(0x7f0000000400)=""/232, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:52 executing program 5:
io_setup(0x8, &(0x7f0000000100))

[  559.483334]         reason=80000021 qualification=0000000000000000
[  559.489695] IDTVectoring: info=00000000 errcode=00000000
[  559.495133] TSC Offset = 0xfffffed16e08604b
[  559.499433] TPR Threshold = 0x00
[  559.502845] EPT pointer = 0x000000005375d01e
[  559.507239] Virtual processor ID = 0x0001
[  559.539634] Bluetooth: hci0 command 0x041b tx timeout
01:20:52 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7c, 0x0, &(0x7f0000000240))

01:20:52 executing program 1:
socketpair(0x22, 0x0, 0x1, &(0x7f0000000080))

01:20:52 executing program 4:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x890b, &(0x7f00000004c0)={0x0, @bcast, @rose={'rose', 0x0}, 0x0, 'syz1\x00', @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x0, 0x0, [@bcast, @bcast, @default, @bcast, @default, @bcast, @null, @null]})

01:20:52 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x6, &(0x7f0000000380)=@raw=[@jmp, @map_val={0x18, 0x0, 0x2, 0x0, 0x1}, @generic, @call, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}], &(0x7f0000000000)='syzkaller\x00', 0x6, 0xe8, &(0x7f0000000400)=""/232, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:52 executing program 5:
socketpair(0x0, 0x0, 0x0, &(0x7f0000000740))

01:20:52 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x4, 0x0, &(0x7f0000000240))

[  559.657714] *** Guest State ***
[  559.695768] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  559.732550] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  559.755272] CR3 = 0x00000000fffbc000
[  559.764156] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  559.777935] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  559.788034] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  559.798875] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  559.813381] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.825472] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.836912] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.845484] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.853829] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  559.861932] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  559.871623] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  559.879660] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  559.887631] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  559.895690] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  559.902151] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  559.909686] Interruptibility = 00000000  ActivityState = 00000000
[  559.915903] *** Host State ***
[  559.919075] RIP = 0xffffffff811601fe  RSP = 0xffff88804de1f9b8
[  559.925103] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  559.931583] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  559.939360] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  559.945448] CR0=0000000080050033 CR3=00000000b0256000 CR4=00000000001426f0
[  559.952528] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  559.959181] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  559.965791] *** Control State ***
[  559.969250] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  559.975957] EntryControls=0000d1ff ExitControls=002fefff
[  559.981473] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  559.988384] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  559.995089] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x0, 0x7f, 0x7f, [], 0xdc}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:52 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x77, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private2}], 0x1c)

01:20:52 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x9, 0x0, &(0x7f0000000240))

01:20:52 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x14, 0x0, &(0x7f0000000240))

01:20:52 executing program 0:
socketpair(0x2b, 0x0, 0x0, &(0x7f0000000540))

01:20:52 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x1, @fixed, 0x42}, 0xe)

[  560.001723]         reason=80000021 qualification=0000000000000000
[  560.008046] IDTVectoring: info=00000000 errcode=00000000
[  560.013534] TSC Offset = 0xfffffed121686214
[  560.017864] TPR Threshold = 0x00
[  560.021756] EPT pointer = 0x00000000242a201e
[  560.026160] Virtual processor ID = 0x0001
01:20:52 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x12, 0x0, &(0x7f0000000240))

[  560.096851] *** Guest State ***
[  560.114462] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
01:20:52 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000100), 0x4)

01:20:52 executing program 0:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000000), 0x10)

01:20:52 executing program 4:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r0, 0x104, 0x6, &(0x7f0000000040), 0x4)

[  560.146108] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  560.179844] CR3 = 0x00000000fffbc000
01:20:52 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x0, 0x4)

01:20:52 executing program 1:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[@op={0x18}], 0x18}, 0x0)

[  560.198240] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  560.234280] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  560.258445] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  560.287917] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  560.309605] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.320372] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.330359] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.338345] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.354676] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.363034] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  560.372113] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  560.382968] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  560.391234] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  560.399220] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  560.406809] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  560.423323] Interruptibility = 00000000  ActivityState = 00000000
[  560.430658] *** Host State ***
[  560.433938] RIP = 0xffffffff811601fe  RSP = 0xffff88804af879b8
[  560.440063] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  560.446566] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  560.454731] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  560.460864] CR0=0000000080050033 CR3=00000000b0256000 CR4=00000000001426f0
[  560.467881] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  560.475207] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  560.481820] *** Control State ***
[  560.485307] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  560.492041] EntryControls=0000d1ff ExitControls=002fefff
[  560.497497] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
01:20:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x0, 0x0, 0x7f, [], 0xdc}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:53 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000004940)={0x19, 0x4, 0x0, 0x1, 0x0, 0x1}, 0x40)

01:20:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)

01:20:53 executing program 2:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000040)={'wg1\x00'})

01:20:53 executing program 5:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0d05640, &(0x7f0000000200)={0x0, 0x0, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

01:20:53 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000380)=[@in={0x2, 0x0, @multicast1}], 0x10)

[  560.504479] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  560.511236] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  560.517828]         reason=80000021 qualification=0000000000000000
[  560.524212] IDTVectoring: info=00000000 errcode=00000000
[  560.529738] TSC Offset = 0xfffffed0e5341c4d
[  560.534043] TPR Threshold = 0x00
[  560.537388] EPT pointer = 0x00000000b1af601e
[  560.541851] Virtual processor ID = 0x0001
01:20:53 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x1, &(0x7f0000000380)=@raw=[@func], &(0x7f0000000000)='syzkaller\x00', 0x6, 0xe8, &(0x7f0000000400)=""/232, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:53 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x7b, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private2}], 0x1c)

01:20:53 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x25, 0x0, 0x0)

01:20:53 executing program 2:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3)

01:20:53 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0xd, 0x0, &(0x7f0000000240)=0x700)

01:20:53 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x13, 0x0, 0x0)

[  560.730618] *** Guest State ***
[  560.751830] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  560.774069] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  560.784089] CR3 = 0x00000000fffbc000
[  560.788059] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  560.799430] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  560.807189] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  560.823557] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  560.836240] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.857220] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.867354] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.875468] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.884313] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  560.892348] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  560.901353] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  560.909446] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  560.917454] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  560.925600] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  560.932074] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  560.939783] Interruptibility = 00000000  ActivityState = 00000000
[  560.946011] *** Host State ***
[  560.949189] RIP = 0xffffffff811601fe  RSP = 0xffff888092c3f9b8
[  560.955226] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  560.961687] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  560.970144] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  560.976019] CR0=0000000080050033 CR3=000000009672d000 CR4=00000000001426e0
[  560.983973] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  560.990709] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  560.996750] *** Control State ***
[  561.000240] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  561.006891] EntryControls=0000d1ff ExitControls=002fefff
[  561.012398] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  561.019334] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  561.026168] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  561.032820]         reason=80000021 qualification=0000000000000000
[  561.039135] IDTVectoring: info=00000000 errcode=00000000
[  561.044631] TSC Offset = 0xfffffed08e80e252
[  561.048936] TPR Threshold = 0x00
[  561.052348] EPT pointer = 0x000000009f82e01e
01:20:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}, {0x0, 0x0, 0x0, [], 0xdc}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:53 executing program 1:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/net/pfkey\x00', 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000540)='/proc/self/net/pfkey\x00', 0x0, 0x0)

01:20:53 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8932, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:53 executing program 5:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0)
timerfd_gettime(r0, 0x0)

01:20:53 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8953, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:53 executing program 0:
nanosleep(&(0x7f0000000080), 0x0)
fork()

[  561.056762] Virtual processor ID = 0x0001
01:20:53 executing program 2:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
read$proc_mixer(r0, &(0x7f0000000040)=""/125, 0x7d)

01:20:53 executing program 1:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)={0x0, 0x6, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

01:20:53 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x1a, 0x0, &(0x7f0000000240))

01:20:53 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000240)=0x4)

01:20:53 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x1e, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private2}], 0x1c)

01:20:53 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})

[  561.226016] *** Guest State ***
[  561.238905] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  561.263589] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  561.281753] CR3 = 0x00000000fffbc000
[  561.292485] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  561.304674] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  561.315961] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  561.324065] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  561.333217] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.342339] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.351500] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.360624] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.368825] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.383909] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  561.392419] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  561.400842] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  561.408911] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  561.416929] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  561.423451] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  561.431098] Interruptibility = 00000000  ActivityState = 00000000
[  561.437313] *** Host State ***
[  561.440544] RIP = 0xffffffff811601fe  RSP = 0xffff8880398af9b8
[  561.446514] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  561.452976] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  561.461190] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  561.467068] CR0=0000000080050033 CR3=000000004f352000 CR4=00000000001426f0
[  561.474157] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  561.480931] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  561.486974] *** Control State ***
[  561.490500] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  561.497157] EntryControls=0000d1ff ExitControls=002fefff
[  561.502680] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  561.509667] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  561.516317] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  561.523612]         reason=80000021 qualification=0000000000000000
01:20:54 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x5, 0xe6, 0x2, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:54 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x2, 0x0, 0x0)

01:20:54 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000400)='nbd\x00', r1)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x0)

01:20:54 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x75, 0x0, 0x0)

01:20:54 executing program 0:
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CURSOR(0xffffffffffffffff, 0xc01c64a3, 0x0)

01:20:54 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$phonet_pipe(r0, 0x0, 0x0)

[  561.529997] IDTVectoring: info=00000000 errcode=00000000
[  561.535493] TSC Offset = 0xfffffed04b2cbfc5
[  561.540179] TPR Threshold = 0x00
[  561.543553] EPT pointer = 0x0000000016bc501e
[  561.547947] Virtual processor ID = 0x0001
01:20:54 executing program 4:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0d05605, &(0x7f0000000200)={0x0, 0x0, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

01:20:54 executing program 0:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, 0x0)

01:20:54 executing program 2:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000080)="f8", 0x1}, {&(0x7f0000000100)="e3", 0x1}, {&(0x7f0000000200)='W', 0x1}], 0x3}, 0x0)

[  561.593683] block nbd5: not configured, cannot reconfigure
[  561.620084] Bluetooth: hci0 command 0x040f tx timeout
01:20:54 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580)='nl80211\x00', 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000a00)={0x1c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

01:20:54 executing program 5:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)={0x0, 0x9, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

01:20:54 executing program 4:
socketpair(0x11, 0x80803, 0x0, &(0x7f0000000000))

[  561.704462] *** Guest State ***
[  561.722742] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  561.742319] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  561.783548] CR3 = 0x00000000fffbc000
[  561.787387] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  561.795342] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  561.802050] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  561.814491] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  561.824554] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.833633] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.843036] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.855619] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.867476] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  561.876122] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  561.885090] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  561.900518] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  561.908661] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  561.918328] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  561.925135] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  561.933442] Interruptibility = 00000000  ActivityState = 00000000
[  561.940553] *** Host State ***
[  561.943746] RIP = 0xffffffff811601fe  RSP = 0xffff88803991f9b8
[  561.950552] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  561.957037] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  561.965836] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  561.971903] CR0=0000000080050033 CR3=0000000053afe000 CR4=00000000001426e0
[  561.978902] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  561.986510] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  561.993061] *** Control State ***
[  561.996511] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  562.003796] EntryControls=0000d1ff ExitControls=002fefff
[  562.009243] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  562.016801] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  562.024915] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:54 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x0, 0xe6, 0x2, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:54 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed, 0x0, 0x2}, 0xe)

01:20:54 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private2}], 0x200001dc)

01:20:54 executing program 0:
socketpair(0x1d, 0x0, 0x1, &(0x7f00000001c0))

01:20:54 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000900)={0x0, 0x0, "cc46dd"})

01:20:54 executing program 4:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x121000, 0x0)
read$alg(r0, 0x0, 0x0)

[  562.031985]         reason=80000021 qualification=0000000000000000
[  562.038357] IDTVectoring: info=00000000 errcode=00000000
[  562.044854] TSC Offset = 0xfffffed009d657e1
[  562.049166] TPR Threshold = 0x00
[  562.053126] EPT pointer = 0x00000000b323a01e
[  562.057540] Virtual processor ID = 0x0001
01:20:54 executing program 4:
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000000)={0x0, <r0=>0x0}, 0x8)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r0}, 0xc)

01:20:54 executing program 1:
shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x4000)
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x0)

01:20:54 executing program 0:
socketpair(0x18, 0x0, 0x6, &(0x7f0000000140))

01:20:54 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x2, &(0x7f0000000380)=@raw=[@func, @alu], &(0x7f0000000000)='syzkaller\x00', 0x6, 0xe8, &(0x7f0000000400)=""/232, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

01:20:54 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000006100)='/proc/self/net/pfkey\x00', 0x0, 0x0)
read$proc_mixer(r0, &(0x7f0000000040)=""/163, 0xa3)
read$proc_mixer(r0, &(0x7f0000000100)=""/209, 0xd1)

01:20:54 executing program 4:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)={0x0, 0xd, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "52b1ac1e"}, 0x0, 0x0, @planes=0x0})

[  562.211214] *** Guest State ***
[  562.232214] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  562.256061] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  562.266146] CR3 = 0x00000000fffbc000
[  562.275796] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  562.282621] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  562.288605] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  562.299974] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  562.308450] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.320708] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.336942] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.348769] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.363810] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.374089] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  562.382925] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  562.391044] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  562.399079] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  562.407138] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  562.413624] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  562.421517] Interruptibility = 00000000  ActivityState = 00000000
[  562.427748] *** Host State ***
[  562.430987] RIP = 0xffffffff811601fe  RSP = 0xffff8880398af9b8
[  562.436964] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  562.443490] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  562.451415] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  562.457284] CR0=0000000080050033 CR3=00000000a1f04000 CR4=00000000001426f0
[  562.464340] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  562.471345] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  562.477387] *** Control State ***
[  562.480897] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  562.487553] EntryControls=0000d1ff ExitControls=002fefff
[  562.493055] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  562.500366] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  562.507039] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  562.513657]         reason=80000021 qualification=0000000000000000
[  562.520033] IDTVectoring: info=00000000 errcode=00000000
[  562.525468] TSC Offset = 0xfffffecfc42bedfe
[  562.529846] TPR Threshold = 0x00
[  562.533198] EPT pointer = 0x00000000b0ba201e
01:20:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x0, 0x0, 0x2, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:55 executing program 0:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$SNDCTL_TMR_TEMPO(r0, 0xc0045405, 0x0)

01:20:55 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x24, 0x0, &(0x7f0000000240))

01:20:55 executing program 1:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
recvmmsg(r0, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x63, 0x0)

01:20:55 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x541b, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:55 executing program 4:
r0 = shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x4000)
shmdt(r0)

[  562.537604] Virtual processor ID = 0x0001
01:20:55 executing program 0:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000040)={0x0, 0x9, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "001a12ad"}, 0x0, 0x0, @planes=&(0x7f0000000000)={0x0, 0x0, @userptr}, 0x3})

01:20:55 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000040), 0xffffffffffffff1e)

01:20:55 executing program 2:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, @in={0x2, 0x4e24, @local}, @hci, @vsock})

01:20:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000140)='wireguard\x00', 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000180)={0x30, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}}, 0x0)

01:20:55 executing program 1:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x200002, 0x0)
setsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, 0x0, 0x0)

01:20:55 executing program 5:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000040)=0x8001)

[  562.694164] *** Guest State ***
[  562.712097] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  562.735463] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  562.762990] CR3 = 0x00000000fffbc000
[  562.774135] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  562.784148] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  562.796310] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  562.810666] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  562.827596] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.838997] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.854660] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.864623] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.873590] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  562.888369] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  562.897656] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  562.906330] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  562.914606] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  562.922771] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  562.929184] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  562.936679] Interruptibility = 00000000  ActivityState = 00000000
[  562.942989] *** Host State ***
[  562.946165] RIP = 0xffffffff811601fe  RSP = 0xffff8880486479b8
[  562.952978] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  562.959475] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  562.967259] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  562.973253] CR0=0000000080050033 CR3=0000000099d69000 CR4=00000000001426e0
[  562.980422] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  562.987188] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  562.993463] *** Control State ***
[  562.996907] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  563.003611] EntryControls=0000d1ff ExitControls=002fefff
01:20:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}, {0x0, 0x0, 0x0, [], 0x9}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:55 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x17, 0x0, 0x5, 0x80000001}, 0x40)

01:20:55 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8927, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:55 executing program 2:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
recvfrom$netrom(r0, 0x0, 0x0, 0x1, 0x0, 0x0)

01:20:55 executing program 0:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$SIOCRSSCAUSE(r0, 0x89e1, &(0x7f00000001c0))

01:20:55 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8917, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

[  563.009079] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  563.016110] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  563.022817] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  563.029480]         reason=80000021 qualification=0000000000000000
[  563.035798] IDTVectoring: info=00000000 errcode=00000000
[  563.041297] TSC Offset = 0xfffffecf81a222ee
[  563.045606] TPR Threshold = 0x00
[  563.048949] EPT pointer = 0x0000000048a9d01e
[  563.053428] Virtual processor ID = 0x0001
01:20:55 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000004940)={0x19, 0x4, 0x4, 0x1, 0x40, 0x1}, 0x40)

01:20:55 executing program 4:
socketpair(0x29, 0x5, 0x6, &(0x7f0000001680))

01:20:55 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x25, 0x0, &(0x7f0000000240))

01:20:55 executing program 5:
socketpair(0x2, 0x3, 0x0, &(0x7f0000000040))

01:20:55 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @loopback}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, @in6={0xa, 0x0, 0x0, @empty}], 0x3c)

01:20:55 executing program 2:
bpf$LINK_GET_NEXT_ID(0x13, 0x0, 0x0)

[  563.221126] *** Guest State ***
[  563.239025] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  563.266617] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  563.292944] CR3 = 0x00000000fffbc000
[  563.296774] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  563.304356] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  563.311638] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  563.321425] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  563.334582] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.351243] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.359844] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.367890] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.377306] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.387857] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  563.397572] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  563.405796] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  563.413841] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  563.421944] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  563.428339] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  563.436004] Interruptibility = 00000000  ActivityState = 00000000
[  563.442308] *** Host State ***
[  563.445489] RIP = 0xffffffff811601fe  RSP = 0xffff888052eff9b8
[  563.451514] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  563.457906] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  563.465766] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  563.471735] CR0=0000000080050033 CR3=0000000099bb6000 CR4=00000000001426e0
[  563.478755] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  563.485476] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  563.494474] *** Control State ***
[  563.497918] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  563.504637] EntryControls=0000d1ff ExitControls=002fefff
[  563.510170] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  563.517082] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  563.523786] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  563.530444]         reason=80000021 qualification=0000000000000000
[  563.536764] IDTVectoring: info=00000000 errcode=00000000
[  563.542437] TSC Offset = 0xfffffecf3b312ed6
[  563.546746] TPR Threshold = 0x00
01:20:56 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x21, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private2}], 0x1c)

01:20:56 executing program 5:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x70d141, 0x0)
getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, 0x0, 0x0)

01:20:56 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89a0, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
io_setup(0x7, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000a00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)='\b', 0x1}])

01:20:56 executing program 0:
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x0, 0x0)

01:20:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x80, 0x43, 0x5, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:56 executing program 5:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x5411, &(0x7f0000000180)={0x0, @null, @bpq0='bpq0\x00', 0x0, 'syz0\x00', @default, 0x0, 0x0, [@default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @null, @null, @bcast]})

[  563.550185] EPT pointer = 0x0000000050cb501e
[  563.554580] Virtual processor ID = 0x0001
01:20:56 executing program 4:
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x1, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616368657461673d77666b6e6f43461f82f5b61b709f274078"])

01:20:56 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x16}}], 0x10)

01:20:56 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$SNDCTL_SYNTH_ID(r0, 0xc08c5114, &(0x7f0000000100)={"0f1f96da0fc53bb29c4f47f6acc24d5ee9a09f7b924e988e01536121beef"})

01:20:56 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x72, 0x0, &(0x7f0000000240))

01:20:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
io_setup(0x7, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000a00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)='\b', 0x1}])

[  563.699490] Bluetooth: hci0 command 0x0419 tx timeout
[  563.724482] *** Guest State ***
[  563.756661] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  563.774116] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  563.786620] CR3 = 0x00000000fffbc000
[  563.795089] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  563.802178] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  563.808336] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  563.828095] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  563.841178] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.852161] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.863210] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.875936] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.886844] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  563.898244] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  563.911572] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  563.921647] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  563.930659] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  563.938723] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  563.945946] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  563.953844] Interruptibility = 00000000  ActivityState = 00000000
[  563.960555] *** Host State ***
[  563.963751] RIP = 0xffffffff811601fe  RSP = 0xffff8880afa7f9b8
[  563.970543] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  563.976953] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000003000
[  563.985398] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  563.992120] CR0=0000000080050033 CR3=000000009c3c3000 CR4=00000000001426e0
[  563.999130] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  564.006531] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  564.013063] *** Control State ***
[  564.016509] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  564.024053] EntryControls=0000d1ff ExitControls=002fefff
[  564.029998] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  564.036986] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  564.044528] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  564.051527]         reason=80000021 qualification=0000000000000000
01:20:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x0, 0x43, 0x5, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:56 executing program 0:
bpf$LINK_GET_NEXT_ID(0xe, 0x0, 0x0)

01:20:56 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x4, 0x0, 0x0)

01:20:56 executing program 4:
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x1, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616368657461673d77666b6e6f43461f82f5b61b709f274078"])

01:20:56 executing program 5:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f00000009c0)={{0x1, 0x0, 0x0, 0x0, 0x81}, 0x0, 0x0, 'id1\x00', 'timer1\x00'})

01:20:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
io_setup(0x7, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000a00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)='\b', 0x1}])

[  564.057834] IDTVectoring: info=00000000 errcode=00000000
[  564.063930] TSC Offset = 0xfffffecef3e62106
[  564.068239] TPR Threshold = 0x00
[  564.072642] EPT pointer = 0x00000000114ee01e
[  564.077214] Virtual processor ID = 0x0001
01:20:56 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x8943, &(0x7f0000000280)={'ip_vti0\x00', 0x0})

01:20:56 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00', 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_PORT={0x6}]}]}, 0x2c}}, 0x0)

[  564.154622] *** Guest State ***
01:20:56 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000001200)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001140)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x40}], 0x1, 0x0)

01:20:56 executing program 0:
getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, 0x0, 0x0)

01:20:56 executing program 4:
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x1, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616368657461673d77666b6e6f43461f82f5b61b709f274078"])

01:20:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
io_setup(0x7, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000a00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)='\b', 0x1}])

[  564.178057] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  564.214752] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  564.245657] CR3 = 0x00000000fffbc000
[  564.258678] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  564.287306] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  564.306217] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  564.319067] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  564.341053] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.351954] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.361956] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.372852] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.381925] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.390143] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  564.398528] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  564.406721] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  564.419993] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  564.428032] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  564.434796] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  564.442496] Interruptibility = 00000000  ActivityState = 00000000
[  564.451106] *** Host State ***
[  564.454370] RIP = 0xffffffff811601fe  RSP = 0xffff8880b1a3f9b8
[  564.460605] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  564.467024] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  564.475285] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  564.481249] CR0=0000000080050033 CR3=000000009c3c3000 CR4=00000000001426f0
[  564.488265] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  564.495081] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  564.501292] *** Control State ***
[  564.504732] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  564.511979] EntryControls=0000d1ff ExitControls=002fefff
[  564.517429] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  564.524506] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  564.531232] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:57 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x0, 0x0, 0x5, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:57 executing program 2:
sendmsg$NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={0x0}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000280)='devlink\x00', 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000480)='NLBL_CALIPSO\x00', 0xffffffffffffffff)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, 0x0, 0x4)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000d40)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c80], 0x0, 0x0, &(0x7f0000000c80)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)

01:20:57 executing program 5:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_route(r0, 0x0, 0x0)

01:20:57 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001480)={0x0, 0x0, "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", "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"})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs={0x1}, 0x6e, &(0x7f0000003a40)=[{&(0x7f0000003780)="b0", 0x1}, {&(0x7f0000003800)='\"', 0x1}, {0x0}, {&(0x7f00000039c0)='6', 0x1}], 0x4}], 0x1, 0x0)

01:20:57 executing program 4:
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x1, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616368657461673d77666b6e6f43461f82f5b61b709f274078"])

01:20:57 executing program 1:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/uts\x00')

[  564.537894]         reason=80000021 qualification=0000000000000000
[  564.544243] IDTVectoring: info=00000000 errcode=00000000
[  564.549758] TSC Offset = 0xfffffeceb9bec8ef
[  564.554089] TPR Threshold = 0x00
[  564.557433] EPT pointer = 0x000000003b37b01e
[  564.561913] Virtual processor ID = 0x0001
01:20:57 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, &(0x7f00000029c0)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000002a40)=0x80)
poll(&(0x7f00000001c0)=[{}, {r1, 0x4024}, {}], 0x3, 0xf85)

01:20:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, &(0x7f00000029c0)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000002a40)=0x80)
poll(&(0x7f00000001c0)=[{r1}], 0x1, 0x0)

01:20:57 executing program 2:
pipe(&(0x7f0000001b80))

01:20:57 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, &(0x7f00000029c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000002a40)=0x80)

01:20:57 executing program 1:
socket$inet6(0xa, 0x0, 0xe5af)

01:20:57 executing program 2:
bpf$LINK_GET_NEXT_ID(0x19, 0x0, 0x0)

[  564.735029] *** Guest State ***
[  564.750654] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  564.796011] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  564.806403] CR3 = 0x00000000fffbc000
[  564.816707] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  564.828277] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  564.837434] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  564.854906] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  564.864441] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.876097] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.885930] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.895666] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.904851] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  564.913614] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  564.922302] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  564.930334] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  564.938506] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  564.946542] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  564.953030] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  564.960630] Interruptibility = 00000000  ActivityState = 00000000
[  564.966848] *** Host State ***
[  564.970083] RIP = 0xffffffff811601fe  RSP = 0xffff8880b1a3f9b8
[  564.976108] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  564.983156] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000034000
[  564.991018] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  564.996895] CR0=0000000080050033 CR3=0000000093b51000 CR4=00000000001426f0
[  565.003956] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  565.010681] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  565.016793] *** Control State ***
[  565.020342] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  565.026998] EntryControls=0000d1ff ExitControls=002fefff
[  565.032503] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  565.039493] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  565.046163] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
01:20:57 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627, 0x0, 0x0, [{0x0, 0x0, 0x0, [], 0x2}]}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:57 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
r2 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
r3 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, r2)
keyctl$setperm(0x5, r3, 0x202002)
keyctl$chown(0x4, r3, r1, 0x0)

01:20:57 executing program 0:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f00000000c0)={0x23, 0x0, 0x62}, 0x10)

01:20:57 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/ip6_tables_targets\x00')

01:20:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00', 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r1, 0x1}, 0x14}}, 0x0)

01:20:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000001200)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001140)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x20}], 0x1, 0x0)

[  565.052776]         reason=80000021 qualification=0000000000000000
[  565.059102] IDTVectoring: info=00000000 errcode=00000000
[  565.064662] TSC Offset = 0xfffffece69d1c86c
[  565.068970] TPR Threshold = 0x00
[  565.072407] EPT pointer = 0x00000000a578701e
[  565.076804] Virtual processor ID = 0x0001
01:20:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000001200)=[{0x0, 0x0, &(0x7f0000000d40)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, &(0x7f0000001140)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x40}], 0x1, 0x0)

01:20:57 executing program 5:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$llc(r0, 0x0, 0x0)

01:20:57 executing program 4:
poll(0x0, 0x0, 0xf85)

01:20:57 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000d40)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c80], 0x0, 0x0, &(0x7f0000000c80)=[{}, {}, {}]}, 0x108)

01:20:57 executing program 0:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f00000000c0)={0x23, 0x0, 0x62}, 0x10)

01:20:57 executing program 2:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000011c0)='./cgroup/syz0\x00', 0x200002, 0x0)

[  565.200847] *** Guest State ***
[  565.219736] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  565.249317] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  565.267212] CR3 = 0x00000000fffbc000
[  565.278973] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  565.285939] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  565.292905] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  565.304201] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  565.314086] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.326714] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.336895] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.345504] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.354358] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.363073] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  565.372577] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  565.384444] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  565.392606] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  565.400639] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  565.407049] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  565.414570] Interruptibility = 00000000  ActivityState = 00000000
[  565.420850] *** Host State ***
[  565.424031] RIP = 0xffffffff811601fe  RSP = 0xffff8880b417f9b8
[  565.430223] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  565.436636] FSBase=00007facca341700 GSBase=ffff8880ba500000 TRBase=fffffe0000034000
[  565.444633] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  565.450607] CR0=0000000080050033 CR3=00000000959be000 CR4=00000000001426e0
[  565.457611] Sysenter RSP=fffffe0000034000 CS:RIP=0010:ffffffff87401690
[  565.464364] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  565.470492] *** Control State ***
[  565.473932] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  565.480658] EntryControls=0000d1ff ExitControls=002fefff
[  565.486099] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  565.493071] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
01:20:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627}})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

01:20:58 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00', 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_PORT={0x6}]}]}, 0x2c}}, 0x0)

01:20:58 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x0)

01:20:58 executing program 2:
socket$inet(0x2, 0x5, 0x5)

01:20:58 executing program 0:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f00000000c0)={0x23, 0x0, 0x62}, 0x10)

[  565.499780] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  565.506342]         reason=80000021 qualification=0000000000000000
[  565.512713] IDTVectoring: info=00000000 errcode=00000000
[  565.518148] TSC Offset = 0xfffffece298118c2
[  565.522500] TPR Threshold = 0x00
[  565.525852] EPT pointer = 0x00000000b512801e
[  565.530309] Virtual processor ID = 0x0001
01:20:58 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000d40)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c80], 0x0, 0x0, &(0x7f0000000c80)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {}, {}]}, 0x108)

01:20:58 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f0000000980)={0x0, 0x0, 0x0}, 0x0)

01:20:58 executing program 0:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f00000000c0)={0x23, 0x0, 0x62}, 0x10)

[  565.694259] *** Guest State ***
[  565.697579] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  565.708080] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  565.717884] CR3 = 0x00000000fffbc000
[  565.722581] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  565.728559] RFLAGS=0x00071ac7         DR7 = 0x0000000000000400
[  565.739284] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  565.746019] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  565.758931] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.769917] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.777915] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.788130] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.789464] Bluetooth: hci0 command 0x0401 tx timeout
[  565.796868] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  565.809990] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  565.817988] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  565.826026] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  565.834079] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  565.842145] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  565.848544] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  565.856061] Interruptibility = 00000000  ActivityState = 00000000
[  565.862698] *** Host State ***
[  565.865889] RIP = 0xffffffff811601fe  RSP = 0xffff8880543d79b8
[  565.871936] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  565.878328] FSBase=00007facca341700 GSBase=ffff8880ba400000 TRBase=fffffe0000003000
[  565.886158] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  565.892118] CR0=0000000080050033 CR3=000000009c37f000 CR4=00000000001426f0
[  565.899118] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff87401690
[  565.905809] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  565.911918] *** Control State ***
[  565.915358] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3
[  565.922059] EntryControls=0000d1ff ExitControls=002fefff
[  565.927505] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  565.934665] VMEntry: intr_info=80000006 errcode=00000000 ilen=00000000
[  565.941981] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  565.948549]         reason=80000021 qualification=0000000000000000
[  565.954906] IDTVectoring: info=00000000 errcode=00000000
[  565.960412] TSC Offset = 0xfffffecde7a7d1af
[  565.964720] TPR Threshold = 0x00
[  565.968063] EPT pointer = 0x0000000052f3501e
[  565.972514] Virtual processor ID = 0x0001
01:20:58 executing program 4:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000680))

01:20:58 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{0x0, 0x0, 0x0}], 0x1, 0x0)

01:20:58 executing program 2:
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000d40)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c80], 0x0, 0x0, &(0x7f0000000c80)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}, {0x0, '\x00', 0x0, 0xffffffffffffffff}]}, 0x108)

01:20:58 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, &(0x7f00000029c0)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000002a40)=0x80)
poll(&(0x7f00000001c0)=[{r1, 0x4024}], 0x1, 0x0)

01:20:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000f00)='IPVS\x00', r0)

01:20:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627}})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

01:20:58 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{0x0, 0x0, &(0x7f0000003a40)=[{&(0x7f0000003800)='\"', 0x1}], 0x1}], 0x1, 0x0)

01:20:58 executing program 4:
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000000))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))

01:20:58 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, 0x0, 0x0, 0x0)

01:20:58 executing program 2:
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000d40)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c80], 0x0, 0x0, &(0x7f0000000c80)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108)

01:20:58 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={0x0}}, 0xc881)

01:20:58 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs={0x1}, 0x6e, &(0x7f0000003a40)=[{&(0x7f0000003800)='\"', 0x1}, {0x0}, {&(0x7f00000039c0)='6', 0x1}], 0x3}], 0x1, 0x0)

01:20:58 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000001200)=[{0x0, 0x0, &(0x7f0000000d40)=[{0x0}, {0x0}, {0x0}, {0x0}, {&(0x7f0000000a40)}, {0x0}, {&(0x7f0000000b80)}, {0x0}, {0x0}], 0x9, &(0x7f0000001140)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x58, 0x5f163ec980c430c}], 0x1, 0x20004011)

01:20:58 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{0x0, 0x0, &(0x7f0000003a40)=[{0x0}, {&(0x7f0000003800)='\"', 0x1}, {0x0}, {&(0x7f00000039c0)='6', 0x1}], 0x4}], 0x1, 0x0)

01:20:58 executing program 2:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$llc(r0, &(0x7f0000000480)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x10)

01:20:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627}})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

01:20:58 executing program 0:
poll(&(0x7f00000001c0)=[{}, {}], 0x2, 0xf85)

01:20:58 executing program 4:
bpf$ITER_CREATE(0x21, &(0x7f0000000c00), 0x8)

01:20:58 executing program 1:
syz_open_procfs$namespace(0x0, &(0x7f0000002800)='ns/ipc\x00')

01:20:58 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{0x0, 0x0, &(0x7f0000003a40)=[{&(0x7f0000003800)='\"', 0x1}, {0x0}], 0x2}], 0x1, 0x0)

01:20:58 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, &(0x7f00000029c0)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000002a40)=0x80)
poll(&(0x7f00000001c0)=[{r1}, {}], 0x2, 0x0)

01:20:58 executing program 2:
sendmsg$NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, 0x0, 0x0)

01:20:58 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000000c0)={'team0\x00'})

01:20:58 executing program 1:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
pwritev(r0, 0x0, 0x0, 0x0, 0x0)

01:20:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000280), 0x1, 0x0, 0x0)
dup3(r4, r1, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x71ac7})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x4000, 0x0, 0x627}})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

01:20:59 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000740)={'wpan3\x00'})

01:20:59 executing program 2:
socket(0x18, 0x80000, 0x0)

01:20:59 executing program 4:
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
bind$llc(r0, &(0x7f0000000100)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random="0b4fb37fbee8"}, 0x10)

01:20:59 executing program 0:
socket$inet6(0xa, 0x80002, 0x80)

01:20:59 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs={0x1, 0x0, 0x4e23}, 0x6e, 0x0}], 0x1, 0x0)

01:20:59 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@delqdisc={0x24, 0x25, 0x1}, 0x24}}, 0x0)

01:20:59 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000d40)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c80], 0x0, 0x0, &(0x7f0000000c80)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}, {0x0, '\x00', 0x0, 0xffffffffffffffff}]}, 0x108)

01:20:59 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}}, 0x0)

01:20:59 executing program 3:
r0 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$BTRFS_IOC_BALANCE_CTL(r0, 0x40049421, 0x0)

01:20:59 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs, 0x6e, &(0x7f0000003a40)=[{0x0}, {0x0}], 0x2}], 0x1, 0x0)

01:20:59 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs={0x1}, 0x6e, &(0x7f0000003a40)=[{0x0}, {&(0x7f0000003800)='\"', 0x1}, {0x0}, {&(0x7f00000039c0)='6', 0x1}], 0x4}], 0x1, 0x0)

01:20:59 executing program 4:
socket(0x35c1545e016a49df, 0x0, 0x0)

01:20:59 executing program 5:
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000480)='NLBL_CALIPSO\x00', 0xffffffffffffffff)

01:20:59 executing program 2:
syz_genetlink_get_family_id$devlink(&(0x7f0000000800)='devlink\x00', 0xffffffffffffffff)

01:20:59 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000002240)='ns/time\x00')
ioctl$NS_GET_NSTYPE(r0, 0xb703, 0x0)

01:20:59 executing program 0:
getsockname$llc(0xffffffffffffffff, 0x0, 0x0)

01:20:59 executing program 4:
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x108)

01:20:59 executing program 1:
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000001100), 0x4)

01:20:59 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, 0x0, 0x0)

01:20:59 executing program 3:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$ipvs(&(0x7f0000001800)='IPVS\x00', r0)

01:20:59 executing program 2:
sendmsg$unix(0xffffffffffffffff, 0x0, 0xb5658a1e901f48c0)

01:21:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={0x0}}, 0x0)

01:21:00 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, 0x0, 0x108)

01:21:00 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs, 0x6e, 0x0}], 0x1, 0x0)

01:21:00 executing program 0:
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
bind$llc(r0, &(0x7f0000000100)={0x1a, 0x207, 0x0, 0x0, 0x0, 0x0, @random="0b4fb37fbee8"}, 0x10)

01:21:00 executing program 3:
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000740)={'wpan3\x00'})

01:21:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000001200)=[{0x0, 0x0, 0x0}], 0x1, 0x20004011)

01:21:00 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, &(0x7f0000000bc0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000002a40)=0xfffffffffffffdb9)

01:21:00 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@delqdisc={0x38, 0x25, 0x1, 0x0, 0x0, {}, [@qdisc_kind_options=@q_multiq={{0xb, 0x1, 'multiq\x00'}, {0x8}}]}, 0x38}}, 0x0)

01:21:00 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, &(0x7f0000000380)={'filter\x00'}, &(0x7f0000000400)=0x44)

01:21:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_CONFIG(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0xfffffffffffffffe}}, 0x0)

01:21:00 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700))

01:21:00 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, 0x0, 0x0)

01:21:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={0x0}}, 0x0)

01:21:00 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0)

01:21:00 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{0x0, 0x0, &(0x7f0000003a40)=[{0x0}, {0x0}, {&(0x7f00000039c0)='6', 0x1}], 0x3}], 0x1, 0x0)

01:21:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$int_out(r0, 0x0, &(0x7f0000000e00))

01:21:00 executing program 4:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000002240)='ns/time\x00')

01:21:00 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$int_out(r0, 0x5462, 0x0)

01:21:00 executing program 5:
bind$phonet(0xffffffffffffffff, 0x0, 0x0)

01:21:00 executing program 3:
r0 = socket(0x18, 0x0, 0x0)
getpeername(r0, 0x0, &(0x7f0000002a40))

01:21:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r0, 0x0, &(0x7f0000002a40))

01:21:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

01:21:00 executing program 3:
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(0x0, 0xffffffffffffffff)

01:21:00 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0xd4}}, 0x0)

01:21:00 executing program 0:
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0)

01:21:00 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone(0x5fd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
connect$bt_sco(r0, &(0x7f00000001c0), 0x8)
ptrace$poke(0x4, 0x0, &(0x7f0000000180), 0x8)

01:21:00 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone(0x5fd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
connect$bt_sco(r0, &(0x7f00000001c0), 0x8)
r2 = getpid()
rt_tgsigqueueinfo(r2, r2, 0x15, &(0x7f00000000c0))
ptrace(0x10, r2)
ptrace$poke(0x4, r2, &(0x7f0000000180), 0x8)

01:21:00 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f0000fee000/0x12000)=nil, 0x12000, 0x0, 0x12, r0, 0x0)

01:21:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs={0x1}, 0x6e, &(0x7f0000003a40)=[{&(0x7f0000003800)='\"', 0x1}, {0x0}], 0x2}], 0x1, 0x0)

01:21:00 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000089c0)=[{&(0x7f0000003700)=@abs, 0x6e, &(0x7f0000003a40)=[{0x0}], 0x1}], 0x1, 0x0)

01:21:00 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="d40000004dfbb9"], 0xd4}}, 0x0)

01:21:00 executing program 0:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
io_getevents(r0, 0x10000, 0xfffffc76, 0x0, &(0x7f0000000040)={0x0, 0x989680})

01:21:00 executing program 4:
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007800)=[{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000300)="4b8f54ed5e6dc75419d180349bdb", 0xe}], 0x1}], 0x1, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)

01:21:00 executing program 2:
syz_mount_image$hfsplus(&(0x7f0000002680)='hfsplus\x00', &(0x7f00000026c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002800), 0x0, &(0x7f0000002880)={[{@force='force'}, {@nls={'nls', 0x3d, 'iso8859-1'}}, {@nobarrier='nobarrier'}]})

01:21:00 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x5452, &(0x7f0000000040)={'wpan0\x00'})
syz_genetlink_get_family_id$nl802154(&(0x7f0000000140)='nl802154\x00', r0)

01:21:00 executing program 4:
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007800)=[{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000300)="4b8f54ed5e6dc75419d180349bdb", 0xe}], 0x1}], 0x1, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)

01:21:00 executing program 5:
io_setup(0x1c1, &(0x7f0000000080)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000000c0)=[0xfffffffffffffffe])

01:21:00 executing program 4:
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007800)=[{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000300)="4b8f54ed5e6dc75419d180349bdb", 0xe}], 0x1}], 0x1, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)

[  567.956100] hfsplus: unable to find HFS+ superblock
[  568.027757] hfsplus: unable to find HFS+ superblock
01:21:01 executing program 1:
prctl$PR_SET_TIMERSLACK(0x1d, 0x0)
memfd_create(0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x20000000)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/fib_trie\x00')
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000002c0)={@empty, @mcast2, @private2={0xfc, 0x2, [], 0x1}, 0x2, 0x401, 0x6e55, 0x400, 0x1, 0x200182})
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2044884}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)

01:21:01 executing program 3:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x2200056, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0xbc9dc8fbd81cb4b1)
fcntl$lock(r0, 0x7, &(0x7f00000003c0)={0x1})
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

01:21:01 executing program 0:
openat$procfs(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/cgroups\x00', 0x0, 0x0)

01:21:01 executing program 4:
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007800)=[{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000300)="4b8f54ed5e6dc75419d180349bdb", 0xe}], 0x1}], 0x1, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)

01:21:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xc008ae05, 0x544000)

01:21:01 executing program 2:
syz_mount_image$hfsplus(&(0x7f0000002680)='hfsplus\x00', &(0x7f00000026c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002800), 0x0, &(0x7f0000002880)={[{@force='force'}, {@nls={'nls', 0x3d, 'iso8859-1'}}, {@nobarrier='nobarrier'}]})

01:21:01 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)

01:21:01 executing program 3:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x2200056, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0xbc9dc8fbd81cb4b1)
fcntl$lock(r0, 0x7, &(0x7f00000003c0)={0x1})
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

01:21:01 executing program 5:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x2200056, 0x0)
creat(&(0x7f0000000180)='./file0/file0\x00', 0x0)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

01:21:01 executing program 0:
open(0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file1\x00', 0x11040, 0x0)
syncfs(r0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@ipv4={[], [], @remote}, @in=@loopback}}, {{@in6=@mcast1}, 0x0, @in6}}, 0x0)

01:21:01 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

[  568.713454] hfsplus: unable to find HFS+ superblock
01:21:01 executing program 5:
io_setup(0x89e8, &(0x7f0000000000)=<r0=>0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
io_submit(r0, 0x2, &(0x7f00000003c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}, 0x0])

01:21:01 executing program 2:
syz_mount_image$hfsplus(&(0x7f0000002680)='hfsplus\x00', &(0x7f00000026c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002800), 0x0, &(0x7f0000002880)={[{@force='force'}, {@nls={'nls', 0x3d, 'iso8859-1'}}, {@nobarrier='nobarrier'}]})

01:21:01 executing program 3:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x2200056, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0xbc9dc8fbd81cb4b1)
fcntl$lock(r0, 0x7, &(0x7f00000003c0)={0x1})
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

01:21:01 executing program 4:
prctl$PR_SET_TIMERSLACK(0x1d, 0x0)
memfd_create(0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x20000000)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/fib_trie\x00')
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000002c0)={@empty, @mcast2, @private2={0xfc, 0x2, [], 0x1}, 0x2, 0x401, 0x6e55, 0x400, 0x1, 0x200182})
ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000100)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @mcast1, 0x0, 0x0, 0x3})
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2044884}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28031, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', <r3=>0x0, 0x2f, 0xa5, 0x3, 0x45aff23d, 0x2, @empty, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x7, 0x40, 0x2, 0x2155}})
open(&(0x7f0000000380)='.\x00', 0x111000, 0x0)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, @empty, 0x0, 0x3, 0x3f, 0x0, 0x7396, 0x84000030, r3})
ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010)
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0)

01:21:01 executing program 1:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000000000)={0x10, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)

01:21:01 executing program 0:
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007800)=[{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000300)="4b8f54ed5e6dc75419d180349b", 0xd}], 0x1}], 0x1, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)

[  568.844595] hfsplus: unable to find HFS+ superblock
01:21:01 executing program 3:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000000000)='ramfs\x00', 0x2200056, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0xbc9dc8fbd81cb4b1)
fcntl$lock(r0, 0x7, &(0x7f00000003c0)={0x1})
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

01:21:01 executing program 1:
io_setup(0x89e8, &(0x7f0000000000)=<r0=>0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x81, r1, 0x0, 0x0, 0x0, 0x0, 0x2}])

01:21:01 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="92", 0x1}], 0x1}, 0x0)
sendto(r0, &(0x7f0000000200)='n', 0x1, 0x0, 0x0, 0x0)

01:21:01 executing program 2:
syz_mount_image$hfsplus(&(0x7f0000002680)='hfsplus\x00', &(0x7f00000026c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002800), 0x0, &(0x7f0000002880)={[{@force='force'}, {@nls={'nls', 0x3d, 'iso8859-1'}}, {@nobarrier='nobarrier'}]})

01:21:01 executing program 0:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000000c80)=ANY=[@ANYBLOB="01"], 0x44b, 0x0)

01:21:01 executing program 5:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x1002, 0x0, 0x0)

01:21:01 executing program 3:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x1002, &(0x7f0000000000), 0x4)

01:21:01 executing program 5:
open(&(0x7f0000000240)='./file0\x00', 0x200, 0x0)
utimes(&(0x7f0000000040)='./file0\x00', 0x0)

01:21:01 executing program 3:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x8, &(0x7f0000000000), 0x4)

01:21:01 executing program 4:
socket$inet6(0xa, 0x80002, 0x0)

01:21:01 executing program 1:
r0 = socket$inet6(0x18, 0x2, 0x0)
setsockopt$sock_int(r0, 0xffff, 0x1, 0x0, 0x0)

[  569.023646] hfsplus: unable to find HFS+ superblock
01:21:01 executing program 5:
setrlimit(0x8, &(0x7f0000000040))
socket$inet6(0x18, 0x3, 0x0)

01:21:01 executing program 1:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockname$unix(r0, &(0x7f0000001a00), &(0x7f0000000040)=0x1002)

01:21:01 executing program 3:
open(&(0x7f0000000240)='./file0\x00', 0x200, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')

01:21:01 executing program 4:
r0 = socket$inet6(0x18, 0x3, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x803, 0x0, 0x0)

01:21:01 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000440)="d1", 0x1}], 0x9}, 0x0)

01:21:02 executing program 0:
socket(0x2, 0xa4ffbcf4fac21126, 0x0)

01:21:02 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}}, 0x0)

01:21:02 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00', 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r1, 0x1}, 0x14}}, 0x0)

01:21:02 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000100)={0x0, 0x400, 0x0, 0x4}, 0xc)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={[], 0x10}}, 0xe)

01:21:02 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mknod(&(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0)

01:21:02 executing program 3:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x1001, &(0x7f0000000000), 0x4)

[  569.859087] Bluetooth: hci0 command 0x0405 tx timeout
[  569.910579] INFO: trying to register non-static key.
[  569.915704] the code is fine but needs lockdep annotation.
[  569.921314] turning off the locking correctness validator.
[  569.926929] CPU: 0 PID: 11669 Comm: syz-executor.2 Not tainted 4.14.226-syzkaller #0
[  569.934794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  569.944137] Call Trace:
[  569.946716]  dump_stack+0x1b2/0x281
[  569.950340]  register_lock_class+0x32b/0x1320
[  569.954829]  ? trace_hardirqs_on+0x10/0x10
[  569.959055]  ? static_obj+0x50/0x50
[  569.962671]  __lock_acquire+0x167/0x3f20
[  569.966726]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  569.971817]  ? mod_timer+0x4e7/0xf70
[  569.975537]  ? trace_hardirqs_on+0x10/0x10
[  569.979765]  ? lock_downgrade+0x740/0x740
[  569.983903]  ? calc_wheel_index+0x2d/0x1c0
[  569.988222]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  569.993313]  ? mod_timer+0x4ec/0xf70
[  569.997027]  lock_acquire+0x170/0x3f0
[  570.000818]  ? skb_dequeue+0x1c/0x180
[  570.004613]  _raw_spin_lock_irqsave+0x8c/0xc0
[  570.009099]  ? skb_dequeue+0x1c/0x180
[  570.012891]  skb_dequeue+0x1c/0x180
[  570.016510]  skb_queue_purge+0x21/0x30
[  570.020395]  l2cap_chan_del+0x56d/0x950
[  570.024359]  l2cap_chan_close+0x103/0x870
[  570.028508]  ? __set_monitor_timer+0x1d0/0x1d0
[  570.033086]  ? wait_for_completion_io+0x10/0x10
[  570.037745]  ? __local_bh_enable_ip+0xc1/0x170
[  570.042406]  l2cap_sock_shutdown+0x2e7/0xc20
[  570.046807]  ? __lock_acquire+0x5fc/0x3f20
[  570.051041]  ? l2cap_skb_msg_name+0x120/0x120
[  570.055527]  ? l2cap_sock_release+0x6a/0x280
[  570.059926]  ? lock_downgrade+0x740/0x740
[  570.064066]  l2cap_sock_release+0x77/0x280
[  570.068293]  __sock_release+0xcd/0x2b0
[  570.072172]  ? __sock_release+0x2b0/0x2b0
[  570.076311]  sock_close+0x15/0x20
[  570.079755]  __fput+0x25f/0x7a0
[  570.083028]  task_work_run+0x11f/0x190
[  570.086905]  exit_to_usermode_loop+0x1ad/0x200
[  570.091478]  do_syscall_64+0x4a3/0x640
[  570.095360]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  570.100606] RIP: 0033:0x41927b
[  570.103782] RSP: 002b:00007ffce60ec710 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
01:21:02 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="92dcadeb1cfa40f5b9a331b07481f0d5747b563a14477cb971af5d869f44ebed35ff0e5ebccf5d4d35c6cdc716fc6958466a2954906296b2a5458ce48c617c89ed31e2793cf6a800c07d2ec09f588d30f8b9fc605dc93fbaef25242068d192b5dcbae163485536c25662d4d1047d27ace80092e8df71208f8c22085058f1e87a1c95f4b0acee78ee0894d1582c969d8581", 0x91}], 0x1}, 0x0)
sendto(r0, &(0x7f0000000200)='n', 0x1, 0x0, 0x0, 0x0)

01:21:02 executing program 4:
setrlimit(0x8, &(0x7f0000000040))

01:21:02 executing program 1:
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x2000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
rename(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file0\x00')

01:21:02 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, &(0x7f0000000140)="c69976000b85b98abf67d05de5f91ddba17c6aa4c5f56e63fdb142012cdcdf9a2b6c053f6c5e04ebbf49f673e07f257a1cbd9538a60bf0f9238381b5695cc1c5856640b70cb6da344dba918e71f8a6f19d32cb4299cbe31ce13f9a6571d9969dd3aad9fa4463b81f606a1417070043451a01be776b13731cf26ad255215fb7ea640d1a561c71d70edd72ecf18b8f70e343", 0x91, 0x0, 0x0, 0x0)

01:21:02 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
rename(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file0\x00')

01:21:02 executing program 4:
setrlimit(0x7, &(0x7f0000000040)={0x100000, 0x100000})

01:21:02 executing program 1:
open(&(0x7f0000000080)='./file0\x00', 0x200, 0x0)
acct(0x0)

01:21:02 executing program 4:
open(&(0x7f0000000240)='./file0\x00', 0x200, 0x0)
utimes(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0))

01:21:02 executing program 5:
r0 = socket$inet6(0x18, 0x2, 0x0)
setsockopt$sock_int(r0, 0xffff, 0x1, &(0x7f0000000000)=0x20, 0x4)

01:21:02 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000100)={0x0, 0x400, 0x0, 0x4}, 0xc)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={[], 0x10}}, 0xe)

01:21:02 executing program 1:
open(&(0x7f0000000080)='./file0\x00', 0x200, 0x0)
acct(0x0)

01:21:02 executing program 4:
r0 = socket$inet6(0x18, 0x3, 0x0)
getsockopt$sock_timeval(r0, 0xffff, 0x0, 0x0, 0x0)

01:21:02 executing program 3:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x20, &(0x7f0000000100), 0x4)

01:21:02 executing program 0:
r0 = socket$inet6(0x18, 0x3, 0x0)
sendto(r0, 0x0, 0x0, 0x405, &(0x7f0000000140)=@in6={0x18, 0x3}, 0xc)

[  570.111477] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 000000000041927b
[  570.118736] RDX: ffffffffffffffbc RSI: 00000000089075c3 RDI: 0000000000000004
[  570.125994] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000001b2d421f28
[  570.133254] R10: 00007ffce60ec800 R11: 0000000000000293 R12: 000000000008b267
[  570.140703] R13: 00000000000003e8 R14: 000000000056bf60 R15: 000000000008b257
01:21:02 executing program 5:
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')

01:21:02 executing program 1:
open(&(0x7f0000000080)='./file0\x00', 0x200, 0x0)
acct(0x0)

01:21:02 executing program 4:
open(&(0x7f0000000240)='./file0\x00', 0x200, 0x0)
acct(&(0x7f0000000000)='./file0\x00')

01:21:02 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000100)={0x0, 0x400, 0x0, 0x4}, 0xc)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={[], 0x10}}, 0xe)

01:21:02 executing program 0:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0xffff, 0x1022, &(0x7f0000000040), &(0x7f0000000080)=0x14)

01:21:02 executing program 1:
open(&(0x7f0000000080)='./file0\x00', 0x200, 0x0)
acct(0x0)

01:21:02 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000100)={0x0, 0x400, 0x0, 0x4}, 0xc)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={[], 0x10}}, 0xe)

01:21:02 executing program 4:
setitimer(0x0, &(0x7f0000000000)={{0x0, 0x80000000}, {0x9d3f}}, 0x0)

01:21:02 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
linkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)

01:21:02 executing program 5:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=""/44, 0x2c}, 0x1)

01:21:02 executing program 2:
socket$inet6(0x18, 0xf9ba5298f5fabe8f, 0x0)

01:21:02 executing program 1:
r0 = socket$inet6(0x18, 0x1, 0x0)
setsockopt$sock_int(r0, 0xffff, 0x4, &(0x7f0000000000), 0x4)

01:21:02 executing program 4:
setrlimit(0x8, &(0x7f0000000040)={0x0, 0x100005})

01:21:02 executing program 0:
sendmsg(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000280)="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", 0x103}, {&(0x7f00000003c0)="9c038c4f5236c306179325a3dcc11430c8e6bb5dd71f28bed5b7c9912eff9f0cc9bde564e0a590d10709166ad6333844fdbce3a0ae961dcbebe128bb778472fbdb5bc697feb168431162a1185cd54d4607e2082c7f66ffcaf0537a536eecc5d18f16f4d0430c7d97e796f965f0d0bc9f30f8ffff1a3b1fdabd19c09b4e89733d6bb797da496503380d970c85fe0db2ad18590b14ca2dd6907e4931e6019ea984b384888e61b26b4b108e1fae4f047f35716d5585b9fbabbd334c0fa3b469b6d69ca9d90ec3ba898986376daf5eaf07802bcf734d3a38518a8402907294784e6c8455dfcc79f89c9cdbbeaf1409"}, {&(0x7f0000000080)="c4b6b05b1fdc5fe42e667c6983dfc0fcca0ca0f73a0781be5d5142e3f8a811bd322ec44e28cef789eda715bc348ae0276c0eea597456cfeb35f6f001a373e13a158cd6b1e7793ee2c579a9d7b4cb0788eb46849e0a18"}], 0x100000a8}, 0x0)

01:21:02 executing program 3:
open(&(0x7f0000000080)='./file0\x00', 0xb62688f511dba32d, 0x0)

01:21:02 executing program 5:
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="92dcadeb1cfa40f5b9a331b07481f0d5747b563a14477cb971af5d869f44ebed35ff0e5ebccf5d4d35c6cdc716fc6958466a2954906296b2a5458ce48c617c89ed31e2793cf6a800c07d2ec09f588d30f8b9fc605dc93fbaef25242068d192b5dcbae163485536c25662d4d1047d27ace80092e8df71208f8c22085058f1e87a1c95f4b0acee78ee0894d1582c969d8581", 0xffffff04}, {&(0x7f0000000240)="9eea9f74d8d667f0a388cfc4b1a1e1a6daf612ff406c6901c580877febf2814c10affa0aabbab9bccb7ef7662a8c568d7f9a3fe86569db9509786a6cfbb4478c88", 0x41}], 0x10000000000002d9, 0x0, 0xffffffffffffff06}, 0x0)

01:21:02 executing program 1:
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x2000, 0x1)
fchmodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)

01:21:02 executing program 2:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000040)='./file0\x00')

01:21:02 executing program 3:
openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/zero\x00', 0x79ced3fde081e624, 0x0)

01:21:02 executing program 0:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x1001, 0x0, 0x0)

01:21:02 executing program 4:
setuid(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))

01:21:02 executing program 2:
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40086602, 0x0)
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x7, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x65}, [@call={0xf}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)

01:21:02 executing program 3:
socket$kcm(0xa, 0x1, 0x0)
socket$kcm(0x10, 0x2, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x300)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000200)=@in={0x2, 0x4e23, @remote}, 0x80, 0x0}, 0xfd00)
gettid()
perf_event_open(0x0, 0x0, 0xd, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x204, 0x1c030, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0xfa38)

01:21:02 executing program 0:
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000))
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x1d}]})

01:21:02 executing program 4:
socket$kcm(0xa, 0x1, 0x0)
socket$kcm(0x10, 0x2, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x300)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000200)=@in={0x2, 0x4e23, @remote}, 0x80, 0x0}, 0xfd00)
perf_event_open(0x0, 0x0, 0xd, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0xfa38)

01:21:03 executing program 1:
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40086602, 0x0)
r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x7, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x65}, [@call={0xf}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed8}, 0x3f)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)

01:21:03 executing program 5:
socket$kcm(0xa, 0x1, 0x0)
socket$kcm(0x10, 0x2, 0x4)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x300)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000200)=@in={0x2, 0x4e23, @remote}, 0x80, 0x0}, 0xfd00)
write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0xfa38)

01:21:03 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x20, 0x1, 0x8, 0x401, 0x0, 0x0, {}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}}, 0x0)

01:21:03 executing program 1:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
pwritev(r0, &(0x7f0000001640)=[{0x0}, {&(0x7f00000001c0)="bf", 0x1}], 0x2, 0x0, 0x0)

01:21:03 executing program 5:
openat$tun(0xffffffffffffff9c, 0x0, 0x430400, 0x0)

01:21:03 executing program 4:
syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0xff535cf320c72b96)

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)

01:21:03 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x40)
r0 = socket$kcm(0xa, 0x3, 0x87)
sendmsg$kcm(r0, &(0x7f00000001c0)={&(0x7f0000000000)=@un=@abs, 0x80, &(0x7f0000000180)=[{&(0x7f0000000c80)="5f4bc4f39997", 0x6}], 0x1}, 0x0)

01:21:03 executing program 5:
clock_gettime(0x3, &(0x7f0000000200))

01:21:03 executing program 1:
syz_genetlink_get_family_id$ipvs(&(0x7f0000000d00)='IPVS\x00', 0xffffffffffffffff)

01:21:03 executing program 0:
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000))
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x1d}]})

01:21:03 executing program 4:
io_setup(0x401, &(0x7f0000000000)=<r0=>0x0)
io_getevents(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x3938700})

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)

01:21:03 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000040)='logon\x00', &(0x7f0000000080)={'fscrypt:', @desc3='e8dab99234bb312e'}, &(0x7f00000000c0)={0x0, "ae427e285384fd2f5e5729d372df65649be52746f5daa8417e959f067c6b005827273302f261992987686e0650b8fccf0399f0a404db1e0a6195fb2068a04f14"}, 0x48, 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, r0)

01:21:03 executing program 2:
timer_create(0x0, &(0x7f0000000780)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10)
write$binfmt_elf64(r0, &(0x7f0000000900)=ANY=[@ANYRESDEC, @ANYBLOB="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", @ANYRESDEC, @ANYRESDEC], 0x100000530)
r1 = gettid()
tkill(r1, 0x14)

01:21:03 executing program 5:
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x0, 0x0, 0xee01}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

01:21:03 executing program 1:
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000300)={&(0x7f00000002c0)='./file0\x00'}, 0x10)

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)

01:21:03 executing program 4:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
pwritev(r0, &(0x7f0000001640)=[{&(0x7f0000000140)="847a1018d9db03446cb59ecd9e83079d4d37d27e8c3ad07738c5bef795a56853f1d2504be407bd31f0e2c88ab7d69a7857a272168105995756e0a8831265be289e1604af", 0x44}, {&(0x7f00000001c0)="bf5395305cc1e0c3cea3558bb4396e9f4bb8a3b98665c600689d0f9aba1edd03b7d88ed9185af2d9d1ba2ae88602fb9e0e78b6577f013cbb45765c47574bd6d624843122ccc7197e6e689d72aade5e8c1695ac999a2bc1a399547e7d544c859f1200582bebdfc4a35842bac5bdd48468946d16d0f9a02a4385bfa1aa", 0x7c}, {&(0x7f0000000240)="6c2196ab649af289dec81b2e7d9f5a739bb8c3581ecaef85df27cb883046453f1a468c5f96fb7c5babc511030de8945c7039a8ddae2169eaa2cb79b91c7f325ece2ad6ca3c34e2910f61295b3542f45c40245e88be24b5d17f7ed8e184ebca466ada1b76754495e1631a7de05ab87056dfee2bf38693d15b384598aeb91ed940fbb198a3cb89265964dc9b6f4c2e812611945c28937e058d072f6787905c576a886956e0ad17c7b36848f0e54019d628e93c0d68cdc6c9c3353ed31800a15cd89738eb2cb3f3522d648a911e17c140a6d9705cc8734cdac533df35e6d1", 0xdd}, {&(0x7f0000000340)="210b16acf4ec8f26f495047a73f50eb99c75d0ad69095b9ab0c8021794df894399dfc4ad53eb7a11365ee4571822c426ebc4f0e3f6d959ef8862af8771c4bc77fe160f2ee346e5d9ae321da8ea016b86e90bb3672435ff420d2979661134334019295cc1c27759847385ed6088b847a616b9cc57c5d246c7f45d7390249efe9aa6f2d7b01ede5b5987599dc0e6dc7c6af5cc0ee1664036dfda536a92b4588b", 0x9f}, {&(0x7f0000000400)="b99175d063a8e7d7715a03a2e6270cd86061eef4ce7f9de957ab88260a846b7d4afbf531010d2b546739061c9728e1c12e14d842bd30065a1a403025209359da1fd5f2859d633b8de1462e82a6f62fee1894b0c558105603a096cd7173bd652c058c24352d9d94d735c19b0bef5eeadaafd03359b38f8f91a49f3591d211717404a9c6c4fc356c6bf3eb9e96db285111961c2c55283657adbb2cae63f89a4a70f613b0bdf3d75ef10022324f22498e93c3a9c9", 0xb3}, {&(0x7f00000004c0)="7203b09afd37870a98e964df5303faa29b50e33f23e5b99cd587402cbb63a19d0a3227977e3196b3c8ac6431f1b75b258f0f8bf02f7f129a536a4bf67b0d643a8052e1ce062c1b96b0812ba5dde39ce2a5eb56777b49b4fc70309068b3dfbb067460918dda3601b551e2a29c96d086dde1c7458dee7c834aa9c9060820aa03818b0435eb25d0630102", 0x89}, {&(0x7f0000003000)="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", 0xc86}], 0x7, 0x3, 0x0)

01:21:03 executing program 0:
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000))
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x1d}]})

01:21:03 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x8994, &(0x7f0000000080)={'macvlan0\x00', @ifru_mtu})

01:21:03 executing program 1:
r0 = getpgid(0x0)
sched_setparam(r0, &(0x7f00000000c0))

01:21:03 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6}]}}}]}, 0x3c}}, 0x0)

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)

01:21:03 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080), 0x14)

01:21:03 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fcntl$lock(r0, 0x26, &(0x7f0000000040))

01:21:03 executing program 2:
r0 = socket(0x11, 0xa, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0)

01:21:03 executing program 0:
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000))
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x1d}]})

01:21:03 executing program 3:
close(0xffffffffffffffff)

01:21:03 executing program 1:
request_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)='asymmetric\x00', 0x0)

01:21:03 executing program 4:
select(0x40, &(0x7f0000000040), &(0x7f0000000080)={0x1f}, 0x0, 0x0)

01:21:03 executing program 5:
timer_create(0x7, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)

01:21:03 executing program 3:
close(0xffffffffffffffff)

01:21:03 executing program 2:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x1, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000340)=0x2)

01:21:03 executing program 4:
r0 = gettid()
move_pages(r0, 0x1, &(0x7f0000000000)=[&(0x7f0000ffe000/0x2000)=nil], &(0x7f0000000040)=[0x101], 0x0, 0x0)

01:21:03 executing program 1:
timer_create(0x2, 0x0, &(0x7f0000000080))
clock_gettime(0x0, &(0x7f0000000c40)={0x0, <r0=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000c80)={{}, {0x0, r0+10000000}}, 0x0)
timer_gettime(0x0, &(0x7f0000000a00))

01:21:03 executing program 5:
timer_create(0x0, 0x0, &(0x7f0000000080))
timer_create(0x0, 0x0, &(0x7f00000000c0))
timer_delete(0x0)

01:21:03 executing program 0:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
recvmmsg(r0, 0x0, 0x0, 0x0, &(0x7f0000003540)={0x0, 0x989680})

01:21:03 executing program 3:
close(0xffffffffffffffff)

01:21:03 executing program 4:
request_key(&(0x7f00000002c0)='logon\x00', &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000340)='^\x00', 0x0)

01:21:03 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fcntl$lock(r0, 0x3, 0x0)

01:21:03 executing program 5:
r0 = epoll_create(0x1)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x1})

01:21:03 executing program 2:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
write$tcp_mem(r0, 0x0, 0x0)

01:21:03 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x2000, 0x0)
close(r0)

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r0)

01:21:03 executing program 4:
getresgid(&(0x7f0000000040), &(0x7f00000021c0), &(0x7f0000002200))

01:21:03 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, 0x0, 0x0)

01:21:03 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/loop-control\x00', 0xce800, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000680)='/dev/full\x00', 0x22000, 0x0)

01:21:03 executing program 2:
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x7800)

01:21:03 executing program 0:
timer_create(0x3, 0x0, &(0x7f0000000000))
clock_gettime(0x0, &(0x7f0000000040)={0x0, <r0=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, r0+10000000}}, 0x0)
timer_gettime(0x0, &(0x7f0000002280))

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r0)

01:21:03 executing program 4:
clone(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb, 0x1, 'ipvlan\x00'}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x1, 0x0, 0x0)

01:21:03 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, 0x0, &(0x7f0000001380))

01:21:03 executing program 1:
syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0xd4041)

01:21:03 executing program 2:
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, &(0x7f0000000000), 0xfffffffffffffdf5)

01:21:03 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r0, 0x6, 0x12, 0x0, &(0x7f0000000040))

01:21:03 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r0)

01:21:03 executing program 1:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='auxv\x00')

01:21:03 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, 0xffffffffffffffff, 0x0)

01:21:03 executing program 2:
io_setup(0x4003, &(0x7f0000000040))

01:21:03 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00')
read(r0, &(0x7f0000000100)=""/215, 0xd7)

01:21:03 executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(0xffffffffffffffff)

01:21:03 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$setperm(0x5, 0x0, 0x41310)

[  571.024961] bridge0: port 3(ipvlan2) entered blocking state
[  571.046156] bridge0: port 3(ipvlan2) entered disabled state
01:21:03 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f00000002c0))

01:21:03 executing program 5:
timer_create(0x2, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000080))

01:21:03 executing program 0:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f00000000c0)='logon\x00', &(0x7f0000000100)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000140)={0x0, "cfdc9e526aea88c409c0b967ed7e6e4f3b2a3e28c745fe4898807f7f2fa44646f035f6f3d21360fc231d0efb857a0bf47d76f403e3b4c5ac0a7e5af280f66e15"}, 0x48, r0)
keyctl$revoke(0x3, r0)

01:21:03 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$setperm(0x5, 0x0, 0x41310)

01:21:03 executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(0xffffffffffffffff)

01:21:03 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@window, @window, @window, @timestamp], 0x4)

[  571.152236] bridge0: port 3(ipvlan2) entered blocking state
[  571.158491] bridge0: port 3(ipvlan2) entered disabled state
01:21:03 executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f0000000500)='/dev/net/tun\x00', 0x0, 0x0)
close(0xffffffffffffffff)

01:21:03 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fcntl$lock(r0, 0x24, &(0x7f0000000040)={0x2})

01:21:03 executing program 0:
r0 = mq_open(&(0x7f0000000000)='\xad+@\x00', 0x0, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)

01:21:03 executing program 4:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x0, 0x0)
inotify_add_watch(r0, 0x0, 0x20000004)

01:21:03 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$setperm(0x5, 0x0, 0x41310)

01:21:03 executing program 5:
timer_create(0x3, 0x0, &(0x7f0000000180))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{}, {0x77359400}}, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000180)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000000200)={0x0, <r1=>0x0})
timer_settime(r0, 0x0, &(0x7f0000000240)={{}, {0x0, r1+60000000}}, 0x0)

01:21:03 executing program 3:
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0)

01:21:03 executing program 2:
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'batadv0\x00'})
clock_gettime(0x0, &(0x7f0000004580))

01:21:03 executing program 0:
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00')

01:21:03 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x7, 0xa, 0x3}, 0x14}}, 0x0)

01:21:03 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$setperm(0x5, 0x0, 0x41310)

01:21:03 executing program 3:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffffe9bb1208})

01:21:03 executing program 5:
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000000)={0xfffffffffffffffe}, 0x10)

01:21:03 executing program 4:
timer_create(0x7, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{}, {0x77359400}}, 0x0)

01:21:03 executing program 2:
r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$setperm(0x5, r0, 0x0)

01:21:03 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)

01:21:03 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000140), 0x4)

01:21:03 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, 0x0, 0x0)

01:21:03 executing program 5:
io_setup(0x9, &(0x7f0000000100)=<r0=>0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
io_submit(r0, 0x2, &(0x7f00000002c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x1}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])

01:21:04 executing program 4:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000340))
ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f00000003c0))

01:21:04 executing program 2:
mq_open(&(0x7f0000000200)='#@.*\x00', 0x40, 0x0, &(0x7f0000000240)={0x80000000, 0x17, 0x1, 0x5})

01:21:04 executing program 1:
keyctl$revoke(0x3, 0x0)

01:21:04 executing program 0:
io_setup(0x5, &(0x7f00000000c0)=<r0=>0x0)
io_getevents(r0, 0x1, 0x1, &(0x7f0000000100)=[{}], &(0x7f00000001c0)={0x0, 0x989680})

01:21:04 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, "4bc06dfac0709d87827fe7ea4593c90cb1b866f61b159d0afbac427704af8f825604fba6176838c17e2aadd026a9d3b5cc4b6f6bce1555a1f07206ba591339574559be2aa9c6ef93ba5207b8dc9f526e"}, 0xd8)

01:21:04 executing program 1:
keyctl$revoke(0x3, 0x0)

01:21:04 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockname$inet(r0, &(0x7f0000000280)={0x2, 0x0, @loopback}, &(0x7f0000000240)=0x10)

01:21:04 executing program 1:
keyctl$revoke(0x3, 0x0)

01:21:04 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1b)

01:21:04 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/anycast6\x00')

01:21:04 executing program 0:
syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x30, 0x80a42)

01:21:04 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0xff})

01:21:04 executing program 4:
perf_event_open$cgroup(&(0x7f0000000400)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

01:21:04 executing program 1:
r0 = add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)

01:21:04 executing program 3:
perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mount(0x0, 0x0, &(0x7f00005f7ffa)='ramfs\x00', 0x0, 0x0)
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8)

01:21:04 executing program 2:
r0 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$describe(0x6, r0, 0x0, 0x0)

01:21:04 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_names\x00')
read(r0, 0x0, 0x0)

01:21:04 executing program 4:
timer_create(0x0, &(0x7f0000000580)={0x0, 0x6}, &(0x7f00000005c0))

01:21:04 executing program 1:
r0 = add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)

01:21:04 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$inet(r0, &(0x7f00000000c0)="86", 0x1, 0x404c010, 0x0, 0x0)

01:21:04 executing program 4:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg\x00', 0x200000, 0x0)
fcntl$notify(r0, 0x402, 0x0)

01:21:04 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$unlink(0x9, 0x0, r0)
r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r0)
keyctl$unlink(0x9, r1, 0xfffffffffffffffb)
r2 = add_key$fscrypt_v1(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'fscrypt:', @desc4='85baa174f0cb1142'}, &(0x7f0000000100)={0x0, "8a47b6a614e6149a33865926ea5e930a294f3270b3ab22f97ae8976b68110a0009eaa65ff2c2c1b608ed5f8c6affd732d69e52d6864a086345936055a7ca8fbd", 0x1b}, 0x48, r1)
r3 = getuid()
geteuid()
keyctl$chown(0x4, r2, r3, 0xee00)

01:21:04 executing program 1:
r0 = add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "1251aa93025ba48ba48cefb8eb2dc48e641540c0a7fec99c6f97f56c196fb968e8ac932660f9225b8f83a37ed4c12313b4122cbbbfe826a6105c852756487a05"}, 0x48, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)

01:21:04 executing program 2:
r0 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$describe(0x6, r0, 0x0, 0x0)

01:21:04 executing program 3:
perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mount(0x0, 0x0, &(0x7f00005f7ffa)='ramfs\x00', 0x0, 0x0)
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8)

01:21:04 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, r0)
keyctl$read(0xb, r0, &(0x7f00000001c0)=""/176, 0xfffffdf5)