ffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:41:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1464.069531] audit: type=1400 audit(2000000506.380:674): avc: denied { map } for pid=7484 comm="syz-executor.2" path="/root/syzkaller-testdir899392471/syzkaller.kR2K2b/1968/bus" dev="sda1" ino=17571 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 03:41:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c1207849bd070") r1 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x20000002812, r1, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1081}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$tun(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="cc"], 0x1) mmap(&(0x7f0000004000/0x4000)=nil, 0xa07000, 0x0, 0x10, 0xffffffffffffffff, 0x0) 03:41:46 executing program 3: sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="021200001100000026bd7000fcdbdf2501001408790000000800120003000000000000003800000046403270b4a69956a98fe40000000000ac1414bb0000000009000000000400000000000000000000000000000000000004000400170000001f000000000700003f00000000000000010000000000120002000b00050000000100000000000000"], 0x88}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x400000000000117, 0x0) 03:41:46 executing program 1: r0 = msgget$private(0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x0, 0x1000) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x89a1, &(0x7f0000000080)={@local={0xfe, 0x80, [0x0, 0x3ef, 0x1000000000000, 0x3f00000000004000, 0x0, 0xfffffffe, 0x1107, 0x2000000, 0x0, 0x1000000000000, 0x0, 0x6]}}) 03:41:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1464.726041] audit: type=1400 audit(2000000507.040:675): avc: denied { map } for pid=7790 comm="syz-executor.2" path="/root/syzkaller-testdir899392471/syzkaller.kR2K2b/1969/bus" dev="sda1" ino=17578 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 03:41:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c1207849bd070") r1 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x20000002812, r1, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1081}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$tun(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="cc"], 0x1) mmap(&(0x7f0000004000/0x4000)=nil, 0xa07000, 0x0, 0x10, 0xffffffffffffffff, 0x0) 03:41:47 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, 0x0, 0x0) 03:41:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:47 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x0) r2 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) write$9p(r1, &(0x7f0000000800)="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", 0x1cb) sendfile(r1, r2, 0x0, 0x10000) 03:41:47 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='oom_score_adj\x00') write$cgroup_int(r0, &(0x7f0000000040), 0x12) [ 1465.327637] *** Guest State *** [ 1465.335862] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1465.349873] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1465.401907] CR3 = 0x0000000000000000 [ 1465.417695] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1465.431953] audit: type=1400 audit(2000000507.740:676): avc: denied { map } for pid=8131 comm="syz-executor.2" path="/root/syzkaller-testdir899392471/syzkaller.kR2K2b/1970/bus" dev="sda1" ino=17579 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 1465.477479] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1465.499641] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1465.527383] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1465.553509] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1465.632322] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:41:48 executing program 2: r0 = memfd_create(&(0x7f00000001c0)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa2Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bcc\xad\x89\x9ck\xde\xc5\xe96\xddUE\xc98M\xcd\xfb\xcc\x97\xb4\v\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\x00\xa5\xc24\xd6\xfe7\x0f', 0x3) mincore(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) fcntl$addseals(r0, 0x409, 0x5) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x6685) r1 = fcntl$dupfd(r0, 0x0, r0) write$P9_RRENAME(0xffffffffffffffff, 0x0, 0x0) write$P9_RLCREATE(r1, &(0x7f0000000040)={0x18}, 0x18) [ 1465.673196] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1465.728035] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1465.756694] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:41:48 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xf7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) fallocate(r1, 0x1000001d, 0x10000000000, 0x4000000000000000) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r3 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r4 = syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x1) r5 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x20000) ioctl$PPPIOCSNPMODE(r5, 0x4008744b, &(0x7f00000001c0)={0x0, 0x2}) dup2(r4, r3) 03:41:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1465.791834] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1465.828345] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1465.872444] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1465.946053] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1465.963753] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1465.978611] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1466.012722] Interruptibility = 00000000 ActivityState = 00000000 [ 1466.041212] *** Host State *** [ 1466.052705] RIP = 0xffffffff811c8cac RSP = 0xffff88805b2f78c0 03:41:48 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, 0x0, 0x0) [ 1466.072717] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1466.096538] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1466.128363] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1466.146936] CR0=0000000080050033 CR3=00000000a3d6c000 CR4=00000000001426e0 [ 1466.179788] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1466.217307] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 03:41:48 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='net/ip6_tables_matches\x00') r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='hD\xe1\xeb\xe4\xa8\x86ugetlb.\x10\x81r\x02xO\x02QqSin_by', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSWINSZ(r1, 0x5414, 0x0) sendmsg$key(0xffffffffffffffff, 0x0, 0x20000010) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(0x0) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, 0x0, 0xc0f7) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) mkdirat$cgroup(r2, &(0x7f0000000080)='3yz0\x00', 0x1ff) fchdir(r2) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) syz_genetlink_get_family_id$tipc(0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) read$alg(r1, &(0x7f00000000c0)=""/10, 0xa) ioctl$PPPIOCSMRU1(r1, 0x40047452, &(0x7f0000000240)=0x1) r3 = syz_open_dev$vcsn(0x0, 0x0, 0x80040) bind$unix(0xffffffffffffffff, 0x0, 0x3ba) setsockopt$inet_tcp_int(r3, 0x6, 0x1, 0x0, 0x663) pipe2$9p(0x0, 0x1) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000000)={{}, 0xcb81c968a55f6b80, 0x0, 0x0, {}, 0x8000000000000000, 0x2}) setsockopt$inet6_tcp_buf(r3, 0x6, 0xb, &(0x7f0000000400)="4280488322c1583287a5b1aa0150a0ff01283763103b35dacd1660b39ae85e76841bb3db91a27b1c95d2aafb5cca9f0057a8213b906a799c3aa5de9b3f9f020e85f90332cdf69a91c715f7e718b75117bf182c08c02c0fc9b70809013b1b14f9eb0d6cc5cad45268b183880e7610229c2bbf4adb8d2b9eb9463479801096c81fcff01f9874a0e04cd1313aed9289fc48c9d7799492464567", 0x98) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$EXT4_IOC_MIGRATE(r2, 0x6609) perf_event_open(&(0x7f0000000280)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$EVIOCSABS3F(r4, 0x401845ff, &(0x7f0000000300)={0xffffffffffff867e, 0xfffffffffffffffd, 0x6, 0x0, 0x0, 0x9}) recvmmsg(0xffffffffffffffff, &(0x7f0000003400)=[{{0x0, 0x0, &(0x7f0000002cc0)=[{0x0}], 0x1}, 0x2}], 0x1, 0x0, 0x0) [ 1466.240528] *** Control State *** 03:41:48 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_TSC(0x1a, 0x0) r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) ftruncate(r0, 0x208200) r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) syz_mount_image$msdos(0x0, &(0x7f0000000200)='./bus\x00', 0x0, 0x0, 0x0, 0x20000, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0) getsockopt$inet_udp_int(r1, 0x11, 0x0, 0x0, 0x0) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) [ 1466.274561] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1466.295136] EntryControls=0000d1ff ExitControls=002fefff [ 1466.317061] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1466.364902] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1466.391993] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1466.422808] reason=80000021 qualification=0000000000000000 [ 1466.446712] IDTVectoring: info=00000000 errcode=00000000 [ 1466.473233] TSC Offset = 0xfffffcecc3af5d0f [ 1466.492774] TPR Threshold = 0x00 [ 1466.517930] EPT pointer = 0x00000000874aa01e 03:41:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:41:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1467.032521] audit: type=1400 audit(2000000509.330:677): avc: denied { create } for pid=8422 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 03:41:49 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfffffcbe) lseek(r0, 0x0, 0x3) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000080)) [ 1467.128488] audit: type=1400 audit(2000000509.350:678): avc: denied { write } for pid=8422 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 1467.329570] audit: type=1400 audit(2000000509.470:679): avc: denied { map } for pid=8579 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:41:49 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) [ 1467.460986] audit: type=1400 audit(2000000509.480:680): avc: denied { map } for pid=8579 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:41:49 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64) shutdown(r1, 0x1) clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_execute_func(&(0x7f0000000040)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x4004010) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, 0x0, 0x0) [ 1467.607314] audit: type=1400 audit(2000000509.500:681): avc: denied { map } for pid=8579 comm="modprobe" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:41:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:41:50 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000002c0)=r0) [ 1467.783394] audit: type=1400 audit(2000000509.510:682): avc: denied { map } for pid=8579 comm="modprobe" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1467.896303] audit: type=1400 audit(2000000509.550:683): avc: denied { map } for pid=8579 comm="modprobe" path="/etc/ld.so.cache" dev="sda1" ino=2251 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:41:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1468.046281] audit: type=1400 audit(2000000509.570:684): avc: denied { map } for pid=8579 comm="modprobe" path="/lib/x86_64-linux-gnu/libkmod.so.2.1.3" dev="sda1" ino=2811 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:41:50 executing program 3: getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000080)={@empty, @loopback}, &(0x7f00000000c0)=0xc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x29, 0x2, 0x0) r1 = memfd_create(&(0x7f0000000240)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000040)=[{&(0x7f00001f2000)="aa", 0x1}], 0x1, 0x800000) sendfile(r0, r1, 0x0, 0x1ffe10) [ 1468.189000] audit: type=1400 audit(2000000509.580:685): avc: denied { map } for pid=8579 comm="modprobe" path="/lib/x86_64-linux-gnu/libkmod.so.2.1.3" dev="sda1" ino=2811 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1468.272074] audit: type=1400 audit(2000000509.620:686): avc: denied { map } for pid=8579 comm="modprobe" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:41:50 executing program 2: open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) r0 = socket$key(0xf, 0x3, 0x2) io_setup(0x7, &(0x7f0000a8aff8)=0x0) io_submit(r1, 0x1, &(0x7f0000b52fd8)=[&(0x7f0000587000)={0x0, 0x0, 0x0, 0x8, 0x0, r0, &(0x7f0000000080)="06", 0x1}]) 03:41:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:41:51 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) 03:41:51 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = memfd_create(&(0x7f0000000180)='?/\x00\x00\x00\x00R\x00', 0x0) fcntl$setlease(r1, 0x400, 0x0) close(r1) 03:41:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:51 executing program 1: getcwd(&(0x7f0000000100)=""/86, 0x56) 03:41:52 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") keyctl$join(0x1, &(0x7f0000000300)={'syz'}) 03:41:52 executing program 1: sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0xda00) write$cgroup_int(r1, 0x0, 0x0) r2 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) close(r0) socket$kcm(0x2, 0xa, 0x2) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x8954, &(0x7f0000000000)=0x2) 03:41:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:41:52 executing program 3: clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x3}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ptrace$cont(0x9, r0, 0x0, 0x0) 03:41:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:52 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000500)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000001c0)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}}) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20) write(r0, &(0x7f0000000140)="150000000800000000000000c86b6525000010", 0x13) 03:41:52 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) 03:41:52 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) 03:41:52 executing program 3: sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r1 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) close(r0) socket$kcm(0x2, 0xa, 0x2) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x8953, &(0x7f0000000000)=0x2) 03:41:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:41:53 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) 03:41:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:53 executing program 1: r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x62, 0x0) 03:41:53 executing program 3: syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x0) 03:41:53 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) 03:41:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1471.652985] *** Guest State *** [ 1471.666001] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1471.696467] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1471.728727] CR3 = 0x0000000000000000 03:41:54 executing program 3: r0 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x7, 0x1100082) r1 = memfd_create(&(0x7f0000000440)='\xc8\xf5\xa8ptp', 0x0) dup3(r0, r1, 0x0) dup(r0) sendfile(r0, r1, 0x0, 0x2200005) [ 1471.743198] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1471.762543] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1471.780893] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1471.797993] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:41:54 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) [ 1471.844165] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1471.887696] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1471.924119] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1471.944524] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:41:54 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) 03:41:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f1228123f319bd070") request_key(&(0x7f0000000140)='dns_resolver\x00', &(0x7f00000001c0)={'syz'}, 0x0, 0xfffffffffffffffe) [ 1471.988386] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1472.045503] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1472.084911] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1472.122043] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1472.155685] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1472.205699] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1472.234834] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1472.282386] Interruptibility = 00000000 ActivityState = 00000000 [ 1472.325068] *** Host State *** [ 1472.334308] RIP = 0xffffffff811c8cac RSP = 0xffff888053a0f8c0 [ 1472.342535] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:41:54 executing program 3: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0) [ 1472.376473] FSBase=00007fc383844700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1472.407658] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 03:41:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1472.445130] CR0=0000000080050033 CR3=0000000090319000 CR4=00000000001426f0 [ 1472.481894] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1472.493716] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1472.522566] *** Control State *** [ 1472.543573] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1472.582744] EntryControls=0000d1ff ExitControls=002fefff [ 1472.607882] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1472.641952] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:41:55 executing program 2: ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1472.667231] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1472.698556] reason=80000021 qualification=0000000000000000 [ 1472.724190] IDTVectoring: info=00000000 errcode=00000000 [ 1472.748780] TSC Offset = 0xfffffce960e2334f [ 1472.765149] TPR Threshold = 0x00 [ 1472.775994] EPT pointer = 0x00000000600e201e 03:41:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:55 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xf7c, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x0) 03:41:55 executing program 2: ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) 03:41:55 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) 03:41:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:55 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0xfffffffffffffff7}) [ 1473.599608] *** Guest State *** [ 1473.620628] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1473.652122] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:41:56 executing program 2: ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1473.688555] CR3 = 0x0000000000000000 [ 1473.713894] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1473.738374] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1473.766134] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1473.793532] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1473.813909] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:41:56 executing program 1: r0 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x7, 0x1100082) uname(&(0x7f0000000000)=""/17) r1 = memfd_create(&(0x7f0000000440)='\xc8\xf5\xa8ptp', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000040)="16", 0x1}], 0x1, 0x1081806) connect$inet(0xffffffffffffffff, 0x0, 0xffd9) dup3(r0, r1, 0x0) dup(r0) sendfile(r0, r1, 0x0, 0x2200005) [ 1473.864836] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1473.872951] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1473.958538] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1474.010510] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:41:56 executing program 3: socket$inet_tcp(0x2, 0x1, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x10000000000, 0x4000000000000000) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) syz_open_dev$sndseq(0x0, 0x0, 0x1) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x20000) ioctl$PPPIOCSNPMODE(r1, 0x4008744b, &(0x7f00000001c0)={0x0, 0x2}) [ 1474.055858] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1474.091562] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:41:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1474.123028] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1474.145204] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1474.174448] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:41:56 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1474.214976] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1474.243168] Interruptibility = 00000000 ActivityState = 00000000 [ 1474.264009] *** Host State *** [ 1474.285938] RIP = 0xffffffff811c8cac RSP = 0xffff888056daf8c0 [ 1474.310298] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1474.342563] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1474.372291] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1474.409541] CR0=0000000080050033 CR3=000000006169d000 CR4=00000000001426e0 [ 1474.444467] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1474.451155] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1474.498570] *** Control State *** [ 1474.515158] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:41:56 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) [ 1474.561249] EntryControls=0000d1ff ExitControls=002fefff [ 1474.604283] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1474.653755] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1474.667724] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1474.693953] reason=80000021 qualification=0000000000000000 [ 1474.710842] IDTVectoring: info=00000000 errcode=00000000 [ 1474.729418] TSC Offset = 0xfffffce854ab90a2 [ 1474.744845] TPR Threshold = 0x00 [ 1474.748222] EPT pointer = 0x000000009b45a01e 03:41:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:57 executing program 1: r0 = syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x0, 0x0) poll(&(0x7f00000002c0)=[{r0}], 0x1, 0x0) 03:41:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:57 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) 03:41:57 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000dddfc8)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000000060d01ff0488fffdffff57ffccad000c000042060d000000010c00020000002201f6f00061"], 0x2a}}, 0x0) 03:41:57 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x66d, 0x80000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000002c0)='./bus\x00', 0x0) 03:41:57 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1475.490606] *** Guest State *** [ 1475.507971] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1475.524094] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1475.542686] CR3 = 0x0000000000000000 [ 1475.566128] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1475.607099] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1475.651818] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:41:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1475.692333] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1475.730644] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1475.768128] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1475.776750] kauditd_printk_skb: 13 callbacks suppressed [ 1475.776762] audit: type=1400 audit(2000000518.080:700): avc: denied { create } for pid=11370 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 1475.813499] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1475.822371] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:41:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_emit_ethernet(0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x0) [ 1475.846687] audit: type=1400 audit(2000000518.100:701): avc: denied { write } for pid=11370 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 1475.894963] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1475.950053] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1475.962169] audit: type=1400 audit(2000000518.110:702): avc: denied { create } for pid=11370 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 03:41:58 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x4}}, 0x90) 03:41:58 executing program 2: openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1475.995253] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1476.003558] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1476.043315] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1476.095273] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1476.113821] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1476.121316] Interruptibility = 00000000 ActivityState = 00000000 [ 1476.228671] *** Host State *** [ 1476.280360] RIP = 0xffffffff811c8cac RSP = 0xffff8880938278c0 03:41:58 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") clone(0x13102001fef, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x25) [ 1476.344637] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1476.371588] *** Guest State *** [ 1476.382986] FSBase=00007fc383844700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1476.392529] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1476.410976] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1476.419807] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1476.437540] CR0=0000000080050033 CR3=0000000091d2c000 CR4=00000000001426f0 [ 1476.469076] CR3 = 0x0000000000000000 [ 1476.491151] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1476.500200] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1476.514224] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1476.531067] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1476.547739] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1476.563806] *** Control State *** [ 1476.567438] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1476.571298] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1476.586730] EntryControls=0000d1ff ExitControls=002fefff [ 1476.589397] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1476.606803] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1476.622424] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1476.632938] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:41:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:59 executing program 2: openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1476.668243] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1476.676431] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1476.676439] reason=80000021 qualification=0000000000000000 [ 1476.676445] IDTVectoring: info=00000000 errcode=00000000 [ 1476.676451] TSC Offset = 0xfffffce751e5844e [ 1476.676456] TPR Threshold = 0x00 [ 1476.676463] EPT pointer = 0x000000005a77301e 03:41:59 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000180)=""/11, 0xa) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000340)) r1 = dup2(r0, r0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000180)={0x0, 0x7530}, 0x10) syz_execute_func(&(0x7f00000006c0)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) ioctl$sock_inet_SIOCDELRT(r1, 0x890c, 0x0) 03:41:59 executing program 3: perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0xf7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r1 = memfd_create(0x0, 0x0) syz_open_dev$vcsa(0x0, 0x5, 0x20000) dup2(0xffffffffffffffff, r1) connect$inet(0xffffffffffffffff, 0x0, 0x0) [ 1476.846285] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1476.875189] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1476.910951] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1476.944004] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:41:59 executing program 2: openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000080)={0x0, {0x0, 0x80000000}}) [ 1476.978920] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1477.022496] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1477.068797] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1477.076463] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1477.103767] Interruptibility = 00000000 ActivityState = 00000000 [ 1477.112653] *** Host State *** [ 1477.126115] RIP = 0xffffffff811c8cac RSP = 0xffff888056daf8c0 [ 1477.132228] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1477.149252] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1477.168254] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1477.184795] CR0=0000000080050033 CR3=0000000089cac000 CR4=00000000001426e0 [ 1477.213222] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1477.225058] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1477.243758] *** Control State *** [ 1477.253244] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1477.280395] EntryControls=0000d1ff ExitControls=002fefff [ 1477.312926] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1477.328719] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1477.354719] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:41:59 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x4}}, 0x90) [ 1477.397581] reason=80000021 qualification=0000000000000000 03:41:59 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000200)={0x0, 0x235, &(0x7f00000001c0)={&(0x7f0000000000)={0x14, 0x3, 0x2, 0x1}, 0x14}}, 0x0) [ 1477.448244] IDTVectoring: info=00000000 errcode=00000000 [ 1477.469699] TSC Offset = 0xfffffce6db72cee3 [ 1477.486605] TPR Threshold = 0x00 [ 1477.498110] EPT pointer = 0x00000000a5bb101e 03:41:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:59 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, 0x0) [ 1477.844959] audit: type=1400 audit(2000000520.160:703): avc: denied { create } for pid=11908 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 03:42:00 executing program 1: r0 = socket$inet(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000140)={'lo\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', {0x2, 0x0, @remote}}) 03:42:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xf7d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x7ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0xef, 0x20000) openat$ion(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ion\x00', 0xc800, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000140), 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000100)={0x9, 0x5, 0x0, 0x0, "f95158b9d290b5705b9b8f39d021e6caf4e8a29b2b07a31e706b5219d8b16450"}) mkdir(&(0x7f0000000340)='./file0\x00', 0x400020) syz_init_net_socket$bt_l2cap(0x1f, 0x20000000000, 0x3) syz_open_dev$sndtimer(&(0x7f0000000180)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, 0x0) lsetxattr$security_ima(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='security.ima\x00', &(0x7f0000000300)=@sha1={0x1, "e47781061b1f3931986d28a1d3a5841195c9ab50"}, 0x15, 0x2) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'sit0\x00'}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) mkdirat$cgroup(r1, 0x0, 0x1ff) fchdir(r1) umount2(&(0x7f0000000280)='./file0\x00', 0x0) [ 1477.981203] audit: type=1400 audit(2000000520.170:704): avc: denied { write } for pid=11908 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 1478.056172] audit: type=1400 audit(2000000520.180:705): avc: denied { create } for pid=11908 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 1478.174514] *** Guest State *** [ 1478.190392] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1478.229751] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1478.269894] CR3 = 0x0000000000000000 03:42:00 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, 0x0) [ 1478.297351] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1478.324255] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1478.351719] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1478.373932] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:42:00 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f00000000c0)) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xf7c, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) fallocate(r1, 0x1000001d, 0x10000000000, 0x4000000000000000) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r3 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r4 = syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x1) r5 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x20000) ioctl$PPPIOCSNPMODE(r5, 0x4008744b, &(0x7f00000001c0)={0x82ff, 0x2}) dup2(r4, r3) connect$inet(0xffffffffffffffff, 0x0, 0x0) rt_tgsigqueueinfo(0x0, 0x0, 0x1b, &(0x7f0000000240)={0x27, 0x7ff}) 03:42:00 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000000200000000000000000000009500000000000000"], 0x0, 0x1, 0xc3, &(0x7f0000000300)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70) [ 1478.402863] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:00 executing program 3: syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) [ 1478.471018] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1478.517598] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1478.553988] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1478.592930] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1478.632795] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1478.674342] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1478.683883] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1478.708717] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1478.741187] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:42:01 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, 0x0) [ 1478.810962] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1478.847465] Interruptibility = 00000000 ActivityState = 00000000 03:42:01 executing program 1: [ 1478.880260] *** Host State *** [ 1478.891896] RIP = 0xffffffff811c8cac RSP = 0xffff888056daf8c0 [ 1478.922526] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1478.941742] FSBase=00007fc383844700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1478.980065] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1479.014664] CR0=0000000080050033 CR3=0000000089cac000 CR4=00000000001426f0 03:42:01 executing program 3: [ 1479.068035] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1479.104184] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1479.136107] *** Control State *** [ 1479.159546] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1479.191797] EntryControls=0000d1ff ExitControls=002fefff [ 1479.225313] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1479.263300] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1479.305757] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1479.336889] *** Guest State *** [ 1479.343775] reason=80000021 qualification=0000000000000000 [ 1479.348185] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1479.363732] IDTVectoring: info=00000000 errcode=00000000 [ 1479.377490] TSC Offset = 0xfffffce5e29bcae3 [ 1479.394257] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1479.406924] TPR Threshold = 0x00 [ 1479.420838] EPT pointer = 0x0000000092b4001e [ 1479.427903] CR3 = 0x0000000000000000 [ 1479.446151] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1479.470347] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:42:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:01 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x0, @multicast1}, {0x0, @dev}, 0x0, {0x2, 0x0, @empty}, 'ip6erspan0\x00'}) 03:42:01 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)) 03:42:01 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000040)) [ 1479.513770] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1479.551334] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1479.593795] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1479.633954] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fdf000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1479.645262] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1479.682667] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1479.713820] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1479.751201] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1479.803747] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1479.851612] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1479.869420] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:42:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup2(r0, r1) [ 1479.896240] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1479.917702] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1479.959056] Interruptibility = 00000000 ActivityState = 00000000 [ 1479.978145] *** Host State *** [ 1479.992282] RIP = 0xffffffff811c8cac RSP = 0xffff88805b2f78c0 03:42:02 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)) [ 1480.017120] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1480.035290] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1480.054728] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1480.098136] CR0=0000000080050033 CR3=00000000a92f2000 CR4=00000000001426e0 [ 1480.114700] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1480.137520] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1480.161838] *** Control State *** 03:42:02 executing program 5: [ 1480.185918] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1480.217918] EntryControls=0000d1ff ExitControls=002fefff [ 1480.235880] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1480.256668] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1480.280520] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1480.303367] reason=80000021 qualification=0000000000000000 [ 1480.337384] IDTVectoring: info=00000000 errcode=00000000 [ 1480.359876] TSC Offset = 0xfffffce54125e5ff [ 1480.381530] EPT pointer = 0x000000009471b01e 03:42:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:02 executing program 3: 03:42:02 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000080)) 03:42:03 executing program 5: [ 1481.011717] *** Guest State *** 03:42:03 executing program 1: [ 1481.032037] *** Guest State *** [ 1481.039373] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1481.048133] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:03 executing program 3: 03:42:03 executing program 2: [ 1481.078933] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1481.082779] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1481.129467] CR3 = 0x0000000000000000 [ 1481.142486] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1481.162353] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1481.163994] CR3 = 0x0000000000000000 03:42:03 executing program 5: [ 1481.186903] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1481.199301] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1481.207481] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1481.239009] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1481.247014] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1481.258939] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1481.279994] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.289306] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.319206] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.328545] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.342090] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.384047] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.404935] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.413387] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:03 executing program 1: [ 1481.435032] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.445019] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1481.464276] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1481.475032] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1481.513968] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1481.514127] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:42:03 executing program 2: [ 1481.572244] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1481.575560] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:03 executing program 3: [ 1481.613938] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1481.643799] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1481.653857] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1481.660675] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1481.669214] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1481.690103] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1481.701183] Interruptibility = 00000000 ActivityState = 00000000 [ 1481.703971] Interruptibility = 00000000 ActivityState = 00000000 [ 1481.753832] *** Host State *** [ 1481.756465] *** Host State *** [ 1481.760324] RIP = 0xffffffff811c8cac RSP = 0xffff88804f6278c0 [ 1481.762699] RIP = 0xffffffff811c8cac RSP = 0xffff888085cef8c0 [ 1481.783753] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1481.798402] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1481.803259] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1481.821054] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1481.828227] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1481.852448] CR0=0000000080050033 CR3=00000000a3d6c000 CR4=00000000001426f0 [ 1481.854116] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1481.880005] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1481.890412] CR0=0000000080050033 CR3=0000000099973000 CR4=00000000001426e0 [ 1481.906231] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1481.926784] *** Control State *** [ 1481.929340] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1481.937086] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1481.937097] EntryControls=0000d1ff ExitControls=002fefff [ 1481.965425] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1481.984910] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1482.001734] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1482.009175] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1482.019749] reason=80000021 qualification=0000000000000000 [ 1482.029068] *** Control State *** [ 1482.032626] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1482.049021] IDTVectoring: info=00000000 errcode=00000000 [ 1482.054940] EntryControls=0000d1ff ExitControls=002fefff [ 1482.060485] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1482.072914] TSC Offset = 0xfffffce45b91c825 [ 1482.093727] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1482.098929] EPT pointer = 0x00000000a7c9701e [ 1482.119604] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:42:04 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 1482.143816] reason=80000021 qualification=0000000000000000 [ 1482.165664] IDTVectoring: info=00000000 errcode=00000000 [ 1482.219027] TSC Offset = 0xfffffce45b1fdc27 [ 1482.223457] TPR Threshold = 0x00 [ 1482.239193] EPT pointer = 0x0000000089bf401e 03:42:04 executing program 5: 03:42:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:04 executing program 2: 03:42:04 executing program 1: 03:42:04 executing program 3: 03:42:04 executing program 2: 03:42:04 executing program 5: 03:42:04 executing program 1: 03:42:04 executing program 3: 03:42:05 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 03:42:05 executing program 5: 03:42:05 executing program 1: 03:42:05 executing program 2: 03:42:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:05 executing program 3: 03:42:05 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 03:42:05 executing program 5: 03:42:05 executing program 1: 03:42:05 executing program 3: 03:42:05 executing program 2: 03:42:06 executing program 5: 03:42:06 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:06 executing program 1: 03:42:06 executing program 2: 03:42:06 executing program 3: 03:42:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:06 executing program 5: 03:42:06 executing program 2: 03:42:06 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:06 executing program 3: 03:42:06 executing program 1: 03:42:07 executing program 2: 03:42:07 executing program 5: 03:42:07 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:07 executing program 3: 03:42:07 executing program 1: 03:42:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:07 executing program 2: 03:42:07 executing program 3: 03:42:07 executing program 5: 03:42:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:07 executing program 1: 03:42:08 executing program 2: 03:42:08 executing program 3: 03:42:08 executing program 5: 03:42:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:08 executing program 1: 03:42:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:08 executing program 5: 03:42:08 executing program 2: 03:42:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:08 executing program 3: 03:42:08 executing program 1: 03:42:08 executing program 5: [ 1486.598210] *** Guest State *** [ 1486.613395] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:08 executing program 2: [ 1486.644005] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1486.680549] CR3 = 0x0000000000000000 [ 1486.690551] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1486.708169] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1486.740610] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1486.766338] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:42:09 executing program 3: [ 1486.797474] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1486.830525] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:09 executing program 1: [ 1486.883018] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1486.913795] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1486.953939] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:09 executing program 5: [ 1487.010740] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1487.072428] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1487.142183] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1487.186506] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1487.216939] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1487.223434] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1487.268133] Interruptibility = 00000000 ActivityState = 00000000 [ 1487.313697] *** Host State *** [ 1487.318818] RIP = 0xffffffff811c8cac RSP = 0xffff88809195f8c0 [ 1487.359759] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1487.379687] FSBase=00007fc383844700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1487.411611] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1487.430403] CR0=0000000080050033 CR3=0000000092253000 CR4=00000000001426f0 [ 1487.448213] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1487.466378] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1487.476125] *** Control State *** [ 1487.479602] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1487.506563] EntryControls=0000d1ff ExitControls=002fefff [ 1487.512101] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1487.522669] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1487.542440] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1487.551727] reason=80000021 qualification=0000000000000000 03:42:09 executing program 2: [ 1487.566659] IDTVectoring: info=00000000 errcode=00000000 [ 1487.582290] TSC Offset = 0xfffffce15fc3230b [ 1487.592433] TPR Threshold = 0x00 [ 1487.602542] EPT pointer = 0x000000009111901e 03:42:10 executing program 5: 03:42:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:10 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:10 executing program 1: 03:42:10 executing program 3: 03:42:10 executing program 2: [ 1488.182658] *** Guest State *** [ 1488.186316] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1488.196552] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:42:10 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:10 executing program 1: clock_gettime(0x4, &(0x7f00000000c0)) 03:42:10 executing program 5: socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) chdir(&(0x7f0000000180)='./file0\x00') open(&(0x7f0000000280)='./bus\x00', 0x141042, 0x0) statfs(&(0x7f0000000040)='./bus\x00', &(0x7f0000002480)=""/4096) [ 1488.228095] CR3 = 0x0000000000000000 [ 1488.273018] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1488.293212] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1488.303909] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:42:10 executing program 2: 03:42:10 executing program 1: [ 1488.344254] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1488.373118] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:10 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1488.531978] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:10 executing program 5: [ 1488.586662] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1488.624158] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1488.654612] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1488.679848] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1488.714156] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1488.734347] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1488.757728] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1488.780172] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1488.817509] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1488.844072] Interruptibility = 00000000 ActivityState = 00000000 [ 1488.874019] *** Host State *** [ 1488.890482] RIP = 0xffffffff811c8cac RSP = 0xffff88807e6e78c0 [ 1488.935695] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1488.966586] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1489.006471] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1489.012384] CR0=0000000080050033 CR3=0000000092a7e000 CR4=00000000001426e0 [ 1489.012398] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1489.012409] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1489.103817] *** Control State *** [ 1489.112484] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1489.145520] EntryControls=0000d1ff ExitControls=002fefff [ 1489.161167] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1489.181400] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1489.193939] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1489.201566] reason=80000021 qualification=0000000000000000 [ 1489.224894] IDTVectoring: info=00000000 errcode=00000000 [ 1489.230459] TSC Offset = 0xfffffce080f8ce37 03:42:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:11 executing program 2: prlimit64(0x0, 0x8, &(0x7f0000000040), 0x0) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x40, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r1, 0x2, 0x70bd2d, 0x25dfdbfc, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x0, 0xff, 0xf54, 0x100000001}}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x20008040}, 0x800) shmget(0x2, 0x1000, 0x78000000, &(0x7f0000fff000/0x1000)=nil) shmget$private(0x0, 0x3000, 0x4, &(0x7f0000ffd000/0x3000)=nil) shmctl$SHM_LOCK(0x0, 0xb) [ 1489.253770] TPR Threshold = 0x00 [ 1489.257247] EPT pointer = 0x0000000095d5801e 03:42:11 executing program 1: 03:42:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:11 executing program 3: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x146}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) r1 = gettid() process_vm_writev(r1, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x3c, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0) close(r0) 03:42:11 executing program 5: r0 = syz_open_dev$sndtimer(&(0x7f0000000200)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f0000000000)=0x2) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000280)={0xfffffffffffffffc, 0x200000022d}) 03:42:11 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) [ 1489.483398] audit: type=1400 audit(2000000531.790:706): avc: denied { create } for pid=12911 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 03:42:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1489.602759] audit: type=1400 audit(2000000531.860:707): avc: denied { write } for pid=12911 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 03:42:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1489.729130] audit: type=1400 audit(2000000531.860:708): avc: denied { read } for pid=12911 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 03:42:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1489.857994] audit: type=1400 audit(2000000531.870:709): avc: denied { create } for pid=12911 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 1489.983878] audit: type=1400 audit(2000000531.870:710): avc: denied { write } for pid=12911 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 1490.097678] audit: type=1400 audit(2000000531.880:711): avc: denied { read } for pid=12911 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 03:42:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1490.441747] *** Guest State *** [ 1490.456584] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1490.463347] *** Guest State *** [ 1490.480492] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:12 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) [ 1490.528787] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1490.530213] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1490.576046] CR3 = 0x0000000000000000 [ 1490.588024] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1490.610921] CR3 = 0x0000000000000000 [ 1490.616054] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1490.632848] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1490.644499] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1490.666179] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1490.672950] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:42:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1490.701715] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.717552] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1490.729306] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.743968] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1490.755753] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.765296] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.780595] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.791270] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.807894] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.817558] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.840941] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.852678] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1490.874733] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1490.907815] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1490.936489] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1490.955422] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1490.971753] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1490.983469] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1490.997391] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1491.009029] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1491.033070] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1491.043721] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1491.066628] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1491.076661] Interruptibility = 00000000 ActivityState = 00000000 [ 1491.084757] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1491.092211] Interruptibility = 00000000 ActivityState = 00000000 [ 1491.096623] *** Host State *** [ 1491.106334] RIP = 0xffffffff811c8cac RSP = 0xffff8880a93ef8c0 [ 1491.126577] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1491.147251] FSBase=00007f68f351d700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 03:42:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1491.173658] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1491.189464] *** Host State *** [ 1491.192679] RIP = 0xffffffff811c8cac RSP = 0xffff8880539a78c0 [ 1491.193399] CR0=0000000080050033 CR3=0000000099232000 CR4=00000000001426e0 [ 1491.248454] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1491.250594] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1491.269182] FSBase=00007f5310346700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1491.279519] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1491.292954] *** Guest State *** [ 1491.301944] *** Control State *** [ 1491.307568] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1491.323644] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1491.324838] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1491.349901] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1491.372595] EntryControls=0000d1ff ExitControls=002fefff [ 1491.389288] CR3 = 0x0000000000000000 [ 1491.398481] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1491.412336] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1491.430887] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1491.451857] CR0=0000000080050033 CR3=00000000566f2000 CR4=00000000001426f0 [ 1491.461356] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1491.471278] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1491.490552] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1491.501451] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1491.512841] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1491.528550] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1491.537791] reason=80000021 qualification=0000000000000000 [ 1491.544272] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1491.560554] *** Control State *** [ 1491.568533] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1491.589381] IDTVectoring: info=00000000 errcode=00000000 [ 1491.606296] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1491.610109] EntryControls=0000d1ff ExitControls=002fefff [ 1491.626394] TSC Offset = 0xfffffcdf5d38d021 [ 1491.640749] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1491.661972] TPR Threshold = 0x00 [ 1491.668094] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1491.674947] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1491.693179] EPT pointer = 0x00000000a5f3101e [ 1491.703938] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:42:14 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, &(0x7f0000003000), 0xc0e) write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90) [ 1491.710516] reason=80000021 qualification=0000000000000000 [ 1491.721059] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:14 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1491.765045] IDTVectoring: info=00000000 errcode=00000000 [ 1491.773281] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1491.783386] TSC Offset = 0xfffffcdf5594b487 [ 1491.801606] EPT pointer = 0x000000007de6c01e [ 1491.848605] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) r4 = socket$inet(0x10, 0x40002, 0x4) sendmsg(r4, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000200)}, 0x800) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1491.894441] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1491.952314] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1492.005963] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1492.034956] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1492.057222] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1492.096538] Interruptibility = 00000000 ActivityState = 00000000 [ 1492.119361] *** Host State *** [ 1492.135062] RIP = 0xffffffff811c8cac RSP = 0xffff88804f6278c0 [ 1492.166188] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1492.192944] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 03:42:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1492.213850] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1492.220003] CR0=0000000080050033 CR3=000000007d557000 CR4=00000000001426f0 [ 1492.256439] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1492.278594] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1492.306803] *** Control State *** [ 1492.324933] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1492.355920] EntryControls=0000d1ff ExitControls=002fefff [ 1492.376107] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:42:14 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") getpgrp(0x0) prctl$PR_SET_ENDIAN(0x14, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0x0) clone(0x4010003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x400000001e) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="052fc73c7f000000000000000000ef3bc477800225cdb6b960b17495908c8966e812506bcff6a238380cd00b0900000007000000004812f9fa"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x0, 0x0) [ 1492.401738] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1492.444635] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1492.454603] reason=80000021 qualification=0000000000000000 [ 1492.470000] IDTVectoring: info=00000000 errcode=00000000 [ 1492.491939] TSC Offset = 0xfffffcded92165f5 [ 1492.507035] EPT pointer = 0x000000009093401e 03:42:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1492.635892] *** Guest State *** [ 1492.653788] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1492.705002] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1492.738265] CR3 = 0x0000000000000000 [ 1492.768625] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1492.793252] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1492.808550] *** Guest State *** 03:42:15 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x0) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="31d96da88b0cce5062747ce237ca24f05b05df66b34814c1cdb2db3642a7c880224c03d6cffd67b36c7f1a51ae9aeaa3892b040ba2105d77d4e4579d745ad601f19c26d1260bcd5435ae4ad35d123f7e809a7b0576431fde9f78c3260a3837b52ef6437c404147add96892a9d3a67dcf93c198c3b7727cd266c20c5e584c28ae0843064b8f7f199db8641f71a407775e0090bbedee63a4640e1f012e5ca95bd14b5aa0da642b552ae4aa2b869458dec283c16f25c67068fc528a793f75c81acac8ee6596d79c449ade5eeee332c460ebc0d46c076e871b6426d521c571a95d0fa800de30a110e719ffde8f103773daaaec8c313aa3be0bdaa6e7e796df3975a8e37aee6d10579f8afe6552f187c262b32eced8b5f01e40ab8904400f00000000000000000000000000000058b4721949da012002cb7f4ac8fe195c1388861be8cd45020083b0089b23f86603321faf83e794bea1ece8051e9996306347bd562aa2437fa6bdb57086302926b8af069b8d331ebf5c0e1a7f163e6d711af330efdfae413fafef9acf1d53e6aaf4f2dec9ddfb4ca321583e35a14a92e82bdbea3c127a033b32059fbadce23a3e87957f8238886aa9380000000018888c4c20ba104342e8c9d85a9dcf06abbb7a2905d37839bff6f8641ebce172c60a8d368cd4a94af484749dc4ccdd380bbf5d501302d50e79d3536eab5a12abdd347dac985c4349ec712661df947315514e45a515417e6b00000000000000002bdacdb2631c83a90dbca3aa7e5936f8aa413a75c7780309e1c178bce65ed205154ab4f55241cd2b6e83b29fc6cefe050d7d562360718e25bbdb2d34264d6a741cbbed50422f5d") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1492.821367] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1492.838944] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1492.860197] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1492.875622] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1492.889484] CR3 = 0x0000000000000000 [ 1492.904987] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1492.919521] *** Guest State *** [ 1492.922908] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1492.937985] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1492.952749] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1492.963023] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1492.968246] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1492.978320] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1492.994947] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1493.010088] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.026761] CR3 = 0x0000000000000000 [ 1493.033506] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.045913] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1493.053373] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.060849] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.070938] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1493.097144] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1493.106939] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.116334] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.132753] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1493.144793] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.173758] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.184933] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.197956] *** Guest State *** [ 1493.201554] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.214530] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1493.228394] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.240257] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1493.250643] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.254268] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1493.274557] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.291955] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.304998] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1493.314564] CR3 = 0x0000000000000000 03:42:15 executing program 3: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1493.324359] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1493.336364] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1493.346022] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.354348] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1493.375790] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1493.384795] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.392782] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1493.401525] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1493.410611] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1493.419387] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.438286] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1493.452173] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1493.452307] Interruptibility = 00000000 ActivityState = 00000000 [ 1493.459750] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.479551] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.493733] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1493.504820] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.519212] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1493.533701] Interruptibility = 00000000 ActivityState = 00000000 [ 1493.539939] *** Host State *** [ 1493.539951] RIP = 0xffffffff811c8cac RSP = 0xffff8880a93ef8c0 [ 1493.539971] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1493.539981] FSBase=00007f68f351d700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1493.539993] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1493.550012] *** Host State *** [ 1493.556910] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.583781] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.591778] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1493.613807] RIP = 0xffffffff811c8cac RSP = 0xffff8880828378c0 [ 1493.638382] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1493.640028] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.653820] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1493.658092] CR0=0000000080050033 CR3=000000009346a000 CR4=00000000001426e0 [ 1493.664776] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1493.684052] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1493.688681] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1493.713974] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1493.724834] Interruptibility = 00000000 ActivityState = 00000000 [ 1493.731081] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.739371] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1493.740474] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1493.766391] *** Control State *** [ 1493.770019] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1493.773677] CR0=0000000080050033 CR3=0000000095b0d000 CR4=00000000001426e0 [ 1493.783805] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1493.802479] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1493.814195] EntryControls=0000d1ff ExitControls=002fefff [ 1493.818353] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1493.826366] *** Host State *** [ 1493.826378] RIP = 0xffffffff811c8cac RSP = 0xffff88805d3d78c0 [ 1493.826396] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1493.826406] FSBase=00007f5310346700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1493.826418] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1493.863913] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1493.872315] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1493.878080] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1493.893892] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1493.911233] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1493.913741] *** Control State *** [ 1493.945043] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1493.953003] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1493.953977] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1493.969248] EntryControls=0000d1ff ExitControls=002fefff [ 1493.972141] CR0=0000000080050033 CR3=00000000a5736000 CR4=00000000001426e0 [ 1493.986930] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1493.995894] Interruptibility = 00000000 ActivityState = 00000000 [ 1493.998344] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1494.012868] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1494.020315] *** Host State *** [ 1494.033245] RIP = 0xffffffff811c8cac RSP = 0xffff88805ca2f8c0 [ 1494.039433] *** Control State *** [ 1494.047044] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1494.053946] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1494.060610] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1494.063821] reason=80000021 qualification=0000000000000000 [ 1494.073703] EntryControls=0000d1ff ExitControls=002fefff [ 1494.079172] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1494.093755] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1494.098757] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1494.102951] reason=80000021 qualification=0000000000000000 [ 1494.127216] IDTVectoring: info=00000000 errcode=00000000 [ 1494.133365] IDTVectoring: info=00000000 errcode=00000000 [ 1494.141682] TSC Offset = 0xfffffcde39f4843e [ 1494.150432] TSC Offset = 0xfffffcde0a6168c7 [ 1494.158931] TPR Threshold = 0x00 [ 1494.160504] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1494.162632] EPT pointer = 0x000000007e98d01e [ 1494.174740] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1494.181321] TPR Threshold = 0x00 [ 1494.187370] CR0=0000000080050033 CR3=0000000091867000 CR4=00000000001426e0 [ 1494.197544] EPT pointer = 0x00000000a173201e [ 1494.202551] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 03:42:16 executing program 3: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="31d96da88b0cce5062747ce237ca24f05b05df66b34814c1cdb2db3642a7c880224c03d6cffd67b36c7f1a51ae9aeaa3892b040ba2105d77d4e4579d745ad601f19c26d1260bcd5435ae4ad35d123f7e809a7b0576431fde9f78c3260a3837b52ef6437c404147add96892a9d3a67dcf93c198c3b7727cd266c20c5e584c28ae0843064b8f7f199db8641f71a407775e0090bbedee63a4640e1f012e5ca95bd14b5aa0da642b552ae4aa2b869458dec283c16f25c67068fc528a793f75c81acac8ee6596d79c449ade5eeee332c460ebc0d46c076e871b6426d521c571a95d0fa800de30a110e719ffde8f103773daaaec8c313aa3be0bdaa6e7e796df3975a8e37aee6d10579f8afe6552f187c262b32eced8b5f01e40ab8904400f00000000000000000000000000000058b4721949da012002cb7f4ac8fe195c1388861be8cd45020083b0089b23f86603321faf83e794bea1ece8051e9996306347bd562aa2437fa6bdb57086302926b8af069b8d331ebf5c0e1a7f163e6d711af330efdfae413fafef9acf1d53e6aaf4f2dec9ddfb4ca321583e35a14a92e82bdbea3c127a033b32059fbadce23a3e87957f8238886aa9380000000018888c4c20ba104342e8c9d85a9dcf06abbb7a2905d37839bff6f8641ebce172c60a8d368cd4a94af484749dc4ccdd380bbf5d501302d50e79d3536eab5a12abdd347dac985c4349ec712661df947315514e45a515417e6b00000000000000002bdacdb2631c83a90dbca3aa7e5936f8aa413a75c7780309e1c178bce65ed205154ab4f55241cd2b6e83b29fc6cefe050d7d562360718e25bbdb2d34264d6a741cbbed50422f5d") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1494.233741] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1494.243027] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1494.249632] reason=80000021 qualification=0000000000000000 [ 1494.270254] *** Control State *** [ 1494.276429] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:42:16 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x0) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:42:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1494.284623] IDTVectoring: info=00000000 errcode=00000000 03:42:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1494.313732] EntryControls=0000d1ff ExitControls=002fefff [ 1494.314690] TSC Offset = 0xfffffcde036174c7 [ 1494.334067] EPT pointer = 0x00000000a0b3501e [ 1494.350065] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1494.383725] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1494.408308] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:42:16 executing program 2: r0 = open(0x0, 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1494.433703] reason=80000021 qualification=0000000000000000 [ 1494.479774] IDTVectoring: info=00000000 errcode=00000000 [ 1494.485501] TSC Offset = 0xfffffcddd8905b86 [ 1494.519360] TPR Threshold = 0x00 [ 1494.534013] EPT pointer = 0x000000009e88e01e 03:42:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:17 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x0) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1495.108248] *** Guest State *** [ 1495.124774] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1495.194279] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1495.243846] CR3 = 0x0000000000000000 [ 1495.264045] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1495.293809] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1495.324065] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1495.363876] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1495.423913] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1495.450755] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1495.468091] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:17 executing program 2: r0 = open(0x0, 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1495.505188] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1495.539395] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1495.633886] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1495.674681] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1495.739791] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1495.773739] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1495.809340] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1495.833754] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1495.867974] Interruptibility = 00000000 ActivityState = 00000000 [ 1495.897106] *** Host State *** [ 1495.909529] RIP = 0xffffffff811c8cac RSP = 0xffff88804f6278c0 [ 1495.946926] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1495.976236] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1496.011233] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1496.033851] CR0=0000000080050033 CR3=00000000560ba000 CR4=00000000001426f0 03:42:18 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x0) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1496.064681] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1496.072306] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1496.103757] *** Control State *** [ 1496.107377] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:42:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1496.156995] EntryControls=0000d1ff ExitControls=002fefff [ 1496.209247] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1496.253758] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1496.264766] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1496.271654] reason=80000021 qualification=0000000000000000 [ 1496.323665] IDTVectoring: info=00000000 errcode=00000000 [ 1496.349070] TSC Offset = 0xfffffcdcddc06a46 [ 1496.374096] TPR Threshold = 0x00 [ 1496.377493] EPT pointer = 0x00000000a993101e 03:42:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:18 executing program 2: r0 = open(0x0, 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1496.714968] *** Guest State *** [ 1496.723705] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1496.769959] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1496.813724] CR3 = 0x0000000000000000 [ 1496.817529] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1496.847787] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1496.873338] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1496.890322] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1496.943714] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1496.989699] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1497.014769] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1497.044141] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1497.084211] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:19 executing program 1: r0 = open(0x0, 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="31d96da88b0cce5062747ce237ca24f05b05df66b34814c1cdb2db3642a7c880224c03d6cffd67b36c7f1a51ae9aeaa3892b040ba2105d77d4e4579d745ad601f19c26d1260bcd5435ae4ad35d123f7e809a7b0576431fde9f78c3260a3837b52ef6437c404147add96892a9d3a67dcf93c198c3b7727cd266c20c5e584c28ae0843064b8f7f199db8641f71a407775e0090bbedee63a4640e1f012e5ca95bd14b5aa0da642b552ae4aa2b869458dec283c16f25c67068fc528a793f75c81acac8ee6596d79c449ade5eeee332c460ebc0d46c076e871b6426d521c571a95d0fa800de30a110e719ffde8f103773daaaec8c313aa3be0bdaa6e7e796df3975a8e37aee6d10579f8afe6552f187c262b32eced8b5f01e40ab8904400f00000000000000000000000000000058b4721949da012002cb7f4ac8fe195c1388861be8cd45020083b0089b23f86603321faf83e794bea1ece8051e9996306347bd562aa2437fa6bdb57086302926b8af069b8d331ebf5c0e1a7f163e6d711af330efdfae413fafef9acf1d53e6aaf4f2dec9ddfb4ca321583e35a14a92e82bdbea3c127a033b32059fbadce23a3e87957f8238886aa9380000000018888c4c20ba104342e8c9d85a9dcf06abbb7a2905d37839bff6f8641ebce172c60a8d368cd4a94af484749dc4ccdd380bbf5d501302d50e79d3536eab5a12abdd347dac985c4349ec712661df947315514e45a515417e6b00000000000000002bdacdb2631c83a90dbca3aa7e5936f8aa413a75c7780309e1c178bce65ed205154ab4f55241cd2b6e83b29fc6cefe050d7d562360718e25bbdb2d34264d6a741cbbed50422f5d") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1497.127135] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1497.152566] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1497.199897] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1497.240441] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1497.303767] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1497.343180] *** Guest State *** 03:42:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1497.350542] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1497.385002] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1497.401091] Interruptibility = 00000000 ActivityState = 00000000 [ 1497.423749] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1497.432809] *** Host State *** [ 1497.454013] RIP = 0xffffffff811c8cac RSP = 0xffff88804f6278c0 03:42:19 executing program 2: ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r1 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r2 = fcntl$getown(r1, 0x9) ptrace$pokeuser(0x6, r2, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r3 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r1, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r3, 0xf, &(0x7f0000000180)={0x2, r2}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0) shutdown(r0, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1497.483858] CR3 = 0x0000000000000000 [ 1497.494763] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1497.501901] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1497.548964] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1497.556126] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1497.557101] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1497.598066] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1497.615535] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1497.621381] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1497.645095] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1497.658667] CR0=0000000080050033 CR3=00000000513e9000 CR4=00000000001426e0 [ 1497.670415] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1497.700012] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1497.708518] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1497.728246] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1497.746405] *** Control State *** [ 1497.764619] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1497.783935] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1497.799377] EntryControls=0000d1ff ExitControls=002fefff [ 1497.817759] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1497.837680] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1497.857080] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1497.873776] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1497.888326] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1497.918527] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1497.930455] reason=80000021 qualification=0000000000000000 [ 1497.958371] IDTVectoring: info=00000000 errcode=00000000 [ 1497.968567] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1497.992996] TSC Offset = 0xfffffcdbf105512d [ 1498.003736] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1498.010150] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1498.013748] TPR Threshold = 0x00 [ 1498.044975] EPT pointer = 0x0000000092bb401e [ 1498.060571] *** Guest State *** [ 1498.072125] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1498.103781] Interruptibility = 00000000 ActivityState = 00000000 [ 1498.132735] *** Host State *** [ 1498.152464] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1498.165321] RIP = 0xffffffff811c8cac RSP = 0xffff8880513ff8c0 03:42:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1498.202561] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1498.214054] CR3 = 0x0000000000000000 [ 1498.228215] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1498.251125] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1498.273492] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1498.290587] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1498.314913] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1498.321635] CR0=0000000080050033 CR3=0000000091ac3000 CR4=00000000001426e0 [ 1498.321649] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1498.321658] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1498.321662] *** Control State *** [ 1498.321670] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1498.321676] EntryControls=0000d1ff ExitControls=002fefff [ 1498.321698] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1498.321706] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1498.321721] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1498.395015] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1498.433886] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1498.470858] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:20 executing program 2: ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r1 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r2 = fcntl$getown(r1, 0x9) ptrace$pokeuser(0x6, r2, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r3 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r1, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r3, 0xf, &(0x7f0000000180)={0x2, r2}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0) shutdown(r0, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1498.523517] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1498.547092] reason=80000021 qualification=0000000000000000 [ 1498.553539] IDTVectoring: info=00000000 errcode=00000000 03:42:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1498.571495] TSC Offset = 0xfffffcdbab1012c0 [ 1498.591628] TPR Threshold = 0x00 [ 1498.602909] EPT pointer = 0x0000000061da901e [ 1498.615099] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1498.678641] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:21 executing program 1: r0 = open(0x0, 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1498.743704] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1498.809110] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1498.864198] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1498.893950] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1498.919521] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1498.951300] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1498.985143] *** Guest State *** [ 1498.988574] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1498.993183] Interruptibility = 00000000 ActivityState = 00000000 [ 1499.018803] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1499.032241] *** Host State *** [ 1499.054060] CR3 = 0x0000000000000000 [ 1499.058577] RIP = 0xffffffff811c8cac RSP = 0xffff8880590878c0 [ 1499.068125] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1499.092053] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1499.094574] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1499.141642] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1499.143031] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1499.168123] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1499.191742] *** Guest State *** [ 1499.195359] CR0=0000000080050033 CR3=000000009b43c000 CR4=00000000001426e0 [ 1499.200519] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1499.207318] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1499.220615] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.242945] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1499.253415] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1499.262645] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1499.274328] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.287222] *** Control State *** [ 1499.292059] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1499.302549] CR3 = 0x0000000000000000 [ 1499.310558] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1499.319179] EntryControls=0000d1ff ExitControls=002fefff [ 1499.328708] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1499.344460] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1499.357911] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.368379] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1499.381351] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1499.397062] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1499.410880] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1499.427654] reason=80000021 qualification=0000000000000000 [ 1499.436992] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.448183] IDTVectoring: info=00000000 errcode=00000000 [ 1499.456238] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.468066] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.480101] TSC Offset = 0xfffffcdb4369e7ee [ 1499.487133] TPR Threshold = 0x00 [ 1499.492229] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.501818] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.510178] EPT pointer = 0x00000000a86c401e [ 1499.517042] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.529566] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:21 executing program 2: ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r1 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r2 = fcntl$getown(r1, 0x9) ptrace$pokeuser(0x6, r2, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r3 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r1, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r3, 0xf, &(0x7f0000000180)={0x2, r2}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0) shutdown(r0, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1499.543894] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1499.567469] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1499.581470] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:22 executing program 1: r0 = open(0x0, 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="31d96da88b0cce5062747ce237ca24f05b05df66b34814c1cdb2db3642a7c880224c03d6cffd67b36c7f1a51ae9aeaa3892b040ba2105d77d4e4579d745ad601f19c26d1260bcd5435ae4ad35d123f7e809a7b0576431fde9f78c3260a3837b52ef6437c404147add96892a9d3a67dcf93c198c3b7727cd266c20c5e584c28ae0843064b8f7f199db8641f71a407775e0090bbedee63a4640e1f012e5ca95bd14b5aa0da642b552ae4aa2b869458dec283c16f25c67068fc528a793f75c81acac8ee6596d79c449ade5eeee332c460ebc0d46c076e871b6426d521c571a95d0fa800de30a110e719ffde8f103773daaaec8c313aa3be0bdaa6e7e796df3975a8e37aee6d10579f8afe6552f187c262b32eced8b5f01e40ab8904400f00000000000000000000000000000058b4721949da012002cb7f4ac8fe195c1388861be8cd45020083b0089b23f86603321faf83e794bea1ece8051e9996306347bd562aa2437fa6bdb57086302926b8af069b8d331ebf5c0e1a7f163e6d711af330efdfae413fafef9acf1d53e6aaf4f2dec9ddfb4ca321583e35a14a92e82bdbea3c127a033b32059fbadce23a3e87957f8238886aa9380000000018888c4c20ba104342e8c9d85a9dcf06abbb7a2905d37839bff6f8641ebce172c60a8d368cd4a94af484749dc4ccdd380bbf5d501302d50e79d3536eab5a12abdd347dac985c4349ec712661df947315514e45a515417e6b00000000000000002bdacdb2631c83a90dbca3aa7e5936f8aa413a75c7780309e1c178bce65ed205154ab4f55241cd2b6e83b29fc6cefe050d7d562360718e25bbdb2d34264d6a741cbbed50422f5d") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1499.644226] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1499.654952] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1499.662947] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1499.707141] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1499.737008] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1499.783900] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1499.790448] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1499.814608] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1499.827272] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1499.853765] Interruptibility = 00000000 ActivityState = 00000000 [ 1499.864775] Interruptibility = 00000000 ActivityState = 00000000 [ 1499.874211] *** Host State *** [ 1499.889752] *** Host State *** [ 1499.890129] RIP = 0xffffffff811c8cac RSP = 0xffff888051ac78c0 [ 1499.909782] RIP = 0xffffffff811c8cac RSP = 0xffff888051b3f8c0 [ 1499.920358] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1499.940792] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1499.941091] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1499.972789] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1499.990349] CR0=0000000080050033 CR3=00000000a976b000 CR4=00000000001426f0 [ 1499.995014] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1500.013938] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1500.030683] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1500.041131] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1500.051846] CR0=0000000080050033 CR3=0000000092b68000 CR4=00000000001426e0 [ 1500.074617] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1500.083724] *** Control State *** [ 1500.108657] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1500.109556] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1500.147731] EntryControls=0000d1ff ExitControls=002fefff [ 1500.170571] *** Control State *** [ 1500.172359] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1500.191921] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1500.198378] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1500.214230] EntryControls=0000d1ff ExitControls=002fefff [ 1500.224252] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1500.236639] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1500.254594] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1500.261298] reason=80000021 qualification=0000000000000000 [ 1500.261305] IDTVectoring: info=00000000 errcode=00000000 [ 1500.261310] TSC Offset = 0xfffffcda9ba2d34a [ 1500.261315] TPR Threshold = 0x00 [ 1500.261322] EPT pointer = 0x00000000a522701e [ 1500.290509] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1500.305678] reason=80000021 qualification=0000000000000000 [ 1500.315907] IDTVectoring: info=00000000 errcode=00000000 03:42:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1500.330389] TSC Offset = 0xfffffcdabb4d0745 [ 1500.342621] TPR Threshold = 0x00 [ 1500.352791] EPT pointer = 0x000000007fcc401e 03:42:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:22 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:42:23 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1500.997574] *** Guest State *** [ 1501.022732] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1501.046399] *** Guest State *** [ 1501.059013] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1501.069524] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1501.104102] CR3 = 0x0000000000000000 [ 1501.109017] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1501.118416] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1501.136121] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1501.145213] CR3 = 0x0000000000000000 [ 1501.158302] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1501.166990] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1501.185716] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1501.195926] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1501.213390] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1501.225791] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.236457] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1501.248302] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.260139] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1501.275073] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.286907] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.309170] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.337960] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.348492] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1501.386193] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1501.401292] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.421440] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1501.436775] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1501.465901] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1501.480853] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1501.505488] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1501.524731] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1501.548730] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1501.564804] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1501.596467] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1501.602714] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1501.638330] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1501.650589] Interruptibility = 00000000 ActivityState = 00000000 [ 1501.667064] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1501.693670] *** Host State *** [ 1501.715970] Interruptibility = 00000000 ActivityState = 00000000 [ 1501.725038] RIP = 0xffffffff811c8cac RSP = 0xffff88805be6f8c0 [ 1501.777427] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1501.810781] *** Host State *** [ 1501.835649] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1501.863455] RIP = 0xffffffff811c8cac RSP = 0xffff88804aa978c0 [ 1501.909400] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1501.915158] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1501.943762] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 03:42:24 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1501.965223] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1501.985114] CR0=0000000080050033 CR3=00000000a402e000 CR4=00000000001426e0 [ 1502.034657] CR0=0000000080050033 CR3=00000000589f5000 CR4=00000000001426e0 [ 1502.041806] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1502.048725] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1502.062684] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1502.068948] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1502.083687] *** Control State *** [ 1502.083847] *** Control State *** [ 1502.087146] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1502.087153] EntryControls=0000d1ff ExitControls=002fefff [ 1502.087165] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1502.087173] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1502.087180] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1502.087187] reason=80000021 qualification=0000000000000000 [ 1502.087198] IDTVectoring: info=00000000 errcode=00000000 03:42:24 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1502.090780] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1502.192082] EntryControls=0000d1ff ExitControls=002fefff [ 1502.213667] TSC Offset = 0xfffffcd99f3ffb4e [ 1502.219801] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1502.248560] TPR Threshold = 0x00 [ 1502.250175] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1502.283727] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:42:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1502.305558] EPT pointer = 0x00000000a8f8501e [ 1502.308326] reason=80000021 qualification=0000000000000000 [ 1502.336920] IDTVectoring: info=00000000 errcode=00000000 [ 1502.356143] TSC Offset = 0xfffffcd9a74e1081 [ 1502.371578] TPR Threshold = 0x00 [ 1502.383036] EPT pointer = 0x000000009c60801e 03:42:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:25 executing program 1: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1503.088626] *** Guest State *** [ 1503.093343] *** Guest State *** [ 1503.100669] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1503.101151] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1503.136241] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1503.150029] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1503.184711] CR3 = 0x0000000000000000 [ 1503.201276] CR3 = 0x0000000000000000 [ 1503.201649] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1503.212607] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1503.225761] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1503.237339] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1503.265131] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1503.268245] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1503.305719] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1503.308294] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1503.333620] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.335563] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.375658] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.377552] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.413910] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.427701] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.459878] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.491318] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.509462] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.547306] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1503.582188] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:42:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1503.606101] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1503.670859] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1503.700928] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1503.708945] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1503.708962] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1503.708972] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1503.709010] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1503.709019] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1503.709029] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1503.709037] Interruptibility = 00000000 ActivityState = 00000000 [ 1503.709053] *** Host State *** [ 1503.709076] RIP = 0xffffffff811c8cac RSP = 0xffff88807d9b78c0 [ 1503.709117] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1503.709128] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1503.709139] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1503.709152] CR0=0000000080050033 CR3=000000007f03c000 CR4=00000000001426e0 [ 1503.709165] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1503.709175] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1503.709180] *** Control State *** [ 1503.709188] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1503.709195] EntryControls=0000d1ff ExitControls=002fefff [ 1503.709214] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1503.843764] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1503.850445] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1503.879237] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1503.898805] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1503.912820] Interruptibility = 00000000 ActivityState = 00000000 03:42:26 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1503.929712] reason=80000021 qualification=0000000000000000 [ 1503.953720] *** Host State *** [ 1503.957018] RIP = 0xffffffff811c8cac RSP = 0xffff888051e0f8c0 [ 1503.988474] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1503.996156] IDTVectoring: info=00000000 errcode=00000000 [ 1504.001606] TSC Offset = 0xfffffcd891625dce [ 1504.023720] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1504.037818] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1504.046778] TPR Threshold = 0x00 [ 1504.050151] EPT pointer = 0x0000000084aec01e [ 1504.065444] CR0=0000000080050033 CR3=000000009ff0a000 CR4=00000000001426f0 [ 1504.087256] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1504.135480] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1504.157801] *** Control State *** 03:42:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1504.179670] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:42:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1504.238030] EntryControls=0000d1ff ExitControls=002fefff [ 1504.259373] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1504.288947] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1504.314187] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1504.348552] reason=80000021 qualification=0000000000000000 [ 1504.370346] IDTVectoring: info=00000000 errcode=00000000 [ 1504.389239] TSC Offset = 0xfffffcd8874a716c 03:42:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1504.417214] TPR Threshold = 0x00 [ 1504.425189] EPT pointer = 0x000000008bad601e 03:42:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1504.777173] *** Guest State *** [ 1504.793899] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1504.818853] *** Guest State *** [ 1504.828016] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1504.840764] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1504.863834] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1504.875028] CR3 = 0x0000000000000000 [ 1504.886990] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1504.893995] CR3 = 0x0000000000000000 [ 1504.899397] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1504.902781] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1504.923870] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1504.944075] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1504.951070] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1504.959324] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:42:27 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x0, 0x0) [ 1504.982942] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1504.991473] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.010666] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.022026] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.034625] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.046363] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.055768] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.065194] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.075961] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.086482] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.095606] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.107258] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1505.116643] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1505.128318] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1505.139498] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1505.164089] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1505.193020] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1505.201830] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1505.218424] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:42:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) socket$inet(0x10, 0x40002, 0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1505.239015] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1505.263802] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1505.271557] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1505.285434] Interruptibility = 00000000 ActivityState = 00000000 [ 1505.291916] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1505.313810] *** Host State *** [ 1505.317301] Interruptibility = 00000000 ActivityState = 00000000 [ 1505.324428] RIP = 0xffffffff811c8cac RSP = 0xffff88805a8378c0 [ 1505.330690] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1505.337593] *** Host State *** [ 1505.341039] RIP = 0xffffffff811c8cac RSP = 0xffff8880a85278c0 [ 1505.363945] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1505.373864] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1505.395188] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1505.396262] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1505.423724] CR0=0000000080050033 CR3=000000009dec4000 CR4=00000000001426e0 [ 1505.434910] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1505.440881] CR0=0000000080050033 CR3=000000008b769000 CR4=00000000001426e0 [ 1505.491360] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1505.528787] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1505.558322] *** Control State *** [ 1505.561777] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1505.584699] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1505.605971] EntryControls=0000d1ff ExitControls=002fefff [ 1505.614029] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1505.623681] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1505.623820] *** Control State *** [ 1505.630622] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1505.630630] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1505.630653] reason=80000021 qualification=0000000000000000 [ 1505.630660] IDTVectoring: info=00000000 errcode=00000000 [ 1505.630677] TSC Offset = 0xfffffcd7a42ba9f5 [ 1505.630682] TPR Threshold = 0x00 [ 1505.630690] EPT pointer = 0x00000000a0a4801e [ 1505.651181] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1505.704937] EntryControls=0000d1ff ExitControls=002fefff [ 1505.710390] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1505.748006] *** Guest State *** [ 1505.760266] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1505.770524] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1505.792523] *** Guest State *** [ 1505.804740] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1505.806684] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1505.824427] CR3 = 0x0000000000000000 [ 1505.828405] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1505.834513] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1505.834521] reason=80000021 qualification=0000000000000000 [ 1505.834527] IDTVectoring: info=00000000 errcode=00000000 03:42:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1505.834533] TSC Offset = 0xfffffcd79fa4924d [ 1505.834538] TPR Threshold = 0x00 [ 1505.834553] EPT pointer = 0x00000000a499501e [ 1505.853758] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1505.880009] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1505.889299] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1505.903760] CR3 = 0x0000000000000000 [ 1505.907484] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1505.918744] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1505.945005] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1505.956477] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1505.970984] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1505.978957] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1506.000783] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.013712] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1506.024971] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.038282] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.043802] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.063934] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1506.075731] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.083769] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1506.113790] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.113798] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1506.127550] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.156345] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.165727] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1506.182710] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1506.208252] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1506.215193] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1506.233802] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1506.234765] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1506.260983] Interruptibility = 00000000 ActivityState = 00000000 [ 1506.283843] *** Host State *** [ 1506.287297] RIP = 0xffffffff811c8cac RSP = 0xffff8880559178c0 [ 1506.287678] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1506.301630] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1506.313720] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1506.320131] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1506.341672] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 03:42:28 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x0, 0x0) [ 1506.368442] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1506.387507] CR0=0000000080050033 CR3=00000000a028a000 CR4=00000000001426f0 [ 1506.418944] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1506.430383] Interruptibility = 00000000 ActivityState = 00000000 [ 1506.430757] *** Guest State *** [ 1506.441452] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1506.458426] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1506.473795] *** Host State *** [ 1506.477120] RIP = 0xffffffff811c8cac RSP = 0xffff88805f0978c0 [ 1506.482929] *** Control State *** [ 1506.499748] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1506.503690] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1506.513132] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1506.516024] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1506.540787] EntryControls=0000d1ff ExitControls=002fefff [ 1506.546435] CR3 = 0x0000000000000000 [ 1506.556159] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1506.562251] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1506.570988] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1506.582877] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1506.594947] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1506.602820] CR0=0000000080050033 CR3=00000000655a5000 CR4=00000000001426e0 [ 1506.612391] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1506.613125] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1506.635025] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1506.643226] reason=80000021 qualification=0000000000000000 [ 1506.653513] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1506.668606] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1506.688274] *** Control State *** [ 1506.689395] IDTVectoring: info=00000000 errcode=00000000 [ 1506.692967] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.711107] TSC Offset = 0xfffffcd71a6d16a9 [ 1506.713132] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1506.724016] EntryControls=0000d1ff ExitControls=002fefff [ 1506.730520] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1506.738950] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.742036] TPR Threshold = 0x00 [ 1506.756262] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1506.769854] EPT pointer = 0x000000005ee2e01e [ 1506.782362] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1506.793140] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.803415] reason=80000021 qualification=0000000000000000 [ 1506.814386] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.822884] IDTVectoring: info=00000000 errcode=00000000 [ 1506.830258] TSC Offset = 0xfffffcd7163f14bf [ 1506.836070] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1506.844690] TPR Threshold = 0x00 [ 1506.849472] EPT pointer = 0x00000000a7eb101e [ 1506.861121] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1506.901955] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:42:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1506.944429] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1506.991224] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1507.021925] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1507.048833] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1507.084942] Interruptibility = 00000000 ActivityState = 00000000 [ 1507.113775] *** Host State *** [ 1507.116988] RIP = 0xffffffff811c8cac RSP = 0xffff88808ada78c0 [ 1507.149045] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1507.158099] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1507.173758] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1507.179649] CR0=0000000080050033 CR3=0000000061b74000 CR4=00000000001426e0 [ 1507.179663] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1507.179672] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1507.179680] *** Control State *** [ 1507.314929] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1507.321602] EntryControls=0000d1ff ExitControls=002fefff [ 1507.364794] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1507.391717] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1507.416342] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1507.447607] reason=80000021 qualification=0000000000000000 [ 1507.478618] IDTVectoring: info=00000000 errcode=00000000 [ 1507.497667] *** Guest State *** [ 1507.507200] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1507.520436] TSC Offset = 0xfffffcd6bf6c6911 03:42:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1507.536523] TPR Threshold = 0x00 [ 1507.539971] EPT pointer = 0x000000009ff0b01e [ 1507.546601] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1507.589945] CR3 = 0x0000000000000000 03:42:29 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) ptrace$pokeuser(0x6, 0x0, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r3 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r3, 0xf, &(0x7f0000000180)={0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) 03:42:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1507.616418] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1507.636749] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1507.645039] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1507.675749] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1507.690709] *** Guest State *** [ 1507.705097] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1507.718406] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1507.744879] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1507.765368] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1507.785294] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1507.823818] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1507.832072] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1507.863863] CR3 = 0x0000000000000000 [ 1507.870560] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1507.887339] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1507.929884] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1507.953736] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1507.973704] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1507.993845] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1508.013098] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1508.050796] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1508.058740] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.090838] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.111041] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1508.134932] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.138377] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1508.174613] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.191773] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.203714] Interruptibility = 00000000 ActivityState = 00000000 [ 1508.234619] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1508.234803] *** Host State *** [ 1508.284839] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1508.292863] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1508.317620] *** Guest State *** [ 1508.332898] RIP = 0xffffffff811c8cac RSP = 0xffff88805f0978c0 [ 1508.346923] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1508.372583] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1508.382488] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1508.399927] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1508.424326] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1508.443373] CR3 = 0x0000000000000000 [ 1508.449580] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1508.463840] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1508.469948] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1508.478753] CR0=0000000080050033 CR3=0000000089dd9000 CR4=00000000001426f0 03:42:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1508.492899] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1508.506283] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1508.513999] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1508.533763] Interruptibility = 00000000 ActivityState = 00000000 [ 1508.540586] *** Host State *** [ 1508.546283] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1508.555313] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1508.566038] RIP = 0xffffffff811c8cac RSP = 0xffff88808ada78c0 [ 1508.578240] *** Control State *** [ 1508.581866] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1508.593671] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1508.601415] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1508.624749] FSBase=00007f68f34fc700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1508.644840] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.654938] EntryControls=0000d1ff ExitControls=002fefff [ 1508.660839] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1508.674034] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1508.687859] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.706033] CR0=0000000080050033 CR3=000000007d97a000 CR4=00000000001426f0 [ 1508.715448] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1508.731882] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.747403] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1508.757651] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1508.775215] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.788312] reason=80000021 qualification=0000000000000000 [ 1508.796963] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 03:42:31 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x0, 0x0) [ 1508.833938] *** Control State *** [ 1508.837526] IDTVectoring: info=00000000 errcode=00000000 [ 1508.853682] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1508.890177] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1508.898488] TSC Offset = 0xfffffcd6374576cf [ 1508.920495] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1508.929964] TPR Threshold = 0x00 [ 1508.933482] EntryControls=0000d1ff ExitControls=002fefff 03:42:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1508.940263] EPT pointer = 0x000000004dcba01e [ 1508.946547] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1508.968953] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1508.988803] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1509.022565] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1509.032035] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 03:42:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1509.064702] reason=80000021 qualification=0000000000000000 [ 1509.085848] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1509.104008] IDTVectoring: info=00000000 errcode=00000000 [ 1509.111779] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1509.119542] TSC Offset = 0xfffffcd617cedd97 [ 1509.134184] EPT pointer = 0x000000005e6dd01e [ 1509.143188] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1509.171533] Interruptibility = 00000000 ActivityState = 00000000 [ 1509.191746] *** Host State *** [ 1509.204514] RIP = 0xffffffff811c8cac RSP = 0xffff8880a852f8c0 03:42:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1509.227920] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1509.250685] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1509.304491] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1509.329838] CR0=0000000080050033 CR3=00000000923da000 CR4=00000000001426f0 [ 1509.360749] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1509.389691] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1509.418888] *** Control State *** [ 1509.441710] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1509.481426] EntryControls=0000d1ff ExitControls=002fefff 03:42:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1509.509222] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1509.543565] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1509.574649] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1509.599331] reason=80000021 qualification=0000000000000000 [ 1509.624895] IDTVectoring: info=00000000 errcode=00000000 [ 1509.646636] TSC Offset = 0xfffffcd5bc138787 [ 1509.662760] TPR Threshold = 0x00 [ 1509.676737] EPT pointer = 0x00000000a92c601e 03:42:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1509.858884] *** Guest State *** [ 1509.878003] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1509.933785] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1509.980805] CR3 = 0x0000000000000000 [ 1510.000594] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1510.029911] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1510.053743] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:42:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1510.079263] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1510.119595] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1510.157303] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1510.188308] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:32 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940)}}], 0x1, 0x62, 0x0) [ 1510.223703] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1510.273740] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1510.312184] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1510.368068] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1510.394002] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1510.428398] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1510.470394] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1510.490565] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1510.517757] Interruptibility = 00000000 ActivityState = 00000000 [ 1510.548624] *** Host State *** [ 1510.562362] RIP = 0xffffffff811c8cac RSP = 0xffff8880588a78c0 03:42:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1510.589346] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1510.633102] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1510.657833] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1510.680010] CR0=0000000080050033 CR3=000000009f815000 CR4=00000000001426f0 03:42:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1510.704743] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1510.726515] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1510.746748] *** Control State *** [ 1510.758211] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1510.780915] EntryControls=0000d1ff ExitControls=002fefff [ 1510.809163] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1510.840643] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 03:42:33 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x1, 0x62, 0x0) [ 1510.863867] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1510.870480] reason=80000021 qualification=0000000000000000 [ 1510.941425] IDTVectoring: info=00000000 errcode=00000000 [ 1510.970267] TSC Offset = 0xfffffcd4e9ebd23d 03:42:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1510.995127] TPR Threshold = 0x00 [ 1511.002874] EPT pointer = 0x000000006166d01e 03:42:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1511.178050] *** Guest State *** [ 1511.181360] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1511.251986] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1511.296839] CR3 = 0x0000000000000000 [ 1511.321058] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1511.353126] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:42:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1511.389610] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:42:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:33 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x1, 0x62, 0x0) [ 1511.443809] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1511.473125] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.524117] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.559628] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.614683] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.651024] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.677036] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1511.677182] *** Guest State *** [ 1511.711153] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1511.712953] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1511.736474] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1511.778270] CR3 = 0x0000000000000000 [ 1511.800150] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1511.810559] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1511.833207] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1511.843704] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1511.848542] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1511.873099] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1511.884766] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1511.912066] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1511.939955] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.942276] Interruptibility = 00000000 ActivityState = 00000000 03:42:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1511.969173] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1511.976430] *** Host State *** [ 1511.983913] RIP = 0xffffffff811c8cac RSP = 0xffff88805898f8c0 [ 1511.996935] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1512.011410] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1512.032602] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1512.049290] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1512.059914] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1512.082208] CR0=0000000080050033 CR3=000000005a4f9000 CR4=00000000001426f0 [ 1512.086672] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1512.106621] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1512.132078] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1512.150519] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1512.153908] *** Control State *** [ 1512.175720] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:42:34 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x1, 0x62, 0x0) [ 1512.197546] EntryControls=0000d1ff ExitControls=002fefff [ 1512.201062] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1512.226507] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1512.239435] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1512.265650] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1512.268006] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1512.286067] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1512.312731] reason=80000021 qualification=0000000000000000 [ 1512.332892] IDTVectoring: info=00000000 errcode=00000000 [ 1512.350930] TSC Offset = 0xfffffcd431f56a47 [ 1512.355283] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1512.355305] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1512.355313] Interruptibility = 00000000 ActivityState = 00000000 [ 1512.355317] *** Host State *** [ 1512.355327] RIP = 0xffffffff811c8cac RSP = 0xffff8880570678c0 [ 1512.355356] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:42:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1512.420416] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1512.434370] TPR Threshold = 0x00 [ 1512.442299] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1512.445667] EPT pointer = 0x0000000091b9b01e [ 1512.460437] CR0=0000000080050033 CR3=00000000a02a4000 CR4=00000000001426e0 03:42:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1512.489152] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1512.513151] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1512.583838] *** Control State *** [ 1512.588529] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1512.623324] EntryControls=0000d1ff ExitControls=002fefff [ 1512.655957] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1512.688573] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 03:42:35 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980), 0x0, 0x62, 0x0) [ 1512.719623] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1512.741484] reason=80000021 qualification=0000000000000000 [ 1512.762783] IDTVectoring: info=00000000 errcode=00000000 [ 1512.792502] TSC Offset = 0xfffffcd3f039fdd8 [ 1512.810421] TPR Threshold = 0x00 [ 1512.828365] EPT pointer = 0x000000007e13d01e 03:42:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:35 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1513.547123] *** Guest State *** [ 1513.563025] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1513.605023] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1513.652758] CR3 = 0x0000000000000000 [ 1513.658666] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1513.682870] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1513.723871] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1513.739921] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1513.768649] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1513.799463] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1513.829636] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1513.857176] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1513.902880] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1513.940907] *** Guest State *** [ 1513.952345] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1513.960862] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1514.000109] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1514.012112] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1514.043724] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1514.055326] CR3 = 0x0000000000000000 03:42:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1514.083940] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1514.090022] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1514.098323] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1514.152247] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1514.181332] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1514.202453] Interruptibility = 00000000 ActivityState = 00000000 [ 1514.219099] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1514.242467] *** Host State *** [ 1514.264707] RIP = 0xffffffff811c8cac RSP = 0xffff888056e578c0 [ 1514.284734] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1514.292785] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1514.303416] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1514.335739] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1514.350800] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1514.390180] CR0=0000000080050033 CR3=0000000098198000 CR4=00000000001426e0 [ 1514.400444] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1514.418481] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 03:42:36 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1514.450551] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1514.460948] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1514.488280] *** Control State *** [ 1514.504010] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1514.512139] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1514.525184] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1514.553769] EntryControls=0000d1ff ExitControls=002fefff [ 1514.559433] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1514.571291] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1514.593869] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1514.603186] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1514.603328] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1514.633024] reason=80000021 qualification=0000000000000000 [ 1514.662540] IDTVectoring: info=00000000 errcode=00000000 [ 1514.666636] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1514.687653] TSC Offset = 0xfffffcd2ef8e6771 [ 1514.705506] EPT pointer = 0x000000005677301e [ 1514.711245] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:42:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:42:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1514.764936] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1514.788180] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1514.839837] Interruptibility = 00000000 ActivityState = 00000000 [ 1514.874737] *** Host State *** [ 1514.891638] RIP = 0xffffffff811c8cac RSP = 0xffff88805a7a78c0 [ 1514.933734] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1514.940327] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1514.974265] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1514.999946] CR0=0000000080050033 CR3=0000000050b17000 CR4=00000000001426f0 [ 1515.013726] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1515.020405] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1515.083866] *** Control State *** 03:42:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1515.110527] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1515.155161] EntryControls=0000d1ff ExitControls=002fefff [ 1515.183214] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1515.224422] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1515.231107] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1515.287646] reason=80000021 qualification=0000000000000000 [ 1515.305034] *** Guest State *** [ 1515.321065] IDTVectoring: info=00000000 errcode=00000000 [ 1515.322459] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1515.331796] *** Guest State *** [ 1515.342498] TSC Offset = 0xfffffcd2baf023a1 [ 1515.348052] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1515.363730] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1515.384674] TPR Threshold = 0x00 [ 1515.388056] EPT pointer = 0x000000009f55a01e [ 1515.407583] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1515.424326] CR3 = 0x0000000000000000 03:42:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1515.453780] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1515.460941] CR3 = 0x0000000000000000 [ 1515.484188] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1515.495904] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1515.523687] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1515.529476] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:42:37 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1515.567901] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1515.568521] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1515.602800] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.638654] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1515.652341] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.677690] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1515.702169] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.714038] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.723740] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.761773] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.774401] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.806446] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.816253] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1515.840264] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1515.851035] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1515.873947] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1515.882107] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1515.904083] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1515.914951] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1515.941018] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1515.953991] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1515.970273] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1515.982913] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1515.997992] Interruptibility = 00000000 ActivityState = 00000000 [ 1516.011855] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1516.022177] *** Host State *** [ 1516.030311] RIP = 0xffffffff811c8cac RSP = 0xffff888051ef78c0 [ 1516.040268] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1516.055177] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1516.067410] Interruptibility = 00000000 ActivityState = 00000000 [ 1516.077791] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1516.098345] *** Host State *** [ 1516.108344] RIP = 0xffffffff811c8cac RSP = 0xffff88809015f8c0 [ 1516.115954] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1516.128959] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1516.138178] CR0=0000000080050033 CR3=00000000960fd000 CR4=00000000001426f0 [ 1516.153237] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 03:42:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1516.164674] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1516.192941] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1516.200390] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1516.217653] CR0=0000000080050033 CR3=00000000826a1000 CR4=00000000001426e0 [ 1516.227476] *** Control State *** [ 1516.233542] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:42:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1516.243920] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1516.253095] EntryControls=0000d1ff ExitControls=002fefff [ 1516.262139] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1516.274695] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1516.307638] *** Control State *** [ 1516.318249] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1516.328584] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1516.355594] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1516.362392] EntryControls=0000d1ff ExitControls=002fefff [ 1516.386097] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1516.397430] reason=80000021 qualification=0000000000000000 [ 1516.431252] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1516.439399] IDTVectoring: info=00000000 errcode=00000000 [ 1516.465227] TSC Offset = 0xfffffcd1ff97b334 [ 1516.473035] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 03:42:38 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) add_key$keyring(0x0, &(0x7f0000000480)={'syz'}, 0x0, 0x0, 0xfffffffffffffffc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) finit_module(0xffffffffffffffff, 0x0, 0x2) read$FUSE(r0, 0x0, 0x0) prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b) [ 1516.487877] TPR Threshold = 0x00 [ 1516.491270] EPT pointer = 0x000000008896b01e [ 1516.516124] reason=80000021 qualification=0000000000000000 03:42:38 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1516.558983] IDTVectoring: info=00000000 errcode=00000000 [ 1516.578094] TSC Offset = 0xfffffcd1f51b7575 [ 1516.597573] TPR Threshold = 0x00 [ 1516.601032] EPT pointer = 0x0000000082d8201e 03:42:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:42:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1517.035250] *** Guest State *** [ 1517.038643] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1517.081330] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1517.119294] CR3 = 0x0000000000000000 [ 1517.126276] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1517.174313] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1517.187714] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1517.198798] *** Guest State *** [ 1517.218800] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1517.228231] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1517.243956] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1517.271365] CR3 = 0x0000000000000000 [ 1517.277115] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.287688] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1517.312309] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1517.319902] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.337773] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1517.352629] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1517.367499] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1517.397449] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.400640] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.431434] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1517.459542] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1517.463185] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.489158] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1517.523748] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.546054] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1517.562329] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.580812] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1517.603019] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1517.627160] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1517.643840] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1517.649940] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1517.656600] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1517.668920] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1517.683015] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1517.694785] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1517.703360] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1517.710408] Interruptibility = 00000000 ActivityState = 00000000 [ 1517.725536] Interruptibility = 00000000 ActivityState = 00000000 [ 1517.740490] *** Host State *** [ 1517.746258] *** Host State *** [ 1517.757365] RIP = 0xffffffff811c8cac RSP = 0xffff888051ef78c0 [ 1517.759466] RIP = 0xffffffff811c8cac RSP = 0xffff88805a7a78c0 [ 1517.787499] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1517.806394] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1517.822342] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 03:42:40 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) read(r0, 0x0, 0x0) [ 1517.840401] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1517.867840] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1517.877171] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1517.898505] CR0=0000000080050033 CR3=0000000089c38000 CR4=00000000001426f0 [ 1517.900120] CR0=0000000080050033 CR3=00000000826a1000 CR4=00000000001426e0 [ 1517.922326] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1517.943661] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1517.950613] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1517.951780] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1517.983747] *** Control State *** [ 1517.983750] *** Control State *** [ 1517.983762] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1517.987219] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1517.987227] EntryControls=0000d1ff ExitControls=002fefff [ 1517.987237] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1517.987248] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1517.990778] EntryControls=0000d1ff ExitControls=002fefff [ 1518.034266] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 03:42:40 executing program 2: r0 = socket(0x2, 0x3, 0x0) connect$unix(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="82022e46ebab816c3000"], 0x1) setsockopt$inet_opts(r0, 0x0, 0x20000000000001, &(0x7f0000000040)="9a06e303000400b90cba8590f4f624e0ca18d23a", 0x14) writev(r0, &(0x7f00000002c0)=[{0x0}], 0x1) [ 1518.053745] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1518.071631] reason=80000021 qualification=0000000000000000 [ 1518.080398] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1518.133813] IDTVectoring: info=00000000 errcode=00000000 [ 1518.140443] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1518.163916] TSC Offset = 0xfffffcd0fbdaac6b [ 1518.168448] reason=80000021 qualification=0000000000000000 [ 1518.179246] EPT pointer = 0x000000008d60d01e [ 1518.187616] IDTVectoring: info=00000000 errcode=00000000 [ 1518.224197] TSC Offset = 0xfffffcd111e95901 [ 1518.242871] TPR Threshold = 0x00 03:42:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1518.270950] EPT pointer = 0x00000000a944101e 03:42:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1518.753906] audit: type=1400 audit(2000000561.070:712): avc: denied { map } for pid=20741 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:42:41 executing program 0: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14363, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 1518.886547] audit: type=1400 audit(2000000561.110:713): avc: denied { map } for pid=20741 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.016651] audit: type=1400 audit(2000000561.130:714): avc: denied { map } for pid=20741 comm="modprobe" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.048179] *** Guest State *** [ 1519.067249] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1519.119488] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1519.139269] audit: type=1400 audit(2000000561.150:715): avc: denied { map } for pid=20741 comm="modprobe" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.181856] CR3 = 0x0000000000000000 03:42:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1519.210546] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1519.246609] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1519.268528] audit: type=1400 audit(2000000561.200:716): avc: denied { map } for pid=20741 comm="modprobe" path="/etc/ld.so.cache" dev="sda1" ino=2251 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.286181] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1519.350888] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1519.388713] audit: type=1400 audit(2000000561.240:717): avc: denied { map } for pid=20741 comm="modprobe" path="/lib/x86_64-linux-gnu/libkmod.so.2.1.3" dev="sda1" ino=2811 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.396423] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1519.533761] audit: type=1400 audit(2000000561.250:718): avc: denied { map } for pid=20741 comm="modprobe" path="/lib/x86_64-linux-gnu/libkmod.so.2.1.3" dev="sda1" ino=2811 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.553861] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 03:42:41 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1519.634066] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1519.686108] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1519.709604] audit: type=1400 audit(2000000561.280:719): avc: denied { map } for pid=20741 comm="modprobe" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.757713] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1519.804038] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:42 executing program 0: mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x0, 0x8972, 0xffffffffffffffff, 0x0) r0 = getpgrp(0x0) setrlimit(0x5, &(0x7f00000000c0)={0x3, 0xfff}) r1 = gettid() rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xfffffffffffffffe}, 0x0, 0x8) r2 = accept(0xffffffffffffff9c, 0x0, &(0x7f0000000000)) r3 = open$dir(&(0x7f0000000040)='./file0\x00', 0x402000, 0x8) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000080)={0x0, r3, 0xe800, 0x200, 0xfffffffffffffff8, 0x1000}) tgkill(r1, r1, 0x0) rt_tgsigqueueinfo(r0, r1, 0x7, &(0x7f0000000140)={0x0, 0x0, 0x30004}) rt_sigtimedwait(&(0x7f0000000200)={0x56}, &(0x7f0000a77ff0), 0x0, 0x8) [ 1519.850970] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1519.885770] audit: type=1400 audit(2000000561.280:720): avc: denied { map } for pid=20741 comm="modprobe" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1519.943760] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1519.951747] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1520.004280] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1520.010696] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1520.043833] audit: type=1400 audit(2000000561.430:721): avc: denied { map } for pid=20901 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1520.081647] Interruptibility = 00000000 ActivityState = 00000000 [ 1520.113781] *** Host State *** [ 1520.116991] RIP = 0xffffffff811c8cac RSP = 0xffff88808f40f8c0 [ 1520.136013] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1520.163895] FSBase=00007f68f351d700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1520.210532] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1520.233420] CR0=0000000080050033 CR3=000000005c590000 CR4=00000000001426e0 03:42:42 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) memfd_create(0x0, 0x0) syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x20000) ioctl$PPPIOCSNPMODE(r2, 0x4008744b, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) [ 1520.285803] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1520.328955] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1520.376410] *** Control State *** [ 1520.379945] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 03:42:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1520.423783] EntryControls=0000d1ff ExitControls=002fefff [ 1520.435351] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1520.466198] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1520.502458] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1520.537477] reason=80000021 qualification=0000000000000000 [ 1520.570940] IDTVectoring: info=00000000 errcode=00000000 [ 1520.601396] TSC Offset = 0xfffffcd0035601f5 [ 1520.622729] EPT pointer = 0x0000000098a6501e 03:42:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:43 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(0xffffffffffffffff, 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x10800, 0x0) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) write$FUSE_ENTRY(0xffffffffffffffff, 0x0, 0x0) 03:42:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:43 executing program 2: sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) r0 = syz_open_dev$sg(&(0x7f0000005000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000100)={0x53, 0x0, 0x6, 0x0, @buffer={0xee, 0xee, &(0x7f00000002c0)=""/238}, &(0x7f00000000c0)="da88aa5af197", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 1521.382125] *** Guest State *** [ 1521.386451] *** Guest State *** [ 1521.398632] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1521.410757] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:43 executing program 0: capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000340)) shmget(0x0, 0x2000, 0x80, &(0x7f0000ffd000/0x2000)=nil) 03:42:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1521.440723] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1521.455734] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1521.483537] CR3 = 0x0000000000000000 [ 1521.495673] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1521.507110] CR3 = 0x0000000000000000 [ 1521.512463] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1521.517232] *** Guest State *** [ 1521.535550] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1521.542802] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1521.556534] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1521.559048] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1521.573694] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1521.587806] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1521.610523] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1521.620009] CR3 = 0x0000000000000000 [ 1521.623568] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1521.646461] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.654473] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1521.660257] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.661957] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1521.692707] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.717253] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725418] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1521.725431] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1521.725446] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725461] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725475] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725490] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725504] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725515] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1521.725530] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725540] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1521.725556] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1521.725564] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1521.725590] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1521.725599] Interruptibility = 00000000 ActivityState = 00000000 [ 1521.725603] *** Host State *** [ 1521.725613] RIP = 0xffffffff811c8cac RSP = 0xffff8880559ff8c0 [ 1521.725632] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1521.725643] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1521.725653] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1521.725665] CR0=0000000080050033 CR3=0000000085d0f000 CR4=00000000001426f0 [ 1521.725677] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1521.725688] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1521.725692] *** Control State *** [ 1521.725700] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1521.725707] EntryControls=0000d1ff ExitControls=002fefff [ 1521.725718] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1521.725726] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1521.725733] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1521.725741] reason=80000021 qualification=0000000000000000 [ 1521.725747] IDTVectoring: info=00000000 errcode=00000000 [ 1521.725753] TSC Offset = 0xfffffcceaa7993c7 [ 1521.725758] TPR Threshold = 0x00 [ 1521.725765] EPT pointer = 0x0000000092ed201e [ 1521.773192] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.825983] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1521.932272] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:44 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r2 = memfd_create(0x0, 0x0) r3 = syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x1) ioctl$PPPIOCSNPMODE(0xffffffffffffffff, 0x4008744b, &(0x7f00000001c0)={0x82ff}) dup2(r3, r2) connect$inet(r0, &(0x7f0000000000)={0x2, 0x10004e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) [ 1522.061478] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1522.101621] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1522.106513] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1522.130146] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1522.142947] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dc86055e0bceec7be070") r1 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000d4b000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x2, [{{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @mcast1}}]}, 0x190) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) [ 1522.168319] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1522.183982] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1522.202123] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1522.213778] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1522.239893] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1522.244447] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1522.272084] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1522.285874] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1522.296119] Interruptibility = 00000000 ActivityState = 00000000 [ 1522.305855] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1522.312275] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1522.353806] *** Host State *** [ 1522.360006] RIP = 0xffffffff811c8cac RSP = 0xffff88808f40f8c0 [ 1522.373719] Interruptibility = 00000000 ActivityState = 00000000 [ 1522.382357] *** Host State *** [ 1522.383876] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1522.396670] RIP = 0xffffffff811c8cac RSP = 0xffff88805c9678c0 03:42:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1522.421607] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1522.422655] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1522.448545] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1522.465458] CR0=0000000080050033 CR3=000000009be8a000 CR4=00000000001426f0 [ 1522.488361] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1522.494734] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1522.518302] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1522.522004] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1522.541931] CR0=0000000080050033 CR3=000000007d93b000 CR4=00000000001426e0 [ 1522.543734] *** Control State *** [ 1522.555785] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1522.574579] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1522.580638] *** Control State *** [ 1522.598309] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1522.616049] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1522.630968] EntryControls=0000d1ff ExitControls=002fefff [ 1522.649001] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1522.670861] EntryControls=0000d1ff ExitControls=002fefff [ 1522.687560] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1522.707872] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1522.714597] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1522.714604] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1522.714612] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1522.714618] reason=80000021 qualification=0000000000000000 [ 1522.714624] IDTVectoring: info=00000000 errcode=00000000 [ 1522.714630] TSC Offset = 0xfffffccebeaa8058 [ 1522.714635] TPR Threshold = 0x00 [ 1522.714646] EPT pointer = 0x000000005268901e [ 1522.750566] reason=80000021 qualification=0000000000000000 03:42:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1522.804623] IDTVectoring: info=00000000 errcode=00000000 [ 1522.831751] TSC Offset = 0xfffffccec1d255d1 [ 1522.849894] EPT pointer = 0x00000000a832d01e 03:42:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:45 executing program 2: socket$inet6_udp(0xa, 0x2, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/ip6_flowlabel\x00') ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000840)=""/148, 0x94}], 0x1, 0x0) preadv(r0, &(0x7f0000000700), 0x3a4, 0x10400003) 03:42:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:45 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000180)=""/11, 0xa) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000340)) r1 = dup2(r0, r0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000180)={0x0, 0x7530}, 0x10) syz_execute_func(&(0x7f00000006c0)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, 0x0) 03:42:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:45 executing program 2: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xf7d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x7ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r1 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0xef, 0x20000) openat$ion(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ion\x00', 0xc800, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000140), 0x0) ioctl$EVIOCSKEYCODE_V2(r1, 0x40284504, &(0x7f0000000100)={0x9, 0x5, 0x0, 0x0, "f95158b9d290b5705b9b8f39d021e6caf4e8a29b2b07a31e706b5219d8b16450"}) mkdir(&(0x7f0000000340)='./file0\x00', 0x400020) syz_init_net_socket$bt_l2cap(0x1f, 0x20000000000, 0x3) pread64(r0, &(0x7f00000003c0)=""/91, 0x5b, 0x0) syz_open_dev$sndtimer(&(0x7f0000000180)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, 0x0) lsetxattr$security_ima(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='security.ima\x00', &(0x7f0000000300)=@sha1={0x1, "e47781061b1f3931986d28a1d3a5841195c9ab50"}, 0x15, 0x2) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/attr/current\x00', 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'sit0\x00'}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.net/syz0\x00', 0x1ff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) mkdirat$cgroup(r1, &(0x7f0000000440)='syz0\x00', 0x1ff) fchdir(r2) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) [ 1523.588100] *** Guest State *** [ 1523.591435] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1523.670634] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1523.720529] CR3 = 0x0000000000000000 [ 1523.727473] RSP = 0x0000000000000000 RIP = 0x0000000000000000 03:42:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1523.764412] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1523.792148] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1523.842306] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1523.862960] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1523.889076] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1523.940221] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1523.981242] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.009668] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.058282] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1524.098180] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:42:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSWINSZ(r1, 0x5414, 0x0) [ 1524.142590] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1524.176657] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1524.213451] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1524.252835] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1524.275027] *** Guest State *** [ 1524.282973] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1524.292816] Interruptibility = 00000000 ActivityState = 00000000 [ 1524.307245] *** Host State *** [ 1524.312933] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1524.323207] RIP = 0xffffffff811c8cac RSP = 0xffff88808f40f8c0 [ 1524.340770] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1524.352257] CR3 = 0x0000000000000000 [ 1524.362955] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1524.371219] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1524.420228] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:42:46 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1524.473124] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1524.490529] CR0=0000000080050033 CR3=000000009e761000 CR4=00000000001426f0 [ 1524.498843] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1524.516815] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1524.532604] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1524.555103] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1524.567218] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.583816] *** Control State *** [ 1524.587475] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1524.589249] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.609962] EntryControls=0000d1ff ExitControls=002fefff [ 1524.612196] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.631260] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1524.634882] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.659951] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1524.680757] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1524.689172] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1524.716353] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1524.717560] reason=80000021 qualification=0000000000000000 [ 1524.747154] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1524.764112] IDTVectoring: info=00000000 errcode=00000000 [ 1524.769687] TSC Offset = 0xfffffccd8a44ceed [ 1524.782628] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1524.792387] TPR Threshold = 0x00 03:42:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") semctl$SETVAL(0x0, 0x0, 0x10, 0x0) [ 1524.801736] EPT pointer = 0x000000005c51c01e 03:42:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1524.835480] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:42:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1524.885421] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1524.918603] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1524.944645] Interruptibility = 00000000 ActivityState = 00000000 [ 1524.975701] *** Host State *** [ 1524.993679] RIP = 0xffffffff811c8cac RSP = 0xffff88808c4078c0 [ 1525.021610] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1525.047588] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 03:42:47 executing program 0: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) [ 1525.081287] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1525.099306] *** Guest State *** [ 1525.107284] CR0=0000000080050033 CR3=000000007cfaa000 CR4=00000000001426e0 [ 1525.115030] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1525.143811] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1525.150499] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1525.156997] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1525.172371] CR3 = 0x0000000000000000 [ 1525.183448] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1525.199853] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1525.218127] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1525.236633] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1525.245371] *** Control State *** [ 1525.249085] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1525.271433] EntryControls=0000d1ff ExitControls=002fefff [ 1525.283867] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.292023] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1525.304117] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.323781] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1525.341581] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1525.348856] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.363710] reason=80000021 qualification=0000000000000000 [ 1525.370267] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.383695] IDTVectoring: info=00000000 errcode=00000000 [ 1525.389240] TSC Offset = 0xfffffccd2f3843aa [ 1525.405588] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.423883] EPT pointer = 0x000000009dec401e [ 1525.435785] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1525.444391] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1525.463951] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1525.480450] *** Guest State *** [ 1525.487243] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1525.508944] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1525.510497] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1525.532150] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1525.551287] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:42:47 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) write$UHID_SET_REPORT_REPLY(r0, &(0x7f0000000300), 0xc) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfffffcbe) lseek(r0, 0x0, 0x3) 03:42:47 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 1525.575836] CR3 = 0x0000000000000000 [ 1525.593022] Interruptibility = 00000000 ActivityState = 00000000 [ 1525.594490] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1525.629024] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1525.635313] *** Host State *** [ 1525.646966] *** Guest State *** [ 1525.649211] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1525.650256] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1525.650267] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1525.650273] CR3 = 0x0000000000000000 [ 1525.650279] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1525.650288] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1525.650299] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1525.650314] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1525.670980] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1525.683932] RIP = 0xffffffff811c8cac RSP = 0xffff888050aaf8c0 [ 1525.705732] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.755704] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1525.763731] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1525.793955] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.799550] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.802991] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1525.828674] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.834757] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.852687] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.862202] CR0=0000000080050033 CR3=000000008f68d000 CR4=00000000001426e0 [ 1525.882579] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.891190] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.900583] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1525.901120] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1525.915278] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1525.934625] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.944240] *** Control State *** [ 1525.951931] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1525.965005] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1525.971817] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1525.982060] EntryControls=0000d1ff ExitControls=002fefff [ 1525.991500] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1526.011927] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1526.020798] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1526.021695] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1526.040243] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1526.047426] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1526.055625] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:42:48 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000180)=""/11, 0xa) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000340)) r1 = dup2(r0, r0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000180)={0x0, 0x7530}, 0x10) syz_execute_func(&(0x7f00000006c0)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) ioctl$BLKGETSIZE64(r1, 0x80081272, 0x0) [ 1526.063730] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1526.071941] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1526.073892] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1526.086892] Interruptibility = 00000000 ActivityState = 00000000 [ 1526.103803] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1526.112031] reason=80000021 qualification=0000000000000000 03:42:48 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 1526.143181] *** Host State *** [ 1526.152521] IDTVectoring: info=00000000 errcode=00000000 [ 1526.161684] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1526.195023] RIP = 0xffffffff811c8cac RSP = 0xffff888056c7f8c0 [ 1526.222778] TSC Offset = 0xfffffcccc3061fec [ 1526.227155] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1526.227178] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 03:42:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) epoll_create1(0x0) ppoll(&(0x7f0000000280)=[{r0}], 0x1, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000), 0x0) [ 1526.227188] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1526.227200] CR0=0000000080050033 CR3=000000005712c000 CR4=00000000001426f0 [ 1526.254666] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1526.263384] TPR Threshold = 0x00 [ 1526.274676] Interruptibility = 00000000 ActivityState = 00000000 [ 1526.289454] EPT pointer = 0x000000008e5de01e [ 1526.290916] *** Host State *** [ 1526.324093] RIP = 0xffffffff811c8cac RSP = 0xffff88805a7c78c0 [ 1526.331433] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1526.354235] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 03:42:48 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1526.373745] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1526.384005] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1526.408215] *** Control State *** [ 1526.418677] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1526.426561] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1526.432456] CR0=0000000080050033 CR3=000000009f932000 CR4=00000000001426e0 [ 1526.435791] EntryControls=0000d1ff ExitControls=002fefff [ 1526.445234] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1526.463737] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1526.509049] *** Control State *** [ 1526.512650] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1526.519899] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1526.549054] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 03:42:48 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 1526.566300] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1526.573682] EntryControls=0000d1ff ExitControls=002fefff [ 1526.579164] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1526.581881] reason=80000021 qualification=0000000000000000 [ 1526.609416] IDTVectoring: info=00000000 errcode=00000000 [ 1526.627021] TSC Offset = 0xfffffccc8c4021b1 [ 1526.641149] TPR Threshold = 0x00 [ 1526.644875] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1526.652820] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1526.672100] EPT pointer = 0x000000009086701e [ 1526.688534] reason=80000021 qualification=0000000000000000 03:42:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1526.731612] IDTVectoring: info=00000000 errcode=00000000 [ 1526.763812] TSC Offset = 0xfffffccc6ef8332d [ 1526.768145] TPR Threshold = 0x00 [ 1526.771515] EPT pointer = 0x000000008930101e 03:42:49 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r2 = syz_open_dev$sndseq(0x0, 0x0, 0x1) r3 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x20000) ioctl$PPPIOCSNPMODE(r3, 0x4008744b, &(0x7f00000001c0)={0x0, 0x2}) dup2(r2, 0xffffffffffffffff) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) 03:42:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:49 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1527.322688] *** Guest State *** [ 1527.339683] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1527.388394] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1527.465792] CR3 = 0x0000000000000000 03:42:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1527.488706] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1527.532831] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:42:49 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:49 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) listxattr(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) [ 1527.593002] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1527.620299] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:42:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = dup2(r1, r1) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000040)={@broadcast, @remote, 0x0, 0x358}, 0x10) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x2b) fcntl$setstatus(r2, 0x4, 0x42803) [ 1527.653723] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1527.673746] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1527.713785] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1527.725212] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1527.763716] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1527.785459] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1527.799792] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1527.843737] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1527.883703] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1527.968344] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1528.013141] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1528.061814] Interruptibility = 00000000 ActivityState = 00000000 [ 1528.090992] *** Host State *** 03:42:50 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1528.115417] RIP = 0xffffffff811c8cac RSP = 0xffff88805a81f8c0 [ 1528.118820] *** Guest State *** [ 1528.143997] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1528.144237] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1528.176165] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1528.211068] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 03:42:50 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1528.219377] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1528.242612] CR0=0000000080050033 CR3=0000000060be4000 CR4=00000000001426e0 [ 1528.255384] CR3 = 0x0000000000000000 [ 1528.271747] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1528.278420] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1528.295930] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1528.325093] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1528.329439] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1528.357279] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1528.364595] *** Control State *** [ 1528.382412] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1528.396066] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1528.412392] EntryControls=0000d1ff ExitControls=002fefff [ 1528.424068] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) r3 = dup2(r2, r1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, &(0x7f0000000440)) [ 1528.450322] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1528.465310] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1528.503678] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1528.510353] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1528.526130] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1528.556087] reason=80000021 qualification=0000000000000000 [ 1528.571922] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1528.594074] IDTVectoring: info=00000000 errcode=00000000 [ 1528.603158] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1528.622870] TSC Offset = 0xfffffccb8e5e6015 [ 1528.646291] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1528.663798] TPR Threshold = 0x00 [ 1528.667283] EPT pointer = 0x000000008ac2901e [ 1528.678368] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1528.719812] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:42:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:51 executing program 2: r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f00000003c0)=0x7f, 0x4) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) write$P9_RWRITE(r1, &(0x7f0000000480)={0xb}, 0xfd8d) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000440)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x2007fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) [ 1528.768486] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1528.796636] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:42:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1528.844770] Interruptibility = 00000000 ActivityState = 00000000 [ 1528.882713] *** Host State *** [ 1528.903721] RIP = 0xffffffff811c8cac RSP = 0xffff888056c7f8c0 [ 1528.930134] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1528.963928] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1529.008982] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1529.028974] CR0=0000000080050033 CR3=000000008f314000 CR4=00000000001426e0 [ 1529.054479] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1529.079303] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1529.119316] *** Control State *** [ 1529.122874] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1529.170441] EntryControls=0000d1ff ExitControls=002fefff [ 1529.190594] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1529.218050] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1529.237701] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1529.253371] *** Guest State *** [ 1529.259071] reason=80000021 qualification=0000000000000000 [ 1529.270944] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1529.311680] IDTVectoring: info=00000000 errcode=00000000 [ 1529.338787] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1529.349088] TSC Offset = 0xfffffccb1f7ebfdd [ 1529.353490] TPR Threshold = 0x00 [ 1529.378207] EPT pointer = 0x000000005268901e [ 1529.382746] CR3 = 0x0000000000000000 [ 1529.388750] RSP = 0x0000000000000000 RIP = 0x0000000000000000 03:42:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") getrandom(0x0, 0x0, 0x65df82f21c4ee323) 03:42:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:51 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") clone(0x13102001fef, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) [ 1529.430773] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1529.451582] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1529.508805] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1529.531505] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1529.567338] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1529.608903] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1529.638917] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1529.677427] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1529.732133] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1529.760956] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:42:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1529.806228] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1529.843221] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:42:52 executing program 2: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000009fe8)={0xaa, 0x2}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000911000)={{&(0x7f00003e3000/0x1000)=nil, 0x1000}, 0x1}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00004b4000/0x1000)=nil, 0x1000}, 0x1}) clone(0x0, 0x0, 0x0, 0x0, 0x0) read(r0, &(0x7f00000000c0)=""/100, 0x64) [ 1529.888921] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1529.923781] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1529.974699] Interruptibility = 00000000 ActivityState = 00000000 [ 1530.005053] *** Host State *** [ 1530.013769] RIP = 0xffffffff811c8cac RSP = 0xffff888098e5f8c0 [ 1530.023794] *** Guest State *** [ 1530.027183] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1530.052787] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1530.074101] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1530.099030] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1530.114999] CR3 = 0x0000000000000000 [ 1530.124935] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1530.131134] CR0=0000000080050033 CR3=0000000089301000 CR4=00000000001426f0 [ 1530.163851] RSP = 0x0000000000000000 RIP = 0x0000000000000000 03:42:52 executing program 0: syz_execute_func(&(0x7f00000006c0)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") clone(0x4000003102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f00000003c0)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000180), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x176dd) clone(0x2102001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@initdev, 0x0, 0x2}, 0x20) sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) [ 1530.170050] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1530.178037] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1530.197129] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1530.214036] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1530.229727] *** Control State *** [ 1530.239602] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1530.244762] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1530.270505] EntryControls=0000d1ff ExitControls=002fefff [ 1530.289214] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1530.297988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1530.309734] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1530.323760] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1530.330347] reason=80000021 qualification=0000000000000000 [ 1530.342857] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1530.359208] IDTVectoring: info=00000000 errcode=00000000 [ 1530.370598] TSC Offset = 0xfffffcca83e30c11 [ 1530.388623] TPR Threshold = 0x00 [ 1530.394979] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1530.403329] EPT pointer = 0x0000000092e0001e [ 1530.433857] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:52 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1530.482484] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1530.506334] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1530.549496] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1530.573332] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:42:52 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") clone(0x13102001fef, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() msgrcv(0x0, &(0x7f00000001c0)={0x0, ""/164}, 0xac, 0x3, 0x2000) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x25) [ 1530.614886] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1530.651949] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1530.694941] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1530.707039] Interruptibility = 00000000 ActivityState = 00000000 [ 1530.713268] *** Host State *** [ 1530.745809] RIP = 0xffffffff811c8cac RSP = 0xffff88805c60f8c0 [ 1530.765046] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1530.797069] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1530.834044] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1530.860815] *** Guest State *** [ 1530.867266] CR0=0000000080050033 CR3=000000008d44f000 CR4=00000000001426e0 [ 1530.872520] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1530.893940] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1530.907401] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1530.923224] CR3 = 0x0000000000000000 [ 1530.933049] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1530.949107] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1530.966229] *** Control State *** [ 1530.969698] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1530.970924] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1530.998083] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1531.019650] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1531.024766] EntryControls=0000d1ff ExitControls=002fefff [ 1531.046010] *** Guest State *** [ 1531.049294] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1531.052471] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.059241] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1531.094786] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1531.101770] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.104696] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1531.130579] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1531.136062] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.163753] reason=80000021 qualification=0000000000000000 [ 1531.170075] IDTVectoring: info=00000000 errcode=00000000 [ 1531.184916] CR3 = 0x0000000000000000 [ 1531.188738] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1531.191194] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.213723] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1531.215178] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.220470] TSC Offset = 0xfffffcca1aeb138f [ 1531.253729] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1531.260495] TPR Threshold = 0x00 [ 1531.265023] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1531.267139] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1531.281082] EPT pointer = 0x000000008e6b501e [ 1531.294842] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:42:53 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x10800, 0x0) 03:42:53 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:42:53 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000940)='numa_maps\x00') mlock2(&(0x7f0000bbd000/0x1000)=nil, 0x1000, 0x0) sendfile(r0, r0, &(0x7f0000000000)=0x15000000, 0xffff) [ 1531.330011] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.343125] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1531.357524] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.400959] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.429978] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1531.431680] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1531.457143] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1531.483328] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1531.510868] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1531.539446] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1531.549946] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:42:53 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1531.585923] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1531.588684] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1531.627384] Interruptibility = 00000000 ActivityState = 00000000 [ 1531.637078] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1531.650363] *** Host State *** [ 1531.654867] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1531.667761] RIP = 0xffffffff811c8cac RSP = 0xffff88805f3678c0 [ 1531.678292] Interruptibility = 00000000 ActivityState = 00000000 [ 1531.699319] *** Host State *** [ 1531.700668] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1531.709147] RIP = 0xffffffff811c8cac RSP = 0xffff88808d61f8c0 [ 1531.734696] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1531.742465] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1531.759274] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1531.768388] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1531.787231] CR0=0000000080050033 CR3=0000000089301000 CR4=00000000001426f0 [ 1531.800019] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1531.815053] CR0=0000000080050033 CR3=0000000096284000 CR4=00000000001426e0 [ 1531.825999] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1531.851031] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1531.870245] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1531.877945] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1531.897803] *** Control State *** [ 1531.901376] *** Control State *** [ 1531.905391] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1531.910475] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1531.933163] EntryControls=0000d1ff ExitControls=002fefff [ 1531.939742] EntryControls=0000d1ff ExitControls=002fefff [ 1531.951731] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1531.960981] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1531.968180] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1531.982307] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1531.994602] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1532.009211] reason=80000021 qualification=0000000000000000 [ 1532.019078] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1532.034304] IDTVectoring: info=00000000 errcode=00000000 [ 1532.041513] reason=80000021 qualification=0000000000000000 [ 1532.044569] TSC Offset = 0xfffffcc9a9a93cd1 [ 1532.061184] IDTVectoring: info=00000000 errcode=00000000 [ 1532.063117] EPT pointer = 0x00000000a7eb101e [ 1532.080392] TSC Offset = 0xfffffcc9900aefeb [ 1532.095147] TPR Threshold = 0x00 03:42:54 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) read(r0, 0x0, 0x0) [ 1532.108960] EPT pointer = 0x000000008cfb501e 03:42:54 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:42:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:54 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x10800, 0x0) [ 1532.688962] *** Guest State *** [ 1532.695085] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1532.729758] *** Guest State *** [ 1532.739756] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1532.740593] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1532.763769] CR3 = 0x0000000000000000 [ 1532.767575] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1532.781306] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:42:55 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000b6dfc8)={0x500, 0x0, &(0x7f00008feff0)={&(0x7f0000000080)={0x2, 0x400000000000003, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[0x300000000000000, 0x0, 0x0, 0x6000000, 0x0, 0x0, 0x0, 0x40030000000000]}}}, @sadb_address={0x5, 0x9, 0xffffff80, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffff07}]}, 0x70}}, 0x0) [ 1532.823731] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1532.844237] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1532.853555] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:42:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1532.896469] CR3 = 0x0000000000000000 [ 1532.900287] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1532.921294] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1532.963836] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1532.973842] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1532.988455] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1533.001942] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1533.010418] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.025869] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.043994] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.058489] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.074819] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.093777] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.108280] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1533.134959] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1533.153745] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1533.164848] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:42:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1533.193707] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1533.202025] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1533.233917] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1533.244386] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1533.269313] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1533.269839] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1533.319555] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1533.328067] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1533.355231] Interruptibility = 00000000 ActivityState = 00000000 [ 1533.373947] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1533.378638] *** Host State *** [ 1533.400922] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1533.421152] Interruptibility = 00000000 ActivityState = 00000000 [ 1533.425929] RIP = 0xffffffff811c8cac RSP = 0xffff88808eea78c0 [ 1533.442516] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1533.452686] *** Host State *** [ 1533.459132] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1533.461722] RIP = 0xffffffff811c8cac RSP = 0xffff88805861f8c0 03:42:55 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000910eb8cc846d6921fb9f3800000000000000000000000000000000000700000000000000000000000000000000000000000000000000000000000000000044000500ac1414bb000000000000000000000000000000000000ffff00"/207], 0x1}}, 0x0) [ 1533.483293] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1533.491331] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1533.511139] CR0=0000000080050033 CR3=00000000a04c2000 CR4=00000000001426f0 03:42:55 executing program 0: getresuid(&(0x7f00000000c0), 0xfffffffffffffffd, 0x0) [ 1533.536270] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1533.537321] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1533.559265] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1533.583304] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1533.594974] CR0=0000000080050033 CR3=00000000a1ae9000 CR4=00000000001426e0 [ 1533.602162] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1533.603468] *** Control State *** [ 1533.629148] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1533.632493] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1533.663751] EntryControls=0000d1ff ExitControls=002fefff [ 1533.669207] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1533.676477] *** Control State *** [ 1533.680177] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1533.690441] EntryControls=0000d1ff ExitControls=002fefff [ 1533.707907] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1533.715149] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1533.750064] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1533.769422] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1533.784257] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1533.811077] reason=80000021 qualification=0000000000000000 [ 1533.825911] reason=80000021 qualification=0000000000000000 [ 1533.840201] IDTVectoring: info=00000000 errcode=00000000 [ 1533.853580] IDTVectoring: info=00000000 errcode=00000000 [ 1533.863256] TSC Offset = 0xfffffcc8a8086eeb [ 1533.875960] TPR Threshold = 0x00 [ 1533.882841] TSC Offset = 0xfffffcc8b00bbce3 [ 1533.892154] EPT pointer = 0x000000008e5de01e [ 1533.902456] EPT pointer = 0x00000000a968f01e 03:42:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:42:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:56 executing program 2: 03:42:56 executing program 0: 03:42:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:56 executing program 2: 03:42:56 executing program 0: [ 1534.599392] *** Guest State *** [ 1534.615733] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1534.656172] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1534.680816] CR3 = 0x0000000000000000 [ 1534.695192] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1534.719011] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1534.748902] *** Guest State *** [ 1534.759206] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1534.769498] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1534.793242] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1534.810281] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:42:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000280)) syz_execute_func(&(0x7f00000003c0)="410f01f964ff090f01d941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dccc4a180c6d100") clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setrlimit(0x10000000000007, &(0x7f0000000340)) socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x0) [ 1534.833410] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.851352] CR3 = 0x0000000000000000 [ 1534.861209] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1534.877105] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.902409] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1534.926480] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.945180] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1534.972054] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980075] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1534.980091] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980106] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980119] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980133] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980148] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980159] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1534.980174] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980184] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1534.980198] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1534.980207] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1534.980216] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1534.980224] Interruptibility = 00000000 ActivityState = 00000000 [ 1534.980228] *** Host State *** [ 1534.980237] RIP = 0xffffffff811c8cac RSP = 0xffff8880539478c0 [ 1534.980255] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1534.980266] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1534.980276] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1534.980287] CR0=0000000080050033 CR3=000000009eb7e000 CR4=00000000001426f0 [ 1534.980300] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1534.980310] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1534.980313] *** Control State *** 03:42:57 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) sendmsg$key(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0) readv(r0, &(0x7f0000000540)=[{&(0x7f0000000f40)=""/4096, 0x18}, {&(0x7f0000000100)=""/194, 0x18}, {&(0x7f0000000000)=""/3}, {&(0x7f0000000040)=""/39}, {&(0x7f0000000080)=""/41}, {&(0x7f0000000200)=""/218}, {&(0x7f0000000480)=""/169}], 0x339) write$uinput_user_dev(r0, &(0x7f0000001f40)={'syz0\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000]}, 0x45c) [ 1534.980321] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1534.980327] EntryControls=0000d1ff ExitControls=002fefff [ 1534.980338] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1534.980346] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1534.980359] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1534.980366] reason=80000021 qualification=0000000000000000 [ 1534.980372] IDTVectoring: info=00000000 errcode=00000000 [ 1534.980378] TSC Offset = 0xfffffcc79421b6df 03:42:57 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1534.980382] TPR Threshold = 0x00 [ 1534.980389] EPT pointer = 0x0000000091eee01e [ 1535.244734] *** Guest State *** [ 1535.251525] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1535.290986] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1535.319820] CR3 = 0x0000000000000000 [ 1535.331953] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.347726] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1535.367900] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1535.384886] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1535.393875] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1535.409661] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1535.418599] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1535.432107] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1535.463291] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.480748] input: syz1 as /devices/virtual/input/input17 [ 1535.488980] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1535.494727] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.513679] protocol 88fb is buggy, dev hsr_slave_0 [ 1535.518779] protocol 88fb is buggy, dev hsr_slave_1 [ 1535.522070] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1535.523960] protocol 88fb is buggy, dev hsr_slave_0 [ 1535.535375] protocol 88fb is buggy, dev hsr_slave_1 [ 1535.548079] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1535.569268] Interruptibility = 00000000 ActivityState = 00000000 [ 1535.575146] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.593682] protocol 88fb is buggy, dev hsr_slave_0 [ 1535.598750] protocol 88fb is buggy, dev hsr_slave_1 [ 1535.612597] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.621042] *** Host State *** [ 1535.635348] RIP = 0xffffffff811c8cac RSP = 0xffff88805c60f8c0 [ 1535.645909] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.659260] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1535.675089] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1535.692508] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1535.697858] *** Guest State *** [ 1535.706412] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1535.718249] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1535.725417] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1535.743408] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1535.753816] CR0=0000000080050033 CR3=000000007cfd2000 CR4=00000000001426e0 [ 1535.765081] CR3 = 0x0000000000000000 [ 1535.771125] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1535.773914] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1535.781179] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1535.791648] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1535.798930] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1535.804854] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1535.808199] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1535.821746] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1535.829558] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1535.839016] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1535.846799] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.849068] *** Control State *** [ 1535.855115] Interruptibility = 00000000 ActivityState = 00000000 [ 1535.865084] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.873248] *** Host State *** [ 1535.876943] RIP = 0xffffffff811c8cac RSP = 0xffff88809138f8c0 [ 1535.880473] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1535.888929] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.898098] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1535.904724] EntryControls=0000d1ff ExitControls=002fefff [ 1535.904908] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.910439] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1535.918540] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1535.933479] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1535.939732] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1535.948005] CR0=0000000080050033 CR3=00000000a0b79000 CR4=00000000001426f0 [ 1535.955340] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1535.963439] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1535.970376] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1535.970424] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1535.976722] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1535.993323] *** Control State *** [ 1535.997077] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1536.003800] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1536.010835] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1536.019548] EntryControls=0000d1ff ExitControls=002fefff [ 1536.019968] reason=80000021 qualification=0000000000000000 [ 1536.025203] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1536.039600] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1536.046778] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1536.053703] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1536.060509] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1536.063755] IDTVectoring: info=00000000 errcode=00000000 [ 1536.067119] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1536.080040] reason=80000021 qualification=0000000000000000 [ 1536.086565] IDTVectoring: info=00000000 errcode=00000000 [ 1536.088716] TSC Offset = 0xfffffcc7ae2fd727 [ 1536.092152] TSC Offset = 0xfffffcc74da995bd [ 1536.100900] Interruptibility = 00000000 ActivityState = 00000000 [ 1536.107416] TPR Threshold = 0x00 [ 1536.110982] *** Host State *** [ 1536.114512] EPT pointer = 0x0000000092ca401e [ 1536.116454] TPR Threshold = 0x00 [ 1536.119083] RIP = 0xffffffff811c8cac RSP = 0xffff88805d24f8c0 [ 1536.138519] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1536.143636] EPT pointer = 0x000000008cd8e01e [ 1536.153921] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1536.168367] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 03:42:58 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1536.187005] CR0=0000000080050033 CR3=000000008b69f000 CR4=00000000001426e0 [ 1536.203373] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 03:42:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:58 executing program 2: 03:42:58 executing program 0: 03:42:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1536.233688] protocol 88fb is buggy, dev hsr_slave_0 [ 1536.238787] protocol 88fb is buggy, dev hsr_slave_1 [ 1536.273786] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1536.283757] *** Control State *** [ 1536.287228] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 03:42:58 executing program 2: [ 1536.363236] EntryControls=0000d1ff ExitControls=002fefff [ 1536.403662] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1536.440071] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:42:58 executing program 0: [ 1536.467050] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1536.531273] reason=80000021 qualification=0000000000000000 [ 1536.572756] IDTVectoring: info=00000000 errcode=00000000 [ 1536.580643] TSC Offset = 0xfffffcc71096af3a [ 1536.611667] EPT pointer = 0x0000000098bc601e 03:42:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:59 executing program 2: 03:42:59 executing program 0: 03:42:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:42:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1537.193717] protocol 88fb is buggy, dev hsr_slave_0 [ 1537.198838] protocol 88fb is buggy, dev hsr_slave_1 03:42:59 executing program 2: [ 1537.368471] *** Guest State *** [ 1537.383707] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:42:59 executing program 0: [ 1537.419062] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1537.441036] CR3 = 0x0000000000000000 [ 1537.451764] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1537.521677] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1537.587041] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1537.622938] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:00 executing program 2: [ 1537.669930] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1537.723732] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1537.738627] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1537.773156] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1537.834997] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1537.857785] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1537.921351] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1537.946126] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:00 executing program 0: [ 1537.991385] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1538.025272] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1538.033076] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1538.053697] Interruptibility = 00000000 ActivityState = 00000000 [ 1538.084879] *** Host State *** 03:43:00 executing program 2: [ 1538.104501] RIP = 0xffffffff811c8cac RSP = 0xffff88808a5f78c0 [ 1538.143709] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1538.174018] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1538.204756] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1538.235199] CR0=0000000080050033 CR3=000000007de6c000 CR4=00000000001426e0 [ 1538.264753] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1538.294701] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1538.302149] *** Control State *** [ 1538.324842] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1538.344679] EntryControls=0000d1ff ExitControls=002fefff [ 1538.375162] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1538.394929] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1538.433765] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1538.442747] reason=80000021 qualification=0000000000000000 [ 1538.465982] IDTVectoring: info=00000000 errcode=00000000 [ 1538.480092] TSC Offset = 0xfffffcc62c7b2a19 [ 1538.521245] EPT pointer = 0x00000000a057901e 03:43:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:00 executing program 0: 03:43:00 executing program 2: 03:43:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1538.871597] *** Guest State *** [ 1538.883772] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1538.921728] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1538.951609] CR3 = 0x0000000000000000 03:43:01 executing program 2: [ 1538.966667] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1538.992124] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:01 executing program 0: [ 1539.023285] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1539.053977] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1539.081377] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1539.128733] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:01 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 1539.172700] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1539.229504] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1539.261749] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1539.303781] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:01 executing program 2: [ 1539.362308] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1539.435874] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1539.454941] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1539.471154] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:43:01 executing program 0: [ 1539.500669] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1539.537442] Interruptibility = 00000000 ActivityState = 00000000 03:43:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1539.582434] *** Host State *** [ 1539.594968] RIP = 0xffffffff811c8cac RSP = 0xffff8880a9bcf8c0 [ 1539.607977] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:43:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1539.626034] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1539.651665] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1539.713916] CR0=0000000080050033 CR3=00000000a96d9000 CR4=00000000001426f0 [ 1539.744132] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1539.773698] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1539.779914] *** Control State *** [ 1539.795355] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1539.819304] EntryControls=0000d1ff ExitControls=002fefff [ 1539.837615] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1539.873709] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1539.903794] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1539.916126] reason=80000021 qualification=0000000000000000 [ 1539.946249] IDTVectoring: info=00000000 errcode=00000000 [ 1539.963677] TSC Offset = 0xfffffcc5634087b4 [ 1539.978086] TPR Threshold = 0x00 [ 1539.989396] EPT pointer = 0x000000009c15e01e 03:43:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:02 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 03:43:02 executing program 2: 03:43:02 executing program 0: 03:43:02 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 03:43:02 executing program 2: 03:43:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:02 executing program 0: 03:43:03 executing program 2: 03:43:03 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:03 executing program 0: 03:43:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1541.013437] *** Guest State *** [ 1541.021438] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1541.022415] *** Guest State *** [ 1541.051730] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1541.087549] CR3 = 0x0000000000000000 [ 1541.089762] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1541.099448] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1541.121195] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1541.129997] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1541.143138] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1541.164251] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1541.183953] CR3 = 0x0000000000000000 03:43:03 executing program 2: [ 1541.190327] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.208719] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1541.226301] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.234562] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1541.255700] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1541.262966] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.279203] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.288508] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1541.308595] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.324720] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:03 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1541.339593] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1541.353744] net_ratelimit: 18 callbacks suppressed [ 1541.353750] protocol 88fb is buggy, dev hsr_slave_0 [ 1541.357933] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.362391] protocol 88fb is buggy, dev hsr_slave_1 [ 1541.370930] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:43:03 executing program 0: [ 1541.424108] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.449499] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1541.457759] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.476640] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1541.486062] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1541.501587] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1541.512969] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:03 executing program 2: [ 1541.526636] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1541.551598] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1541.558295] Interruptibility = 00000000 ActivityState = 00000000 [ 1541.573475] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1541.585097] *** Host State *** [ 1541.597480] RIP = 0xffffffff811c8cac RSP = 0xffff8880a93b78c0 [ 1541.615533] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1541.618302] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1541.649605] *** Guest State *** [ 1541.662200] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1541.665275] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1541.676283] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1541.703892] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1541.712285] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1541.731314] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1541.732939] CR0=0000000080050033 CR3=00000000968ca000 CR4=00000000001426e0 [ 1541.753721] protocol 88fb is buggy, dev hsr_slave_0 [ 1541.758839] protocol 88fb is buggy, dev hsr_slave_1 [ 1541.758931] CR3 = 0x0000000000000000 [ 1541.763981] protocol 88fb is buggy, dev hsr_slave_0 [ 1541.772811] protocol 88fb is buggy, dev hsr_slave_1 [ 1541.793711] Interruptibility = 00000000 ActivityState = 00000000 [ 1541.800127] *** Host State *** [ 1541.802965] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1541.803336] RIP = 0xffffffff811c8cac RSP = 0xffff888056a178c0 [ 1541.803366] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1541.803377] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1541.803386] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1541.803402] CR0=0000000080050033 CR3=000000007fa42000 CR4=00000000001426f0 [ 1541.830722] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1541.843676] protocol 88fb is buggy, dev hsr_slave_0 [ 1541.843737] protocol 88fb is buggy, dev hsr_slave_1 [ 1541.893787] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1541.900889] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1541.902438] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1541.910182] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1541.933760] *** Control State *** 03:43:04 executing program 2: [ 1541.948960] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1541.952848] *** Control State *** [ 1541.963885] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1541.969476] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1541.980937] EntryControls=0000d1ff ExitControls=002fefff [ 1541.993495] EntryControls=0000d1ff ExitControls=002fefff [ 1541.994696] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1542.015065] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1542.018536] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1542.029312] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1542.042269] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1542.047661] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1542.068540] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1542.073041] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1542.091157] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1542.096336] reason=80000021 qualification=0000000000000000 [ 1542.098041] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1542.123485] IDTVectoring: info=00000000 errcode=00000000 [ 1542.141317] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1542.141647] TSC Offset = 0xfffffcc43f416d3f [ 1542.150783] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1542.164527] reason=80000021 qualification=0000000000000000 [ 1542.170863] IDTVectoring: info=00000000 errcode=00000000 [ 1542.178885] TPR Threshold = 0x00 [ 1542.189268] EPT pointer = 0x000000009e92601e [ 1542.200745] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1542.210924] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1542.223726] TSC Offset = 0xfffffcc434f22328 [ 1542.229257] TPR Threshold = 0x00 [ 1542.232712] EPT pointer = 0x0000000081b1901e 03:43:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1542.248527] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1542.273807] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:43:04 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:04 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:04 executing program 0: [ 1542.309652] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:43:04 executing program 2: [ 1542.360869] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1542.420941] Interruptibility = 00000000 ActivityState = 00000000 [ 1542.439202] *** Host State *** [ 1542.442509] RIP = 0xffffffff811c8cac RSP = 0xffff8880a9bcf8c0 [ 1542.473958] protocol 88fb is buggy, dev hsr_slave_0 [ 1542.479036] protocol 88fb is buggy, dev hsr_slave_1 [ 1542.486225] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1542.513750] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 03:43:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1542.543689] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1542.559432] CR0=0000000080050033 CR3=00000000999eb000 CR4=00000000001426e0 [ 1542.598635] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1542.619021] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1542.649934] *** Control State *** [ 1542.668670] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1542.709212] EntryControls=0000d1ff ExitControls=002fefff [ 1542.721945] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1542.752580] *** Guest State *** [ 1542.753693] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1542.766527] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1542.793149] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1542.808776] reason=80000021 qualification=0000000000000000 [ 1542.823850] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1542.828270] IDTVectoring: info=00000000 errcode=00000000 [ 1542.843950] CR3 = 0x0000000000000000 [ 1542.854780] TSC Offset = 0xfffffcc3e4a584c3 [ 1542.857313] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1542.864879] EPT pointer = 0x000000009eb7e01e [ 1542.885171] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:05 executing program 0: 03:43:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:05 executing program 2: [ 1542.924803] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1542.951975] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1542.995449] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1543.053854] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:05 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1543.096356] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1543.143811] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1543.171306] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:05 executing program 0: [ 1543.207106] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1543.240949] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1543.293720] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1543.301705] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:43:05 executing program 2: [ 1543.364014] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1543.406411] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1543.463655] Interruptibility = 00000000 ActivityState = 00000000 [ 1543.469894] *** Host State *** [ 1543.473097] RIP = 0xffffffff811c8cac RSP = 0xffff8880526178c0 [ 1543.493741] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1543.504760] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1543.539264] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1543.559138] CR0=0000000080050033 CR3=000000008f4d8000 CR4=00000000001426e0 03:43:05 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1543.583790] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1543.590468] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1543.619985] *** Control State *** [ 1543.633839] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1543.640791] EntryControls=0000d1ff ExitControls=002fefff [ 1543.651329] *** Guest State *** [ 1543.665387] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1543.676008] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1543.694007] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1543.714012] CR3 = 0x0000000000000000 [ 1543.721383] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1543.724735] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1543.740542] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1543.763719] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1543.773903] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1543.809609] reason=80000021 qualification=0000000000000000 [ 1543.819097] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1543.834088] IDTVectoring: info=00000000 errcode=00000000 [ 1543.839538] TSC Offset = 0xfffffcc34b39669d [ 1543.883639] TPR Threshold = 0x00 [ 1543.887060] EPT pointer = 0x00000000a925d01e [ 1543.892604] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1543.953740] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1543.961783] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:06 executing program 0: 03:43:06 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 03:43:06 executing program 2: 03:43:06 executing program 0: [ 1544.063880] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1544.093497] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1544.134647] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1544.168705] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:43:06 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1544.184019] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:06 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 03:43:06 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000840)=""/148, 0x94}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/arp\x00') preadv(r0, &(0x7f0000000700), 0x31f, 0x10400003) getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) syz_open_pts(0xffffffffffffffff, 0x0) [ 1544.248599] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1544.268509] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1544.323877] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1544.363950] Interruptibility = 00000000 ActivityState = 00000000 [ 1544.403965] *** Host State *** [ 1544.407299] RIP = 0xffffffff811c8cac RSP = 0xffff88805e35f8c0 [ 1544.445373] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1544.459055] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1544.502985] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1544.527157] CR0=0000000080050033 CR3=00000000a9617000 CR4=00000000001426e0 [ 1544.565040] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1544.592747] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1544.600847] *** Control State *** [ 1544.601637] *** Guest State *** [ 1544.614316] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1544.627666] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1544.649373] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1544.650917] EntryControls=0000d1ff ExitControls=002fefff [ 1544.680766] CR3 = 0x0000000000000000 [ 1544.699033] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1544.704283] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1544.722608] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1544.738934] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1544.745883] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1544.758568] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1544.768981] reason=80000021 qualification=0000000000000000 [ 1544.786503] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1544.794914] IDTVectoring: info=00000000 errcode=00000000 [ 1544.806558] TSC Offset = 0xfffffcc2d60ede14 [ 1544.816816] TPR Threshold = 0x00 [ 1544.821557] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1544.843800] EPT pointer = 0x00000000a1f8a01e [ 1544.869956] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:07 executing program 0: r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f00000003c0)=0x7f, 0x4) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) write$P9_RWRITE(r1, &(0x7f0000000480)={0xb}, 0xfd8d) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000440)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x2007fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 03:43:07 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:07 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 1544.913270] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1544.981941] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1545.037053] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1545.077055] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1545.153761] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1545.203765] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1545.234685] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1545.293008] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1545.327603] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1545.383983] Interruptibility = 00000000 ActivityState = 00000000 [ 1545.419468] *** Host State *** [ 1545.437683] RIP = 0xffffffff811c8cac RSP = 0xffff8880526178c0 [ 1545.472387] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1545.483878] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1545.491967] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1545.517313] CR0=0000000080050033 CR3=00000000a83d1000 CR4=00000000001426f0 [ 1545.547690] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1545.606616] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1545.628767] *** Control State *** [ 1545.663858] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1545.704797] EntryControls=0000d1ff ExitControls=002fefff [ 1545.750420] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1545.800317] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1545.813754] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1545.820441] reason=80000021 qualification=0000000000000000 [ 1545.843698] IDTVectoring: info=00000000 errcode=00000000 03:43:08 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1545.849258] TSC Offset = 0xfffffcc24e8fe5f4 [ 1545.857756] TPR Threshold = 0x00 [ 1545.873716] EPT pointer = 0x000000009125001e 03:43:08 executing program 2: perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) syz_open_dev$vcsa(0x0, 0x5, 0x20000) 03:43:08 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:08 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:08 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r2 = memfd_create(0x0, 0x0) r3 = syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x1) r4 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x0) ioctl$PPPIOCSNPMODE(r4, 0x4008744b, &(0x7f00000001c0)={0x82ff}) dup2(r3, r2) connect$inet(r0, &(0x7f0000000000)={0x2, 0x10004e20, @dev}, 0x10) rt_tgsigqueueinfo(0x0, 0x0, 0x1b, &(0x7f0000000240)={0x0, 0x7ff, 0x20}) 03:43:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:08 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:08 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet(0x2, 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) read$FUSE(r0, 0x0, 0x0) write$FUSE_ENTRY(0xffffffffffffffff, 0x0, 0x0) 03:43:08 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1546.635768] net_ratelimit: 18 callbacks suppressed [ 1546.635884] protocol 88fb is buggy, dev hsr_slave_0 [ 1546.646776] protocol 88fb is buggy, dev hsr_slave_1 03:43:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1547.206918] kauditd_printk_skb: 26 callbacks suppressed [ 1547.206929] audit: type=1400 audit(2000000589.520:748): avc: denied { map } for pid=26530 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.304008] audit: type=1400 audit(2000000589.550:749): avc: denied { map } for pid=26530 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.369077] audit: type=1400 audit(2000000589.550:750): avc: denied { map } for pid=26530 comm="modprobe" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.454890] audit: type=1400 audit(2000000589.550:751): avc: denied { map } for pid=26530 comm="modprobe" path="/lib/x86_64-linux-gnu/ld-2.13.so" dev="sda1" ino=2668 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.575218] audit: type=1400 audit(2000000589.580:752): avc: denied { map } for pid=26530 comm="modprobe" path="/etc/ld.so.cache" dev="sda1" ino=2251 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.601887] *** Guest State *** [ 1547.603745] protocol 88fb is buggy, dev hsr_slave_0 [ 1547.610270] protocol 88fb is buggy, dev hsr_slave_1 [ 1547.623407] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1547.636798] *** Guest State *** [ 1547.649511] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1547.671097] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1547.690681] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1547.712162] CR3 = 0x0000000000000000 [ 1547.731429] audit: type=1400 audit(2000000589.610:753): avc: denied { map } for pid=26530 comm="modprobe" path="/lib/x86_64-linux-gnu/libkmod.so.2.1.3" dev="sda1" ino=2811 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.732835] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1547.762143] CR3 = 0x0000000000000000 [ 1547.788675] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1547.829708] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(r2, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1547.875117] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1547.887523] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1547.891274] audit: type=1400 audit(2000000589.610:754): avc: denied { map } for pid=26530 comm="modprobe" path="/lib/x86_64-linux-gnu/libkmod.so.2.1.3" dev="sda1" ino=2811 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1547.920662] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1547.928671] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1547.947518] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1547.971651] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1547.988085] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1547.996671] protocol 88fb is buggy, dev hsr_slave_0 [ 1547.996938] protocol 88fb is buggy, dev hsr_slave_1 [ 1547.997309] protocol 88fb is buggy, dev hsr_slave_0 [ 1547.997493] protocol 88fb is buggy, dev hsr_slave_1 [ 1548.035420] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.044997] audit: type=1400 audit(2000000589.650:755): avc: denied { map } for pid=26530 comm="modprobe" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1548.066137] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.083692] protocol 88fb is buggy, dev hsr_slave_0 [ 1548.088800] protocol 88fb is buggy, dev hsr_slave_1 03:43:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1548.127397] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.146365] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.193742] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.201920] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.213191] audit: type=1400 audit(2000000589.650:756): avc: denied { map } for pid=26530 comm="modprobe" path="/lib/x86_64-linux-gnu/libc-2.13.so" dev="sda1" ino=2784 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 03:43:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1548.244028] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.274233] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1548.300201] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.311080] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1548.334965] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1548.353793] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1548.374691] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1548.375472] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1548.382744] audit: type=1400 audit(2000000589.840:757): avc: denied { map } for pid=26536 comm="modprobe" path="/bin/kmod" dev="sda1" ino=1440 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1548.412786] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1548.419895] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1548.439025] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1548.453763] Interruptibility = 00000000 ActivityState = 00000000 [ 1548.467813] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1548.493697] *** Host State *** [ 1548.496975] RIP = 0xffffffff811c8cac RSP = 0xffff888055b378c0 [ 1548.515983] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1548.522772] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1548.532859] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1548.555640] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1548.559031] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1548.583687] Interruptibility = 00000000 ActivityState = 00000000 [ 1548.590447] CR0=0000000080050033 CR3=000000009eb85000 CR4=00000000001426e0 [ 1548.619600] *** Host State *** [ 1548.622930] RIP = 0xffffffff811c8cac RSP = 0xffff888090bcf8c0 [ 1548.629300] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1548.641779] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1548.644096] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1548.671738] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1548.678597] *** Control State *** [ 1548.697074] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1548.705227] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1548.728381] EntryControls=0000d1ff ExitControls=002fefff [ 1548.731237] CR0=0000000080050033 CR3=0000000099656000 CR4=00000000001426e0 [ 1548.743806] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1548.762554] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1548.773127] *** Guest State *** [ 1548.777849] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1548.787069] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1548.801731] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1548.809561] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1548.813098] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:43:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1548.828370] reason=80000021 qualification=0000000000000000 [ 1548.841583] IDTVectoring: info=00000000 errcode=00000000 [ 1548.849503] CR3 = 0x0000000000000000 [ 1548.856777] TSC Offset = 0xfffffcc0b606b581 [ 1548.861246] *** Control State *** [ 1548.862464] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1548.869890] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1548.873790] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1548.885574] TPR Threshold = 0x00 [ 1548.893706] EPT pointer = 0x0000000088b4601e [ 1548.905721] EntryControls=0000d1ff ExitControls=002fefff [ 1548.905853] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:43:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1548.947539] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1548.953529] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1548.970536] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.990192] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1548.996868] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1548.996926] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.031696] *** Guest State *** [ 1549.035244] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.036636] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1549.052198] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1549.052207] reason=80000021 qualification=0000000000000000 [ 1549.052213] IDTVectoring: info=00000000 errcode=00000000 [ 1549.052218] TSC Offset = 0xfffffcc0b55981e9 [ 1549.052225] EPT pointer = 0x00000000964d901e 03:43:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1549.103919] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.116981] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1549.143453] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1549.160555] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1549.170135] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1549.193392] CR3 = 0x0000000000000000 [ 1549.205120] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1549.208630] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1549.235710] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1549.238462] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1549.260490] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1549.291095] Interruptibility = 00000000 ActivityState = 00000000 [ 1549.310241] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1549.312903] *** Host State *** [ 1549.343558] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1549.348605] RIP = 0xffffffff811c8cac RSP = 0xffff88808b8478c0 03:43:11 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1549.378765] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1549.383906] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.421021] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1549.461197] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1549.481669] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.496792] CR0=0000000080050033 CR3=000000008b636000 CR4=00000000001426e0 [ 1549.514467] *** Guest State *** [ 1549.517998] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1549.526080] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1549.546197] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1549.549576] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.563756] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1549.565382] CR3 = 0x0000000000000000 [ 1549.584105] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1549.585646] *** Control State *** [ 1549.598488] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1549.613532] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1549.614687] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.629533] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1549.639041] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1549.648318] EntryControls=0000d1ff ExitControls=002fefff [ 1549.661852] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1549.671581] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.688316] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1549.692270] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.698712] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.703095] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1549.703112] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1549.703126] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1549.736048] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1549.742637] reason=80000021 qualification=0000000000000000 [ 1549.745116] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.771176] IDTVectoring: info=00000000 errcode=00000000 [ 1549.780594] TSC Offset = 0xfffffcc0186d1fee [ 1549.792577] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.807786] TPR Threshold = 0x00 [ 1549.818562] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1549.835661] EPT pointer = 0x000000008ba6e01e [ 1549.851283] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1549.879438] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1549.893252] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:12 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1549.903948] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1549.920098] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1549.926786] Interruptibility = 00000000 ActivityState = 00000000 03:43:12 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:43:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1549.969352] *** Host State *** [ 1549.974646] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1549.978167] RIP = 0xffffffff811c8cac RSP = 0xffff888081bd78c0 [ 1550.006813] *** Guest State *** [ 1550.010127] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1550.021135] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1550.046347] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1550.061765] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1550.090113] FSBase=00007f5310346700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1550.098376] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1550.099689] CR3 = 0x0000000000000000 [ 1550.108937] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1550.126678] CR0=0000000080050033 CR3=000000005af73000 CR4=00000000001426f0 [ 1550.138293] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1550.147723] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1550.164972] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1550.166053] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1550.183799] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1550.205697] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1550.219201] Interruptibility = 00000000 ActivityState = 00000000 [ 1550.242437] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1550.249724] *** Host State *** [ 1550.263947] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.272078] *** Control State *** [ 1550.276722] RIP = 0xffffffff811c8cac RSP = 0xffff888090bcf8c0 [ 1550.288915] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1550.296699] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1550.303820] EntryControls=0000d1ff ExitControls=002fefff [ 1550.309519] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.318700] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1550.339533] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1550.343755] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1550.358833] CR0=0000000080050033 CR3=000000007e092000 CR4=00000000001426e0 [ 1550.360724] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1550.372830] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.380371] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1550.397539] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1550.404536] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.412564] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1550.440342] *** Control State *** [ 1550.442136] reason=80000021 qualification=0000000000000000 [ 1550.459682] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.460335] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1550.473681] IDTVectoring: info=00000000 errcode=00000000 [ 1550.480259] TSC Offset = 0xfffffcbffa9b61bf [ 1550.510256] EntryControls=0000d1ff ExitControls=002fefff [ 1550.516894] EPT pointer = 0x00000000928cc01e [ 1550.521437] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1550.546897] *** Guest State *** [ 1550.560524] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1550.572776] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1550.584349] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1550.604032] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 03:43:12 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:43:12 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 1550.611722] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1550.649342] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1550.659151] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1550.689760] reason=80000021 qualification=0000000000000000 [ 1550.697283] CR3 = 0x0000000000000000 [ 1550.701121] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1550.710329] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1550.723742] IDTVectoring: info=00000000 errcode=00000000 [ 1550.729294] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1550.736889] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1550.753839] TSC Offset = 0xfffffcbfae88127a [ 1550.770287] TPR Threshold = 0x00 [ 1550.774761] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1550.782346] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1550.793942] EPT pointer = 0x000000006309f01e [ 1550.813750] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1550.824743] Interruptibility = 00000000 ActivityState = 00000000 [ 1550.863733] *** Host State *** [ 1550.877156] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.892445] RIP = 0xffffffff811c8cac RSP = 0xffff8880a9bcf8c0 03:43:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x0, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1550.914912] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1550.921478] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1550.963771] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1550.965117] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1550.971592] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1550.971607] CR0=0000000080050033 CR3=000000009fae3000 CR4=00000000001426e0 [ 1550.971620] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1550.971635] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1551.027001] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.065332] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:13 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1551.096834] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1551.140394] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1551.163804] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1551.171837] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1551.184671] *** Control State *** [ 1551.188146] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1551.227487] EntryControls=0000d1ff ExitControls=002fefff [ 1551.246278] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1551.254931] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1551.283897] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1551.298239] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1551.306082] Interruptibility = 00000000 ActivityState = 00000000 [ 1551.311139] *** Guest State *** [ 1551.317036] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1551.332501] *** Host State *** [ 1551.340307] RIP = 0xffffffff811c8cac RSP = 0xffff88808ef7f8c0 [ 1551.346767] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1551.355983] reason=80000021 qualification=0000000000000000 [ 1551.379225] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1551.384115] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1551.394967] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1551.407314] IDTVectoring: info=00000000 errcode=00000000 [ 1551.420419] TSC Offset = 0xfffffcbf6abd5129 [ 1551.435987] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1551.444790] EPT pointer = 0x0000000081a6501e [ 1551.455615] CR3 = 0x0000000000000000 [ 1551.459528] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1551.466207] CR0=0000000080050033 CR3=0000000099656000 CR4=00000000001426f0 [ 1551.494003] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1551.511061] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1551.530314] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 03:43:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1551.544221] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1551.561963] *** Control State *** [ 1551.576921] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1551.594752] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1551.603537] *** Guest State *** [ 1551.612541] EntryControls=0000d1ff ExitControls=002fefff [ 1551.619409] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1551.634286] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1551.641384] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.655407] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1551.669101] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1551.679499] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.693000] CR3 = 0x0000000000000000 [ 1551.698911] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1551.710550] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1551.720011] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.732885] reason=80000021 qualification=0000000000000000 [ 1551.742981] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1551.753712] net_ratelimit: 12 callbacks suppressed [ 1551.753719] protocol 88fb is buggy, dev hsr_slave_0 [ 1551.758712] protocol 88fb is buggy, dev hsr_slave_1 [ 1551.770145] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.779458] IDTVectoring: info=00000000 errcode=00000000 [ 1551.785384] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1551.792342] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.804580] TSC Offset = 0xfffffcbf1f25c0df [ 1551.813574] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1551.823129] TPR Threshold = 0x00 [ 1551.831321] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1551.842312] EPT pointer = 0x00000000997f501e [ 1551.852193] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.872739] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1551.892165] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:14 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1551.931393] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1551.953859] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:14 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="31d96da88b0cce5062747ce237ca24f05b05df66b34814c1cdb2db3642a7c880224c03d6cffd67b36c7f1a51ae9aeaa3892b040ba2105d77d4e4579d745ad601f19c26d1260bcd5435ae4ad35d123f7e809a7b0576431fde9f78c3260a3837b52ef6437c404147add96892a9d3a67dcf93c198c3b7727cd266c20c5e584c28ae0843064b8f7f199db8641f71a407775e0090bbedee63a4640e1f012e5ca95bd14b5aa0da642b552ae4aa2b869458dec283c16f25c67068fc528a793f75c81acac8ee6596d79c449ade5eeee332c460ebc0d46c076e871b6426d521c571a95d0fa800de30a110e719ffde8f103773daaaec8c313aa3be0bdaa6e7e796df3975a8e37aee6d10579f8afe6552f187c262b32eced8b5f01e40ab8904400f00000000000000000000000000000058b4721949da012002cb7f4ac8fe195c1388861be8cd45020083b0089b23f86603321faf83e794bea1ece8051e9996306347bd562aa2437fa6bdb57086302926b8af069b8d331ebf5c0e1a7f163e6d711af330efdfae413fafef9acf1d53e6aaf4f2dec9ddfb4ca321583e35a14a92e82bdbea3c127a033b32059fbadce23a3e87957f8238886aa9380000000018888c4c20ba104342e8c9d85a9dcf06abbb7a2905d37839bff6f8641ebce172c60a8d368cd4a94af484749dc4ccdd380bbf5d501302d50e79d3536eab5a12abdd347dac985c4349ec712661df947315514e45a515417e6b00000000000000002bdacdb2631c83a90dbca3aa7e5936f8aa413a75c7780309e1c178bce65ed205154ab4f55241cd2b6e83b29fc6cefe050d7d562360718e25bbdb2d34264d6a741cbbed50422f5d") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1551.982011] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1551.993322] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1552.028303] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1552.035684] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1552.076781] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1552.084011] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1552.117703] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1552.124001] Interruptibility = 00000000 ActivityState = 00000000 [ 1552.133990] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1552.153673] protocol 88fb is buggy, dev hsr_slave_0 [ 1552.158804] protocol 88fb is buggy, dev hsr_slave_1 [ 1552.163993] protocol 88fb is buggy, dev hsr_slave_0 [ 1552.169043] protocol 88fb is buggy, dev hsr_slave_1 [ 1552.183665] *** Host State *** [ 1552.190344] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1552.205070] RIP = 0xffffffff811c8cac RSP = 0xffff888052eb78c0 [ 1552.233673] protocol 88fb is buggy, dev hsr_slave_0 [ 1552.238754] protocol 88fb is buggy, dev hsr_slave_1 [ 1552.266260] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1552.279067] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1552.303908] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1552.309489] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1552.333693] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1552.343956] CR0=0000000080050033 CR3=000000008dc99000 CR4=00000000001426e0 [ 1552.365441] Interruptibility = 00000000 ActivityState = 00000000 [ 1552.370010] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 03:43:14 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1552.398325] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1552.409312] *** Control State *** [ 1552.418178] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1552.424753] *** Host State *** [ 1552.432964] RIP = 0xffffffff811c8cac RSP = 0xffff8880588578c0 [ 1552.441518] EntryControls=0000d1ff ExitControls=002fefff [ 1552.442493] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1552.469932] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1552.473959] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1552.507946] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1552.532154] CR0=0000000080050033 CR3=0000000081b19000 CR4=00000000001426f0 [ 1552.536375] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1552.567299] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1552.598907] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1552.605302] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1552.614263] reason=80000021 qualification=0000000000000000 03:43:14 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0)="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") r4 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r4, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r5 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r4, r5, &(0x7f00000000c0)=0x202, 0x8) [ 1552.641644] *** Control State *** [ 1552.650585] IDTVectoring: info=00000000 errcode=00000000 [ 1552.694790] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1552.713226] TSC Offset = 0xfffffcbeb3fd17dc [ 1552.723582] EntryControls=0000d1ff ExitControls=002fefff [ 1552.736660] EPT pointer = 0x00000000a0a2401e [ 1552.773726] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1552.783035] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1552.796564] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1552.811122] reason=80000021 qualification=0000000000000000 [ 1552.824384] IDTVectoring: info=00000000 errcode=00000000 [ 1552.837192] TSC Offset = 0xfffffcbe912b3595 [ 1552.855887] TPR Threshold = 0x00 [ 1552.868197] EPT pointer = 0x0000000095efd01e 03:43:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1552.873701] protocol 88fb is buggy, dev hsr_slave_0 [ 1552.878764] protocol 88fb is buggy, dev hsr_slave_1 03:43:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x0, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x0, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1553.519066] *** Guest State *** [ 1553.535214] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1553.560776] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1553.592819] CR3 = 0x0000000000000000 03:43:15 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x62, 0x0) [ 1553.605913] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1553.628754] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1553.651558] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1553.673140] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1553.700855] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1553.727627] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1553.773907] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1553.803884] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1553.838966] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1553.874227] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x0, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1553.904208] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1553.912525] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1553.967675] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1554.025620] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:43:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1554.082441] *** Guest State *** [ 1554.088096] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1554.098193] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1554.147566] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1554.157031] Interruptibility = 00000000 ActivityState = 00000000 [ 1554.183840] *** Host State *** [ 1554.187137] RIP = 0xffffffff811c8cac RSP = 0xffff888056b3f8c0 03:43:16 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(0xffffffffffffffff, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x62, 0x0) [ 1554.203786] CR3 = 0x0000000000000000 [ 1554.209537] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1554.225210] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1554.249519] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1554.259900] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1554.287507] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1554.294885] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1554.303278] CR0=0000000080050033 CR3=0000000098314000 CR4=00000000001426e0 [ 1554.317149] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1554.338880] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1554.352550] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.371400] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1554.383293] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.400561] *** Control State *** 03:43:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1554.411077] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1554.427437] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.458570] EntryControls=0000d1ff ExitControls=002fefff [ 1554.483929] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1554.484500] *** Guest State *** [ 1554.491182] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.513894] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1554.535094] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.549638] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1554.558563] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1554.571317] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1554.580718] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1554.597577] *** Guest State *** [ 1554.603736] reason=80000021 qualification=0000000000000000 [ 1554.610242] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1554.610297] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1554.619662] CR3 = 0x0000000000000000 [ 1554.632366] IDTVectoring: info=00000000 errcode=00000000 [ 1554.654290] TSC Offset = 0xfffffcbd87d8a8ca [ 1554.665503] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1554.671663] EPT pointer = 0x000000008b02701e [ 1554.683918] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1554.692780] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1554.694267] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1554.713817] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1554.727953] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1554.749956] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1554.761453] CR3 = 0x0000000000000000 03:43:17 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1554.766333] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1554.772753] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1554.779453] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1554.799698] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1554.810909] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1554.828641] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.840753] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1554.848695] Interruptibility = 00000000 ActivityState = 00000000 [ 1554.868341] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.878089] *** Host State *** [ 1554.879408] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1554.884735] RIP = 0xffffffff811c8cac RSP = 0xffff8880a93a78c0 [ 1554.901380] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.919931] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1554.929024] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.929146] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.956183] FSBase=00007f5310346700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1554.970573] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1554.990676] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.000670] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1555.001612] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.020678] CR0=0000000080050033 CR3=000000008306b000 CR4=00000000001426e0 [ 1555.032578] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1555.052794] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.053783] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1555.070426] *** Guest State *** [ 1555.077264] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.083627] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.086570] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1555.097963] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.114163] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1555.128502] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1555.139439] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1555.146389] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1555.151417] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1555.169173] *** Control State *** [ 1555.172631] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1555.183372] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1555.189152] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.191664] CR3 = 0x0000000000000000 [ 1555.217304] *** Guest State *** [ 1555.220806] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1555.228430] EntryControls=0000d1ff ExitControls=002fefff [ 1555.228789] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1555.235078] Interruptibility = 00000000 ActivityState = 00000000 [ 1555.248629] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1555.258909] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1555.259451] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1555.265895] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1555.280417] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1555.288585] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1555.298871] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1555.303771] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1555.309104] *** Host State *** [ 1555.318167] CR3 = 0x0000000000000000 [ 1555.322150] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1555.322577] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1555.328672] RIP = 0xffffffff811c8cac RSP = 0xffff88806178f8c0 [ 1555.341313] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.349866] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1555.359093] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.361352] Interruptibility = 00000000 ActivityState = 00000000 [ 1555.367541] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1555.380418] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1555.387599] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.388566] *** Host State *** [ 1555.396464] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1555.410208] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.410491] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1555.428641] RIP = 0xffffffff811c8cac RSP = 0xffff88805f16f8c0 [ 1555.430031] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1555.447154] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1555.449033] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.461899] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.465094] FSBase=00007f33db0b5700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1555.473930] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.491776] reason=80000021 qualification=0000000000000000 [ 1555.494072] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1555.505880] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.508926] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1555.523797] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.530890] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1555.531912] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.548189] CR0=0000000080050033 CR3=000000008add0000 CR4=00000000001426f0 [ 1555.557057] IDTVectoring: info=00000000 errcode=00000000 [ 1555.560864] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.563766] CR0=0000000080050033 CR3=000000008c31e000 CR4=00000000001426f0 [ 1555.572871] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1555.587291] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1555.589975] TSC Offset = 0xfffffcbd42384192 [ 1555.598781] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1555.609805] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1555.614886] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1555.618397] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1555.624494] TPR Threshold = 0x00 [ 1555.632740] *** Control State *** [ 1555.637630] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1555.637662] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1555.654819] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.655937] *** Control State *** [ 1555.666510] Interruptibility = 00000000 ActivityState = 00000000 [ 1555.672314] EPT pointer = 0x000000005b3bc01e [ 1555.675219] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1555.686626] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1555.689727] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1555.698120] *** Host State *** [ 1555.708736] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1555.717909] EntryControls=0000d1ff ExitControls=002fefff [ 1555.717921] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1555.717929] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1555.717936] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1555.717944] reason=80000021 qualification=0000000000000000 [ 1555.717950] IDTVectoring: info=00000000 errcode=00000000 [ 1555.717956] TSC Offset = 0xfffffcbcf2d782cc [ 1555.717961] TPR Threshold = 0x00 [ 1555.717968] EPT pointer = 0x000000004f71301e [ 1555.737507] RIP = 0xffffffff811c8cac RSP = 0xffff88805e2678c0 [ 1555.737526] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1555.737543] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1555.737553] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1555.737565] CR0=0000000080050033 CR3=0000000098314000 CR4=00000000001426e0 [ 1555.737578] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1555.737587] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1555.737592] *** Control State *** 03:43:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1555.737600] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1555.737613] EntryControls=0000d1ff ExitControls=002fefff [ 1555.748537] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1555.750689] EntryControls=0000d1ff ExitControls=002fefff [ 1555.750701] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1555.759722] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1555.788497] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1555.794245] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:18 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1555.794855] Interruptibility = 00000000 ActivityState = 00000000 [ 1555.843500] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1555.897928] *** Host State *** [ 1555.902553] RIP = 0xffffffff811c8cac RSP = 0xffff88805897f8c0 [ 1555.916861] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1555.923701] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1555.928315] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1555.930640] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1555.930647] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1555.930655] reason=80000021 qualification=0000000000000000 [ 1555.930661] IDTVectoring: info=00000000 errcode=00000000 [ 1555.930666] TSC Offset = 0xfffffcbcb011275b [ 1555.930676] TPR Threshold = 0x00 [ 1555.945364] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1555.983811] reason=80000021 qualification=0000000000000000 [ 1555.990142] IDTVectoring: info=00000000 errcode=00000000 [ 1556.037151] TSC Offset = 0xfffffcbd04cd1c43 [ 1556.063203] TPR Threshold = 0x00 [ 1556.079224] CR0=0000000080050033 CR3=00000000a925d000 CR4=00000000001426e0 [ 1556.091148] EPT pointer = 0x000000005bfde01e [ 1556.105350] EPT pointer = 0x000000009f4ef01e [ 1556.109272] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1556.141507] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1556.173732] *** Control State *** 03:43:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x0, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1556.191993] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1556.224146] EntryControls=0000d1ff ExitControls=002fefff [ 1556.248516] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1556.279656] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:43:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1556.329401] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1556.413695] reason=80000021 qualification=0000000000000000 [ 1556.420028] IDTVectoring: info=00000000 errcode=00000000 [ 1556.451402] TSC Offset = 0xfffffcbc9f856990 [ 1556.477181] EPT pointer = 0x000000009666001e 03:43:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:19 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:43:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1557.033710] net_ratelimit: 18 callbacks suppressed [ 1557.033716] protocol 88fb is buggy, dev hsr_slave_0 [ 1557.043782] protocol 88fb is buggy, dev hsr_slave_1 03:43:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1557.259644] *** Guest State *** [ 1557.280876] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1557.307518] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:43:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x0, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1557.339809] CR3 = 0x0000000000000000 [ 1557.351941] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1557.374900] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1557.393964] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1557.438021] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1557.466646] *** Guest State *** [ 1557.469938] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1557.478314] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.503797] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.523702] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1557.548139] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1557.584645] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.599346] CR3 = 0x0000000000000000 [ 1557.613703] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1557.627156] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.653770] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1557.675807] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1557.683838] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1557.683849] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1557.683864] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.683878] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.683903] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.683918] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.683944] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1557.683954] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:20 executing program 0: r0 = socket(0x40000000015, 0x5, 0x0) bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvmmsg(r0, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000980)=""/62, 0x3e}}], 0x6de, 0x62, 0x0) [ 1557.683973] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1557.718915] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1557.793859] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1557.823758] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1557.827566] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1557.856250] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1557.878831] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1557.895606] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1557.899695] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1557.926072] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1557.933744] Interruptibility = 00000000 ActivityState = 00000000 [ 1557.959407] *** Host State *** [ 1557.962757] RIP = 0xffffffff811c8cac RSP = 0xffff88808946f8c0 [ 1557.972772] Interruptibility = 00000000 ActivityState = 00000000 [ 1557.983514] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1557.993715] protocol 88fb is buggy, dev hsr_slave_0 [ 1557.998774] protocol 88fb is buggy, dev hsr_slave_1 [ 1558.004912] *** Host State *** [ 1558.016727] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1558.024001] RIP = 0xffffffff811c8cac RSP = 0xffff8880a527f8c0 [ 1558.040425] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1558.054768] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1558.061332] CR0=0000000080050033 CR3=000000009f38b000 CR4=00000000001426f0 [ 1558.078387] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1558.083720] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1558.093096] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1558.097768] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1558.119745] *** Control State *** [ 1558.125043] CR0=0000000080050033 CR3=000000009e7da000 CR4=00000000001426e0 03:43:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1558.136905] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1558.148448] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1558.178782] EntryControls=0000d1ff ExitControls=002fefff [ 1558.181078] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1558.203719] *** Control State *** [ 1558.208633] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1558.210676] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1558.246510] EntryControls=0000d1ff ExitControls=002fefff [ 1558.255037] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1558.261739] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1558.275038] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1558.299572] reason=80000021 qualification=0000000000000000 [ 1558.310597] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1558.337389] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:43:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x0, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1558.352143] IDTVectoring: info=00000000 errcode=00000000 [ 1558.368528] reason=80000021 qualification=0000000000000000 [ 1558.393711] protocol 88fb is buggy, dev hsr_slave_0 [ 1558.398815] protocol 88fb is buggy, dev hsr_slave_1 [ 1558.400507] TSC Offset = 0xfffffcbb69367360 [ 1558.404002] protocol 88fb is buggy, dev hsr_slave_0 [ 1558.413383] protocol 88fb is buggy, dev hsr_slave_1 [ 1558.425163] TPR Threshold = 0x00 [ 1558.431752] IDTVectoring: info=00000000 errcode=00000000 03:43:20 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1558.446174] EPT pointer = 0x000000009438c01e [ 1558.453256] TSC Offset = 0xfffffcbb8481bd87 [ 1558.472922] TPR Threshold = 0x00 [ 1558.483840] protocol 88fb is buggy, dev hsr_slave_0 [ 1558.484545] EPT pointer = 0x00000000a522701e [ 1558.488957] protocol 88fb is buggy, dev hsr_slave_1 03:43:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1558.932004] *** Guest State *** [ 1558.947497] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1558.990817] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1559.037637] CR3 = 0x0000000000000000 [ 1559.039367] *** Guest State *** [ 1559.047255] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1559.060800] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1559.063849] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:43:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1559.084082] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1559.097522] CR3 = 0x0000000000000000 [ 1559.102340] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1559.112013] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1559.118788] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1559.127508] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:43:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1559.144574] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1559.188292] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:21 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1559.233244] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.254426] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.273805] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1559.293435] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.328949] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.344064] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.353735] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.373954] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.384852] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1559.407236] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.432588] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.434468] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1559.468753] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1559.501883] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1559.511175] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1559.532647] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1559.539752] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1559.550997] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1559.576527] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1559.582125] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1559.603736] Interruptibility = 00000000 ActivityState = 00000000 [ 1559.623806] *** Host State *** [ 1559.624348] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1559.635190] RIP = 0xffffffff811c8cac RSP = 0xffff8880993ff8c0 [ 1559.648772] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1559.657693] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1559.661923] Interruptibility = 00000000 ActivityState = 00000000 [ 1559.685158] *** Host State *** [ 1559.689104] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1559.694389] RIP = 0xffffffff811c8cac RSP = 0xffff888053bef8c0 [ 1559.723108] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1559.723874] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:43:22 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1559.745620] *** Guest State *** [ 1559.765356] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1559.765957] CR0=0000000080050033 CR3=00000000978e3000 CR4=00000000001426e0 [ 1559.781095] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1559.781834] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1559.809153] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1559.814093] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1559.823707] CR0=0000000080050033 CR3=00000000538d3000 CR4=00000000001426f0 [ 1559.837671] CR3 = 0x0000000000000000 [ 1559.847248] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1559.863410] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1559.864172] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1559.878181] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1559.883786] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1559.891547] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1559.911341] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1559.946881] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1559.947326] *** Control State *** 03:43:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1559.968600] *** Control State *** [ 1559.980576] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1559.983483] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1560.010962] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1560.029733] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1560.040753] EntryControls=0000d1ff ExitControls=002fefff [ 1560.060854] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1560.069952] EntryControls=0000d1ff ExitControls=002fefff [ 1560.083778] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1560.094513] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1560.100266] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1560.102765] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1560.130554] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1560.151737] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1560.152135] reason=80000021 qualification=0000000000000000 [ 1560.177925] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1560.179649] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1560.213723] reason=80000021 qualification=0000000000000000 [ 1560.220060] IDTVectoring: info=00000000 errcode=00000000 [ 1560.222030] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1560.239222] TSC Offset = 0xfffffcbaa719968c [ 1560.249639] IDTVectoring: info=00000000 errcode=00000000 [ 1560.257392] TPR Threshold = 0x00 [ 1560.260810] EPT pointer = 0x0000000094c1601e [ 1560.273945] TSC Offset = 0xfffffcba9157c37e [ 1560.279007] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:22 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1560.287637] TPR Threshold = 0x00 [ 1560.301668] EPT pointer = 0x000000008cdf301e [ 1560.309021] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1560.336172] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:43:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, 0x0, {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1560.361992] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1560.409802] Interruptibility = 00000000 ActivityState = 00000000 [ 1560.437788] *** Host State *** [ 1560.452800] RIP = 0xffffffff811c8cac RSP = 0xffff88807e3478c0 [ 1560.477730] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1560.502415] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1560.554820] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1560.560782] CR0=0000000080050033 CR3=00000000a9740000 CR4=00000000001426e0 [ 1560.600975] *** Guest State *** [ 1560.613923] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1560.623187] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1560.633676] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1560.661277] *** Control State *** [ 1560.672442] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1560.681493] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1560.713815] EntryControls=0000d1ff ExitControls=002fefff [ 1560.728033] CR3 = 0x0000000000000000 [ 1560.732352] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1560.747136] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1560.766810] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1560.779515] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1560.802396] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:43:23 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1560.818498] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1560.833309] reason=80000021 qualification=0000000000000000 [ 1560.871619] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1560.886397] IDTVectoring: info=00000000 errcode=00000000 [ 1560.919214] TSC Offset = 0xfffffcba2fa48f2e 03:43:23 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1560.947439] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1560.955482] TPR Threshold = 0x00 [ 1560.955495] EPT pointer = 0x000000009f62601e 03:43:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1561.003404] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1561.023933] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1561.066529] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1561.083930] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1561.108322] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1561.148807] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1561.164164] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, 0x0, {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1561.191455] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1561.225391] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1561.289588] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1561.331756] Interruptibility = 00000000 ActivityState = 00000000 03:43:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1561.373882] *** Host State *** [ 1561.377228] RIP = 0xffffffff811c8cac RSP = 0xffff888053bef8c0 [ 1561.395042] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1561.423875] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1561.442517] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1561.459283] CR0=0000000080050033 CR3=00000000538d3000 CR4=00000000001426f0 03:43:23 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1561.513924] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 03:43:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x0, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1561.564644] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1561.584891] *** Control State *** [ 1561.603693] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1561.633276] EntryControls=0000d1ff ExitControls=002fefff [ 1561.662608] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:43:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1561.684899] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1561.733961] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1561.775335] reason=80000021 qualification=0000000000000000 [ 1561.781684] IDTVectoring: info=00000000 errcode=00000000 [ 1561.839081] TSC Offset = 0xfffffcb9bbea31f1 [ 1561.876664] TPR Threshold = 0x00 [ 1561.896144] *** Guest State *** [ 1561.899524] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1561.908078] *** Guest State *** [ 1561.908470] EPT pointer = 0x000000009361f01e [ 1561.926671] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1561.953743] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1561.956246] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1561.991638] CR3 = 0x0000000000000000 [ 1561.993879] CR3 = 0x0000000000000000 [ 1561.999383] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1562.004213] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1562.014937] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1562.018964] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1562.038725] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1562.056290] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1562.063024] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1562.063053] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.063070] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1562.063089] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:24 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1562.123305] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1562.153756] net_ratelimit: 12 callbacks suppressed [ 1562.153762] protocol 88fb is buggy, dev hsr_slave_0 [ 1562.154171] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.158740] protocol 88fb is buggy, dev hsr_slave_1 [ 1562.177016] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.187114] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.206813] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.219547] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1562.244926] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1562.258497] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.279899] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1562.297769] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.319662] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1562.325679] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1562.363850] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1562.374942] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1562.381765] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1562.399706] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1562.410173] Interruptibility = 00000000 ActivityState = 00000000 [ 1562.428652] *** Host State *** [ 1562.437640] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1562.439784] RIP = 0xffffffff811c8cac RSP = 0xffff88808e75f8c0 [ 1562.476021] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1562.491042] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1562.497533] FSBase=00007f33db0b5700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1562.527559] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1562.539836] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1562.553691] protocol 88fb is buggy, dev hsr_slave_0 [ 1562.558747] protocol 88fb is buggy, dev hsr_slave_1 [ 1562.563893] protocol 88fb is buggy, dev hsr_slave_0 [ 1562.566074] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x0, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1562.568940] protocol 88fb is buggy, dev hsr_slave_1 [ 1562.593812] CR0=0000000080050033 CR3=000000009823f000 CR4=00000000001426e0 [ 1562.600960] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 03:43:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1562.633671] protocol 88fb is buggy, dev hsr_slave_0 [ 1562.638748] protocol 88fb is buggy, dev hsr_slave_1 [ 1562.663755] Interruptibility = 00000000 ActivityState = 00000000 [ 1562.676762] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 03:43:25 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1562.682974] *** Host State *** [ 1562.690660] RIP = 0xffffffff811c8cac RSP = 0xffff88805f7878c0 [ 1562.705967] *** Control State *** [ 1562.709594] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1562.728780] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1562.743543] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1562.774842] EntryControls=0000d1ff ExitControls=002fefff [ 1562.785053] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1562.796187] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1562.811514] CR0=0000000080050033 CR3=000000008bad6000 CR4=00000000001426f0 [ 1562.826954] *** Guest State *** [ 1562.839393] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1562.840521] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1562.867137] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1562.886573] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1562.910143] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1562.913221] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1562.932150] CR3 = 0x0000000000000000 [ 1562.938997] reason=80000021 qualification=0000000000000000 [ 1562.948836] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1562.961290] *** Control State *** [ 1562.964623] IDTVectoring: info=00000000 errcode=00000000 [ 1562.976446] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1562.985067] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1562.990184] TSC Offset = 0xfffffcb908327f57 [ 1563.007625] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1563.017934] EntryControls=0000d1ff ExitControls=002fefff [ 1563.021166] TPR Threshold = 0x00 [ 1563.031062] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1563.041676] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1563.048987] EPT pointer = 0x000000009410d01e [ 1563.059149] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1563.074715] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1563.099559] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1563.107631] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1563.123358] reason=80000021 qualification=0000000000000000 [ 1563.133384] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1563.146447] IDTVectoring: info=00000000 errcode=00000000 [ 1563.168682] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1563.182535] TSC Offset = 0xfffffcb90cd9ec4c [ 1563.194198] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1563.203442] TPR Threshold = 0x00 [ 1563.212318] EPT pointer = 0x000000008ed2101e [ 1563.225127] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, 0x0, {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1563.262227] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1563.273731] protocol 88fb is buggy, dev hsr_slave_0 [ 1563.278858] protocol 88fb is buggy, dev hsr_slave_1 [ 1563.300926] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:25 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1563.364879] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1563.373202] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1563.404654] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1563.444105] Interruptibility = 00000000 ActivityState = 00000000 [ 1563.468128] *** Host State *** [ 1563.471735] RIP = 0xffffffff811c8cac RSP = 0xffff8880895778c0 03:43:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x0, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd1553523e885b4a13e4afd7dc6556c7", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1563.506141] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1563.547571] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1563.590213] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1563.634001] CR0=0000000080050033 CR3=000000008b296000 CR4=00000000001426e0 [ 1563.641023] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1563.683155] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1563.697322] *** Control State *** [ 1563.709648] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1563.735725] EntryControls=0000d1ff ExitControls=002fefff [ 1563.761378] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1563.794454] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1563.821487] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:43:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1563.850231] reason=80000021 qualification=0000000000000000 [ 1563.877974] IDTVectoring: info=00000000 errcode=00000000 [ 1563.905399] TSC Offset = 0xfffffcb889c2e10d [ 1563.909859] TPR Threshold = 0x00 [ 1563.913341] EPT pointer = 0x000000007e82f01e 03:43:26 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200), {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:26 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:43:26 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1564.543540] *** Guest State *** [ 1564.559730] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1564.591376] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1564.620924] CR3 = 0x0000000000000000 [ 1564.643754] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1564.663895] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1564.681468] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1564.710011] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1564.733746] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1564.773739] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1564.803856] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1564.812932] *** Guest State *** [ 1564.823350] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1564.833900] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1564.856465] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1564.872858] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1564.913783] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1564.928078] CR3 = 0x0000000000000000 [ 1564.948566] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1564.949614] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1564.984065] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1564.990794] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1565.009482] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1565.046564] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:43:27 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1565.073876] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1565.088716] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1565.090836] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1565.106857] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1565.122570] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1565.164800] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200), {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1565.164851] Interruptibility = 00000000 ActivityState = 00000000 [ 1565.195699] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1565.231109] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1565.240546] *** Host State *** [ 1565.262151] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1565.271468] RIP = 0xffffffff811c8cac RSP = 0xffff8880895778c0 [ 1565.295034] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1565.313921] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1565.321987] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1565.331853] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1565.355447] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1565.373718] CR0=0000000080050033 CR3=00000000a7da9000 CR4=00000000001426e0 [ 1565.399295] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1565.423792] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1565.433778] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1565.443686] *** Control State *** 03:43:27 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1565.447223] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1565.473713] EntryControls=0000d1ff ExitControls=002fefff [ 1565.479252] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1565.484620] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1565.502941] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1565.511653] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1565.533196] Interruptibility = 00000000 ActivityState = 00000000 [ 1565.533735] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1565.541287] *** Host State *** [ 1565.572373] RIP = 0xffffffff811c8cac RSP = 0xffff888095a5f8c0 [ 1565.573791] reason=80000021 qualification=0000000000000000 [ 1565.602636] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1565.604472] IDTVectoring: info=00000000 errcode=00000000 [ 1565.635583] TSC Offset = 0xfffffcb79edf87f5 [ 1565.636461] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1565.639979] EPT pointer = 0x0000000061b7401e [ 1565.684500] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1565.704454] CR0=0000000080050033 CR3=0000000092f92000 CR4=00000000001426f0 [ 1565.728184] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 03:43:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1565.756196] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1565.793951] *** Control State *** [ 1565.812110] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1565.843764] EntryControls=0000d1ff ExitControls=002fefff [ 1565.849236] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1565.915861] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1565.970145] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1565.986476] reason=80000021 qualification=0000000000000000 03:43:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200), {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1566.018279] IDTVectoring: info=00000000 errcode=00000000 [ 1566.043786] TSC Offset = 0xfffffcb7811fdf30 [ 1566.058258] TPR Threshold = 0x00 [ 1566.110664] EPT pointer = 0x000000008187f01e 03:43:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1566.656961] *** Guest State *** [ 1566.670728] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1566.703164] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1566.721731] *** Guest State *** [ 1566.729768] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1566.746167] CR3 = 0x0000000000000000 [ 1566.752144] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1566.762669] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1566.784972] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1566.804801] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1566.812739] CR3 = 0x0000000000000000 [ 1566.825123] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1566.832785] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1566.853894] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1566.855005] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1566.872233] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:43:29 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1566.918245] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1566.923875] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1566.963222] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1566.973883] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1566.994058] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.002105] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.007360] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.042836] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.064041] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.092465] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.139083] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1567.146170] *** Guest State *** [ 1567.163163] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1567.167057] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1567.181579] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:43:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1567.220299] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1567.223451] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1567.250429] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1567.261038] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1567.266618] CR3 = 0x0000000000000000 [ 1567.279979] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1567.292009] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1567.302400] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1567.307176] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1567.317046] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1567.333922] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1567.339744] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1567.341666] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:43:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1567.376946] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1567.378013] Interruptibility = 00000000 ActivityState = 00000000 [ 1567.405576] Interruptibility = 00000000 ActivityState = 00000000 [ 1567.411943] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1567.412834] *** Host State *** [ 1567.429409] *** Host State *** [ 1567.432727] RIP = 0xffffffff811c8cac RSP = 0xffff888095a5f8c0 [ 1567.443724] net_ratelimit: 18 callbacks suppressed [ 1567.443731] protocol 88fb is buggy, dev hsr_slave_0 [ 1567.445662] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.448713] protocol 88fb is buggy, dev hsr_slave_1 [ 1567.463733] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1567.476739] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.481305] RIP = 0xffffffff811c8cac RSP = 0xffff8880a7e678c0 [ 1567.493683] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1567.501939] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1567.505922] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1567.533800] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.540798] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1567.552172] CR0=0000000080050033 CR3=000000009438c000 CR4=00000000001426e0 [ 1567.555505] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1567.563792] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.593792] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1567.602486] CR0=0000000080050033 CR3=00000000a4e32000 CR4=00000000001426e0 [ 1567.610061] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1567.618324] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1567.637896] *** Control State *** [ 1567.639784] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1567.641434] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1567.663772] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1567.681957] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1567.703922] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1567.709240] *** Control State *** [ 1567.715936] EntryControls=0000d1ff ExitControls=002fefff [ 1567.733171] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1567.737249] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1567.753684] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1567.767564] EntryControls=0000d1ff ExitControls=002fefff [ 1567.773725] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1567.780524] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1567.797833] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1567.805763] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1567.811273] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1567.824873] reason=80000021 qualification=0000000000000000 [ 1567.833563] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1567.843708] IDTVectoring: info=00000000 errcode=00000000 [ 1567.857182] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1567.870503] TSC Offset = 0xfffffcb67f68f699 [ 1567.870528] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1567.884978] TPR Threshold = 0x00 [ 1567.891648] Interruptibility = 00000000 ActivityState = 00000000 [ 1567.896443] reason=80000021 qualification=0000000000000000 [ 1567.902703] EPT pointer = 0x000000009ff4401e [ 1567.931830] IDTVectoring: info=00000000 errcode=00000000 [ 1567.933017] *** Host State *** [ 1567.957189] RIP = 0xffffffff811c8cac RSP = 0xffff88805e52f8c0 [ 1567.958123] TSC Offset = 0xfffffcb67490172b 03:43:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1567.994515] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1567.999568] TPR Threshold = 0x00 [ 1568.033667] FSBase=00007f68f353e700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1568.043866] EPT pointer = 0x00000000a0a4801e [ 1568.062563] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 03:43:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1568.085186] CR0=0000000080050033 CR3=000000008907e000 CR4=00000000001426e0 [ 1568.173657] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1568.180330] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1568.233762] *** Control State *** [ 1568.237223] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1568.263757] EntryControls=0000d1ff ExitControls=002fefff [ 1568.269317] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1568.304047] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1568.319756] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1568.351318] reason=80000021 qualification=0000000000000000 [ 1568.363831] IDTVectoring: info=00000000 errcode=00000000 [ 1568.369304] TSC Offset = 0xfffffcb63a62f127 [ 1568.393783] protocol 88fb is buggy, dev hsr_slave_0 [ 1568.398947] protocol 88fb is buggy, dev hsr_slave_1 [ 1568.411337] TPR Threshold = 0x00 [ 1568.428401] EPT pointer = 0x000000007de6c01e 03:43:30 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:43:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)) r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1568.793704] protocol 88fb is buggy, dev hsr_slave_0 [ 1568.798855] protocol 88fb is buggy, dev hsr_slave_1 [ 1568.804043] protocol 88fb is buggy, dev hsr_slave_0 [ 1568.809117] protocol 88fb is buggy, dev hsr_slave_1 [ 1568.873695] protocol 88fb is buggy, dev hsr_slave_0 [ 1568.878818] protocol 88fb is buggy, dev hsr_slave_1 03:43:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)) r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:31 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) 03:43:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:32 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)) r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1569.870570] *** Guest State *** [ 1569.884817] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1569.937884] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1569.982898] CR3 = 0x0000000000000000 03:43:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1570.006415] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1570.021988] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1570.042077] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1570.083945] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1570.091986] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.241098] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.314082] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.316944] *** Guest State *** [ 1570.330390] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.365672] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.383806] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1570.400170] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1570.411693] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1570.428354] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1570.446701] CR3 = 0x0000000000000000 [ 1570.453020] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1570.470561] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1570.491992] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1570.510582] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:32 executing program 0: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) socket$inet6(0xa, 0x8000000a, 0x400) connect$inet6(r5, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast2, 0x7ff}, 0x9) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1570.532429] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1570.553876] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1570.569642] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:32 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1570.585017] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1570.591782] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.607784] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.612730] Interruptibility = 00000000 ActivityState = 00000000 [ 1570.617784] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.653689] *** Host State *** [ 1570.656985] RIP = 0xffffffff811c8cac RSP = 0xffff8880a4c7f8c0 [ 1570.663009] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.683719] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1570.689440] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1570.703737] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1570.711556] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1570.711569] CR0=0000000080050033 CR3=0000000099656000 CR4=00000000001426e0 [ 1570.711582] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1570.711596] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1570.749492] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1570.762661] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1570.783708] *** Control State *** [ 1570.787305] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1570.787608] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1570.810269] EntryControls=0000d1ff ExitControls=002fefff [ 1570.834335] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1570.850782] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1570.861333] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1570.872535] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1570.891796] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1570.892885] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1570.916812] reason=80000021 qualification=0000000000000000 [ 1570.942053] IDTVectoring: info=00000000 errcode=00000000 [ 1570.945210] Interruptibility = 00000000 ActivityState = 00000000 [ 1570.960908] TSC Offset = 0xfffffcb4c6d0f20b [ 1570.976266] TPR Threshold = 0x00 [ 1570.987299] EPT pointer = 0x0000000098bc901e [ 1571.001594] *** Host State *** [ 1571.021637] RIP = 0xffffffff811c8cac RSP = 0xffff8880519c78c0 03:43:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1571.053861] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1571.060286] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 03:43:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) 03:43:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:43:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1571.096435] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1571.116322] CR0=0000000080050033 CR3=00000000a509e000 CR4=00000000001426f0 [ 1571.149667] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1571.172338] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1571.197038] *** Control State *** [ 1571.211740] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1571.237859] EntryControls=0000d1ff ExitControls=002fefff [ 1571.264295] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1571.292300] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1571.335005] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1571.365575] reason=80000021 qualification=0000000000000000 [ 1571.395053] IDTVectoring: info=00000000 errcode=00000000 [ 1571.435490] TSC Offset = 0xfffffcb4870fd358 [ 1571.464769] TPR Threshold = 0x00 [ 1571.484749] EPT pointer = 0x000000007c83e01e 03:43:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1571.680103] *** Guest State *** [ 1571.687065] *** Guest State *** [ 1571.694758] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1571.734837] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1571.743885] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1571.776021] CR3 = 0x0000000000000000 [ 1571.780773] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1571.789694] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:43:34 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1571.836868] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1571.863915] CR3 = 0x0000000000000000 [ 1571.871898] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1571.914741] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1571.920789] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1571.934942] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1571.976310] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.016622] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.039721] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1572.049205] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1572.056702] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1572.083944] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.103084] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.121916] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.138715] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.167012] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.169954] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1572.199772] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.200222] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1572.236651] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.262456] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1572.275854] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1572.284170] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1572.302030] *** Guest State *** 03:43:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1572.306965] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1572.314201] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1572.323222] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1572.337400] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1572.365753] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1572.369455] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1572.404138] Interruptibility = 00000000 ActivityState = 00000000 03:43:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1572.405899] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1572.410380] *** Host State *** [ 1572.410392] RIP = 0xffffffff811c8cac RSP = 0xffff88808b7bf8c0 [ 1572.410412] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1572.410426] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1572.422925] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1572.469363] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1572.488516] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1572.495136] CR0=0000000080050033 CR3=0000000092e08000 CR4=00000000001426e0 [ 1572.504632] CR3 = 0x0000000000000000 [ 1572.508476] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1572.519210] Interruptibility = 00000000 ActivityState = 00000000 [ 1572.529653] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1572.540222] *** Host State *** [ 1572.548549] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1572.556758] RIP = 0xffffffff811c8cac RSP = 0xffff88809e92f8c0 [ 1572.563768] net_ratelimit: 12 callbacks suppressed [ 1572.563774] protocol 88fb is buggy, dev hsr_slave_0 [ 1572.566155] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1572.568814] protocol 88fb is buggy, dev hsr_slave_1 [ 1572.585927] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1572.594929] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1572.606481] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1572.616135] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.618971] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1572.637857] *** Control State *** [ 1572.641311] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1572.657522] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.669012] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1572.677560] CR0=0000000080050033 CR3=0000000092802000 CR4=00000000001426f0 [ 1572.677767] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.703759] EntryControls=0000d1ff ExitControls=002fefff 03:43:35 executing program 3: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1572.715034] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.726265] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1572.736776] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1572.743128] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1572.756332] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1572.771789] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1572.774048] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1572.791779] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1572.811134] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1572.821662] reason=80000021 qualification=0000000000000000 [ 1572.829015] *** Control State *** [ 1572.832490] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1572.837493] IDTVectoring: info=00000000 errcode=00000000 [ 1572.845148] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:35 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1572.877792] EntryControls=0000d1ff ExitControls=002fefff [ 1572.883337] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1572.884180] TSC Offset = 0xfffffcb3d20d5da7 [ 1572.903375] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1572.910092] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1572.929776] TPR Threshold = 0x00 [ 1572.937363] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1572.941935] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1572.949657] EPT pointer = 0x000000007e0c501e [ 1572.954509] reason=80000021 qualification=0000000000000000 [ 1572.954978] protocol 88fb is buggy, dev hsr_slave_0 [ 1572.961211] IDTVectoring: info=00000000 errcode=00000000 [ 1572.966298] protocol 88fb is buggy, dev hsr_slave_1 [ 1572.966397] protocol 88fb is buggy, dev hsr_slave_0 [ 1572.981968] protocol 88fb is buggy, dev hsr_slave_1 [ 1572.987101] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1573.027677] TSC Offset = 0xfffffcb3cf406339 [ 1573.032076] TPR Threshold = 0x00 [ 1573.035629] protocol 88fb is buggy, dev hsr_slave_0 [ 1573.035676] protocol 88fb is buggy, dev hsr_slave_1 03:43:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200), {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1573.071177] Interruptibility = 00000000 ActivityState = 00000000 [ 1573.116119] *** Host State *** [ 1573.119433] RIP = 0xffffffff811c8cac RSP = 0xffff88805f2478c0 [ 1573.125638] EPT pointer = 0x00000000a92b001e [ 1573.146155] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:43:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1573.169707] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1573.188936] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1573.209173] CR0=0000000080050033 CR3=000000008f208000 CR4=00000000001426f0 [ 1573.293721] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1573.304981] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1573.333917] *** Control State *** 03:43:35 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1573.364842] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 03:43:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1573.413688] EntryControls=0000d1ff ExitControls=002fefff [ 1573.453764] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1573.513750] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1573.520508] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1573.543278] reason=80000021 qualification=0000000000000000 [ 1573.565808] IDTVectoring: info=00000000 errcode=00000000 [ 1573.597300] TSC Offset = 0xfffffcb375b7de58 [ 1573.610174] *** Guest State *** [ 1573.619432] EPT pointer = 0x000000008cdf301e [ 1573.629115] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:43:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1573.672933] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1573.683726] protocol 88fb is buggy, dev hsr_slave_0 [ 1573.688820] protocol 88fb is buggy, dev hsr_slave_1 [ 1573.720974] CR3 = 0x0000000000000000 [ 1573.738796] RSP = 0x0000000000000000 RIP = 0x0000000000000000 03:43:36 executing program 3: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="31d96da88b0cce5062747ce237ca24f05b05df66b34814c1cdb2db3642a7c880224c03d6cffd67b36c7f1a51ae9aeaa3892b040ba2105d77d4e4579d745ad601f19c26d1260bcd5435ae4ad35d123f7e809a7b0576431fde9f78c3260a3837b52ef6437c404147add96892a9d3a67dcf93c198c3b7727cd266c20c5e584c28ae0843064b8f7f199db8641f71a407775e0090bbedee63a4640e1f012e5ca95bd14b5aa0da642b552ae4aa2b869458dec283c16f25c67068fc528a793f75c81acac8ee6596d79c449ade5eeee332c460ebc0d46c076e871b6426d521c571a95d0fa800de30a110e719ffde8f103773daaaec8c313aa3be0bdaa6e7e796df3975a8e37aee6d10579f8afe6552f187c262b32eced8b5f01e40ab8904400f00000000000000000000000000000058b4721949da012002cb7f4ac8fe195c1388861be8cd45020083b0089b23f86603321faf83e794bea1ece8051e9996306347bd562aa2437fa6bdb57086302926b8af069b8d331ebf5c0e1a7f163e6d711af330efdfae413fafef9acf1d53e6aaf4f2dec9ddfb4ca321583e35a14a92e82bdbea3c127a033b32059fbadce23a3e87957f8238886aa9380000000018888c4c20ba104342e8c9d85a9dcf06abbb7a2905d37839bff6f8641ebce172c60a8d368cd4a94af484749dc4ccdd380bbf5d501302d50e79d3536eab5a12abdd347dac985c4349ec712661df947315514e45a515417e6b00000000000000002bdacdb2631c83a90dbca3aa7e5936f8aa413a75c7780309e1c178bce65ed205154ab4f55241cd2b6e83b29fc6cefe050d7d562360718e25bbdb2d34264d6a741cbbed50422f5d") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1573.769011] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1573.794406] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1573.824372] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1573.854290] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1573.883344] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1573.913932] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1573.949375] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1573.985000] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1574.023831] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1574.045572] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1574.096321] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1574.138544] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1574.174035] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1574.193083] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1574.228806] Interruptibility = 00000000 ActivityState = 00000000 [ 1574.250886] *** Host State *** [ 1574.263167] RIP = 0xffffffff811c8cac RSP = 0xffff8880a7e678c0 03:43:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93fd", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1574.292988] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1574.309335] *** Guest State *** [ 1574.312634] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1574.340792] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1574.383758] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1574.389574] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1574.410411] CR3 = 0x0000000000000000 [ 1574.427752] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1574.429588] CR0=0000000080050033 CR3=0000000092802000 CR4=00000000001426e0 [ 1574.451987] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1574.462382] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1574.496009] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1574.514643] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1574.533911] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1574.537951] *** Control State *** 03:43:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1574.568975] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1574.584395] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1574.591353] EntryControls=0000d1ff ExitControls=002fefff [ 1574.626343] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1574.650387] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1574.658017] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1574.694834] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1574.698327] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1574.731616] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1574.749172] reason=80000021 qualification=0000000000000000 [ 1574.772263] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1574.779526] IDTVectoring: info=00000000 errcode=00000000 [ 1574.803918] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1574.809596] TSC Offset = 0xfffffcb2c6dc1f7f [ 1574.837410] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1574.839717] TPR Threshold = 0x00 [ 1574.871162] EPT pointer = 0x000000009a1ca01e [ 1574.883977] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1574.916667] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 03:43:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200), {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1574.970346] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1574.983556] *** Guest State *** [ 1575.003959] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1575.016518] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1575.041620] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1575.055496] Interruptibility = 00000000 ActivityState = 00000000 [ 1575.078112] CR3 = 0x0000000000000000 03:43:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1575.090273] *** Host State *** [ 1575.095939] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1575.117073] RIP = 0xffffffff811c8cac RSP = 0xffff88805ee478c0 [ 1575.129388] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1575.153509] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1575.171669] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1575.191908] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1575.214086] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1575.238693] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.247128] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 03:43:37 executing program 3: r0 = open(&(0x7f0000000200)='./file0\x00', 0x8040, 0x32) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000300)=0x41b) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f00000001c0)='./bus\x00') r2 = socket$inet6(0xa, 0x7, 0xfffffffffffffffd) r3 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r3, 0x7fe, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x1, 0x74f, 0x1000) r4 = creat(0x0, 0x4) setxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x3) rmdir(&(0x7f0000000580)='./bus\x00') write$binfmt_elf64(r2, &(0x7f00000007c0)=ANY=[], 0x0) mkdir(&(0x7f0000000100)='./bus\x00', 0x21) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x1}, 0x8) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f0000000fc0)="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") r5 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700000001000900000008000100050000000800030000080000080002000000000008a58affffffffffff0001000d000000080004001301000008000300080000000c00010073797a31000200000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13b1d748945089570db5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fa65166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831368e6f22ffc387bea9cd0a8783ba2c9d6e333852291d3ebe9dbb2d9c51b5599ddfe2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b95c5fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f67600d56fff6cd8640596b8fb8bd4b9b11bae57ce298c0f50000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801) setsockopt$inet6_int(r0, 0x29, 0x8f, &(0x7f0000000840)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r4, 0xf, &(0x7f0000000180)={0x2, r3}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) shutdown(r1, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x8000000000000001, 0x3}, 0x20) socket$inet6(0xa, 0x8000000a, 0x400) r6 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') sendfile(r5, r6, &(0x7f00000000c0)=0x202, 0x8) [ 1575.264923] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.267596] CR0=0000000080050033 CR3=00000000823f4000 CR4=00000000001426f0 [ 1575.314481] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1575.329999] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.330598] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1575.349069] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.377219] *** Control State *** [ 1575.389935] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1575.400484] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.424053] EntryControls=0000d1ff ExitControls=002fefff [ 1575.441409] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1575.448310] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1575.469501] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1575.490401] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1575.504066] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1575.512135] reason=80000021 qualification=0000000000000000 [ 1575.517601] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1575.532560] IDTVectoring: info=00000000 errcode=00000000 [ 1575.555437] *** Guest State *** [ 1575.563099] TSC Offset = 0xfffffcb263f0e6c5 [ 1575.569371] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1575.590234] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1575.600437] TPR Threshold = 0x00 [ 1575.605598] *** Guest State *** [ 1575.609064] EPT pointer = 0x000000008f00201e [ 1575.615122] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1575.625428] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1575.640027] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:43:38 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1575.653903] CR3 = 0x0000000000000000 [ 1575.657918] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1575.674675] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1575.680753] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1575.692432] CR3 = 0x0000000000000000 [ 1575.704135] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1575.711113] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1575.724414] Interruptibility = 00000000 ActivityState = 00000000 [ 1575.730654] *** Host State *** [ 1575.744063] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1575.751010] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1575.760365] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1575.773717] RIP = 0xffffffff811c8cac RSP = 0xffff88805e13f8c0 [ 1575.779744] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1575.787460] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1575.796804] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1575.813964] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.834077] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.842198] FSBase=00007fc383844700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1575.851353] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.863817] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.871951] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1575.894907] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.913725] CR0=0000000080050033 CR3=000000008247f000 CR4=00000000001426e0 [ 1575.920753] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1575.928907] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.943718] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.954934] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.984519] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1575.992624] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1576.000168] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1576.023799] *** Control State *** [ 1576.027267] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1576.035319] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1576.053801] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1576.062548] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1576.073819] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1576.084819] EntryControls=0000d1ff ExitControls=002fefff [ 1576.090293] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1576.114497] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1576.124895] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1576.153674] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1576.160558] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1576.170078] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1576.182846] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1576.195144] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1576.202972] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1576.215166] reason=80000021 qualification=0000000000000000 [ 1576.233962] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1576.247655] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1576.263547] IDTVectoring: info=00000000 errcode=00000000 [ 1576.266422] Interruptibility = 00000000 ActivityState = 00000000 [ 1576.272564] Interruptibility = 00000000 ActivityState = 00000000 [ 1576.285237] TSC Offset = 0xfffffcb2146c81bb [ 1576.309179] *** Host State *** [ 1576.312949] RIP = 0xffffffff811c8cac RSP = 0xffff88805edef8c0 [ 1576.315647] *** Host State *** [ 1576.322631] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1576.326097] TPR Threshold = 0x00 [ 1576.332951] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1576.333944] RIP = 0xffffffff811c8cac RSP = 0xffff8880559a78c0 [ 1576.347913] EPT pointer = 0x000000007d17f01e [ 1576.352708] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 03:43:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1576.362417] CR0=0000000080050033 CR3=000000006309f000 CR4=00000000001426f0 [ 1576.385981] *** Guest State *** [ 1576.389281] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1576.394026] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:43:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xf7d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x7ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) openat$ion(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ion\x00', 0xc800, 0x0) getsockopt$IP_VS_SO_GET_VERSION(0xffffffffffffffff, 0x0, 0x480, &(0x7f0000000140), 0x0) ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f0000000100)={0x9, 0x5, 0x0, 0x0, "f95158b9d290b5705b9b8f39d021e6caf4e8a29b2b07a31e706b5219d8b16450"}) mkdir(&(0x7f0000000340)='./file0\x00', 0x400020) syz_init_net_socket$bt_l2cap(0x1f, 0x20000000000, 0x3) syz_open_dev$sndtimer(0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, 0x0) lsetxattr$security_ima(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='security.ima\x00', &(0x7f0000000300)=@sha1={0x1, "e47781061b1f3931986d28a1d3a5841195c9ab50"}, 0x15, 0x2) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'sit0\x00'}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) mkdirat$cgroup(r0, &(0x7f0000000500)='syz0\x00', 0x1ff) fchdir(r0) syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000380)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) [ 1576.418876] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1576.431183] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1576.440293] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1576.456365] CR0=0000000080050033 CR3=000000009a572000 CR4=00000000001426f0 03:43:38 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, {0x0, 0x0, 0x38e, 0x0, 0x6}}, 0xe) [ 1576.471711] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1576.478806] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1576.483979] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1576.499143] CR3 = 0x0000000000000000 [ 1576.502997] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1576.510999] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1576.528836] *** Control State *** [ 1576.532435] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1576.533738] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1576.553966] *** Control State *** [ 1576.565017] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1576.568723] EntryControls=0000d1ff ExitControls=002fefff [ 1576.577292] EntryControls=0000d1ff ExitControls=002fefff [ 1576.593722] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1576.600539] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1576.608846] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1576.613721] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1576.633814] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1576.640489] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1576.640496] reason=80000021 qualification=0000000000000000 [ 1576.640502] IDTVectoring: info=00000000 errcode=00000000 [ 1576.640508] TSC Offset = 0xfffffcb1b4131f01 [ 1576.640518] TPR Threshold = 0x00 [ 1576.648524] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1576.679111] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1576.686311] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1576.693897] EPT pointer = 0x0000000098e9601e [ 1576.703791] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1576.734003] reason=80000021 qualification=0000000000000000 [ 1576.743380] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1576.763714] IDTVectoring: info=00000000 errcode=00000000 [ 1576.779493] TSC Offset = 0xfffffcb1bdd2f155 03:43:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1576.785776] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1576.813037] TPR Threshold = 0x00 [ 1576.819043] EPT pointer = 0x0000000095d5201e [ 1576.832610] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200), {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") epoll_create(0x0) [ 1576.860417] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1576.883097] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:43:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1576.945918] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1576.961197] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1577.002012] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1577.032133] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1577.081989] Interruptibility = 00000000 ActivityState = 00000000 [ 1577.115081] *** Host State *** [ 1577.118407] RIP = 0xffffffff811c8cac RSP = 0xffff88805e54f8c0 [ 1577.154535] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1577.160954] FSBase=00007f68f351c700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1577.206846] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1577.247835] CR0=0000000080050033 CR3=00000000823f4000 CR4=00000000001426e0 [ 1577.298363] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1577.327709] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 03:43:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1577.355651] *** Control State *** [ 1577.355665] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1577.409177] EntryControls=0000d1ff ExitControls=002fefff [ 1577.432429] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:43:39 executing program 3: r0 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000440)) [ 1577.467274] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1577.503914] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 03:43:39 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) setsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, 0x0, 0x0) [ 1577.533309] reason=80000021 qualification=0000000000000000 [ 1577.567565] IDTVectoring: info=00000000 errcode=00000000 [ 1577.592812] TSC Offset = 0xfffffcb14fe909f9 [ 1577.615157] TPR Threshold = 0x00 [ 1577.630096] EPT pointer = 0x000000009923201e 03:43:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1577.833692] net_ratelimit: 18 callbacks suppressed [ 1577.833700] protocol 88fb is buggy, dev hsr_slave_0 [ 1577.843801] protocol 88fb is buggy, dev hsr_slave_1 03:43:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1578.181762] *** Guest State *** [ 1578.192295] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1578.207360] *** Guest State *** [ 1578.219407] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:43:40 executing program 3: r0 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000440)) [ 1578.233069] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1578.255351] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1578.269419] CR3 = 0x0000000000000000 [ 1578.282288] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1578.294107] CR3 = 0x0000000000000000 [ 1578.303291] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1578.313157] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1578.325296] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1578.337707] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1578.355707] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1578.367946] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 03:43:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c02, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "e1d3f877e5eae453e55d7d64d00d4901baed21f7de92a8669b38ccd6260857dbf5ae46354569636517b50f805ae208258dbb7d0abe8d208f0f1bcc885c8ba93c", "7b3177f4fc2eb04172daa8fdd1c4c4cf144a23173b6605afb988de7e07195d78f7ddd19a3782fba5bfe2566c845a0c58b400", "ee52c10d1e72a9432c222985fcedff747a3131991a00000000000004002000"}) [ 1578.389534] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1578.407000] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.421384] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.431178] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:40 executing program 0: mmap(&(0x7f0000013000/0xb000)=nil, 0xb000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) recvmmsg(r0, &(0x7f0000002d80)=[{{&(0x7f0000000000)=@alg, 0x80, &(0x7f0000000100)=[{&(0x7f0000001480)=""/4096, 0x100a}, {&(0x7f0000000240)=""/147, 0x6a6}], 0x2, &(0x7f0000002740)=""/218, 0xda}}], 0xf9e1221a8413ff5d, 0x2, &(0x7f0000002e40)={0x77359400}) sendmsg$nl_generic(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x14, 0x40000000042, 0x105}, 0x14}}, 0x0) [ 1578.443417] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.452786] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.469234] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.491795] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.514079] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.527407] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.550939] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1578.566445] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1578.588324] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1578.602353] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1578.623915] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1578.631706] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1578.631889] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1578.631905] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1578.661264] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1578.696946] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1578.714605] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1578.740885] Interruptibility = 00000000 ActivityState = 00000000 [ 1578.780126] *** Host State *** [ 1578.787137] RIP = 0xffffffff811c8cac RSP = 0xffff88805667f8c0 [ 1578.793701] protocol 88fb is buggy, dev hsr_slave_0 [ 1578.798862] protocol 88fb is buggy, dev hsr_slave_1 [ 1578.805467] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1578.810324] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1578.826668] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:41 executing program 3: r0 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000440)) [ 1578.856780] Interruptibility = 00000000 ActivityState = 00000000 [ 1578.883886] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 03:43:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, 0x0) [ 1578.918457] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1578.930074] *** Host State *** [ 1578.950464] RIP = 0xffffffff811c8cac RSP = 0xffff888056e8f8c0 [ 1578.961648] CR0=0000000080050033 CR3=000000005c782000 CR4=00000000001426f0 [ 1578.977175] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1578.990470] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1579.017762] FSBase=00007f68f353e700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1579.022024] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1579.051545] *** Control State *** [ 1579.059115] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1579.060022] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1579.073838] CR0=0000000080050033 CR3=00000000a9267000 CR4=00000000001426f0 [ 1579.081088] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1579.109621] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1579.117416] EntryControls=0000d1ff ExitControls=002fefff [ 1579.129646] *** Control State *** [ 1579.136105] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1579.152551] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1579.170997] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1579.182975] EntryControls=0000d1ff ExitControls=002fefff [ 1579.193705] protocol 88fb is buggy, dev hsr_slave_0 [ 1579.198840] protocol 88fb is buggy, dev hsr_slave_1 [ 1579.203996] protocol 88fb is buggy, dev hsr_slave_0 [ 1579.207330] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1579.209066] protocol 88fb is buggy, dev hsr_slave_1 [ 1579.218562] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1579.247558] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1579.258959] reason=80000021 qualification=0000000000000000 [ 1579.273383] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1579.280108] protocol 88fb is buggy, dev hsr_slave_0 [ 1579.280183] protocol 88fb is buggy, dev hsr_slave_1 [ 1579.293790] IDTVectoring: info=00000000 errcode=00000000 [ 1579.300361] TSC Offset = 0xfffffcb052092fb1 [ 1579.314626] reason=80000021 qualification=0000000000000000 [ 1579.325658] TPR Threshold = 0x00 [ 1579.333507] IDTVectoring: info=00000000 errcode=00000000 [ 1579.343806] EPT pointer = 0x000000008cdf301e [ 1579.352437] TSC Offset = 0xfffffcb04e622075 [ 1579.366259] TPR Threshold = 0x00 03:43:41 executing program 3: r0 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000440)) [ 1579.376390] EPT pointer = 0x000000008b02701e 03:43:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:41 executing program 0: clone(0x4103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x40) ptrace$cont(0x4204, r0, 0x202, 0x7fffffffefff) 03:43:41 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, 0x0) 03:43:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:42 executing program 3: r0 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000440)) 03:43:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c02, 0x0) [ 1580.015898] *** Guest State *** [ 1580.026611] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1580.056301] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1580.085299] *** Guest State *** [ 1580.101492] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1580.118865] CR3 = 0x0000000000000000 [ 1580.129709] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1580.143205] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1580.163958] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1580.185970] CR3 = 0x0000000000000000 [ 1580.191900] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:43:42 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44a95, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(r0, &(0x7f0000000540)=ANY=[], 0x22b5) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4030582a, &(0x7f0000000040)) [ 1580.214279] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1580.234926] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1580.251305] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 03:43:42 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1580.272489] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.282021] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1580.306974] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.311530] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1580.336299] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.349174] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.374220] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:42 executing program 2: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1000000002, 0x1) bind$nfc_llcp(r0, &(0x7f0000000200)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "26dcb3401c566cd3dbc312b6a2eed3b7007c88323e4498e7696ac4ffaa512d70ff5f5f884613c1f097f8c940ec7f3a8e71c2011af29d460ef9ee0ed46eb087"}, 0x60) sendmsg(r0, &(0x7f0000000440)={&(0x7f0000000080)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000280)="b85f574e4725e0a62df37ba85cfe78f95e971f92a5496f5dc5bb7060c3ad048b56c0462ffa3d23b52ffa97110e870d718f", 0x31}], 0x1}, 0x20000000) [ 1580.390542] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.419914] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.439212] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.459175] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1580.474289] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:42 executing program 3: memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000440)) [ 1580.494012] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1580.516597] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1580.537238] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1580.553962] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1580.565747] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1580.586998] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1580.597526] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1580.631653] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1580.638770] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1580.638816] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1580.638932] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1580.695879] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1580.710019] Interruptibility = 00000000 ActivityState = 00000000 [ 1580.733793] Interruptibility = 00000000 ActivityState = 00000000 [ 1580.759569] *** Host State *** [ 1580.767269] *** Host State *** [ 1580.772735] RIP = 0xffffffff811c8cac RSP = 0xffff88805e3278c0 [ 1580.783854] RIP = 0xffffffff811c8cac RSP = 0xffff8880a96a78c0 [ 1580.799762] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:43:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1580.813808] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1580.820244] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1580.822473] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1580.866203] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1580.881636] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1580.887472] CR0=0000000080050033 CR3=00000000a5f66000 CR4=00000000001426e0 [ 1580.894933] CR0=0000000080050033 CR3=0000000089dd9000 CR4=00000000001426f0 [ 1580.901968] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1580.930644] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1580.954943] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1580.983732] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1580.989793] *** Control State *** [ 1580.994087] *** Control State *** [ 1581.004913] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1581.024981] EntryControls=0000d1ff ExitControls=002fefff [ 1581.032274] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1581.041611] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1581.066426] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1581.082127] EntryControls=0000d1ff ExitControls=002fefff [ 1581.095835] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1581.116436] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1581.126006] reason=80000021 qualification=0000000000000000 [ 1581.144976] IDTVectoring: info=00000000 errcode=00000000 [ 1581.151697] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1581.174859] TSC Offset = 0xfffffcaf53116817 [ 1581.180488] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1581.189765] TPR Threshold = 0x00 [ 1581.205151] EPT pointer = 0x000000007c83e01e [ 1581.210973] reason=80000021 qualification=0000000000000000 [ 1581.265502] IDTVectoring: info=00000000 errcode=00000000 [ 1581.304262] TSC Offset = 0xfffffcaf5875f119 [ 1581.319303] TPR Threshold = 0x00 [ 1581.345165] EPT pointer = 0x000000009e7da01e 03:43:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x0, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:43 executing program 2: r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f00000003c0)=0x7f, 0x4) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000440)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x2007fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 03:43:43 executing program 3: memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000440)) 03:43:43 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44a95, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(r0, &(0x7f0000000540)=ANY=[], 0x22b5) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4030582a, &(0x7f0000000040)) 03:43:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:44 executing program 3: memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000440)) 03:43:44 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44a95, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(r0, &(0x7f0000000540)=ANY=[], 0x22b5) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4030582a, &(0x7f0000000040)) [ 1581.874808] *** Guest State *** [ 1581.878365] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1581.924180] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1581.958593] CR3 = 0x0000000000000000 [ 1581.962605] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1581.999928] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1582.014603] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1582.048324] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1582.065307] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1582.088512] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:44 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44a95, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(r0, &(0x7f0000000540)=ANY=[], 0x22b5) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4030582a, &(0x7f0000000040)) [ 1582.144567] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1582.173862] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1582.203253] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1582.233198] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:44 executing program 3: memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000440)) [ 1582.288939] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1582.317193] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:44 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1582.343921] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1582.367921] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1582.405660] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1582.453756] Interruptibility = 00000000 ActivityState = 00000000 [ 1582.487465] *** Host State *** 03:43:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1582.503983] RIP = 0xffffffff811c8cac RSP = 0xffff8880985278c0 [ 1582.534898] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1582.581521] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 1582.623796] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1582.630001] CR0=0000000080050033 CR3=00000000a59e3000 CR4=00000000001426f0 [ 1582.658751] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 03:43:45 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44a95, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(r0, &(0x7f0000000540)=ANY=[], 0x22b5) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4030582a, &(0x7f0000000040)) [ 1582.683298] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1582.712696] *** Control State *** [ 1582.728933] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1582.757699] EntryControls=0000d1ff ExitControls=002fefff [ 1582.780961] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1582.806648] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1582.837477] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1582.853839] reason=80000021 qualification=0000000000000000 [ 1582.860165] IDTVectoring: info=00000000 errcode=00000000 [ 1582.893921] TSC Offset = 0xfffffcae5a81173f [ 1582.898329] TPR Threshold = 0x00 [ 1582.923760] EPT pointer = 0x0000000082d8201e [ 1582.953695] net_ratelimit: 12 callbacks suppressed [ 1582.953701] protocol 88fb is buggy, dev hsr_slave_0 [ 1582.963771] protocol 88fb is buggy, dev hsr_slave_1 03:43:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:45 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) getsockname(r0, 0x0, &(0x7f00000000c0)) 03:43:45 executing program 3: memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000440)) 03:43:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1583.353712] protocol 88fb is buggy, dev hsr_slave_0 [ 1583.361313] protocol 88fb is buggy, dev hsr_slave_1 [ 1583.366490] protocol 88fb is buggy, dev hsr_slave_0 [ 1583.371567] protocol 88fb is buggy, dev hsr_slave_1 03:43:45 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfffffcbe) lseek(r0, 0xfffffffffffffffd, 0x3) [ 1583.443685] protocol 88fb is buggy, dev hsr_slave_0 [ 1583.448838] protocol 88fb is buggy, dev hsr_slave_1 03:43:45 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000440)) 03:43:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1583.590239] *** Guest State *** [ 1583.601015] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1583.632519] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1583.661869] CR3 = 0x0000000000000000 03:43:46 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/ip6_flowlabel\x00') perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000840)=""/148, 0x94}], 0x1, 0x0) preadv(r0, &(0x7f0000000700), 0x3a4, 0x10400003) [ 1583.679084] RSP = 0x0000000000000000 RIP = 0x0000000000000000 03:43:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1583.755624] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1583.789170] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1583.803954] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1583.812154] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1583.894014] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1583.923950] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1583.959108] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1583.985462] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1584.017179] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1584.033920] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1584.056981] IDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:46 executing program 3: r0 = syz_open_dev$sndseq(0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000440)) [ 1584.073728] protocol 88fb is buggy, dev hsr_slave_0 [ 1584.079013] protocol 88fb is buggy, dev hsr_slave_1 [ 1584.093407] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1584.112338] *** Guest State *** [ 1584.120604] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1584.131238] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1584.147662] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1584.159428] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1584.187565] Interruptibility = 00000000 ActivityState = 00000000 [ 1584.205648] CR3 = 0x0000000000000000 [ 1584.215007] *** Host State *** [ 1584.218799] RIP = 0xffffffff811c8cac RSP = 0xffff88805c7978c0 [ 1584.220753] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1584.233004] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1584.243861] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1584.268507] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 1584.274203] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:43:46 executing program 2: perf_event_open(&(0x7f0000000100)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1584.296742] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1584.301975] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1584.326105] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1584.330653] CR0=0000000080050033 CR3=0000000098acf000 CR4=00000000001426e0 [ 1584.352303] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1584.354227] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff870013a0 [ 1584.379589] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1584.410911] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1584.414024] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1584.438812] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:46 executing program 3: r0 = syz_open_dev$sndseq(0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000440)) [ 1584.465707] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1584.474992] *** Control State *** [ 1584.493979] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1584.499301] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1584.531966] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1584.534682] EntryControls=0000d1ff ExitControls=002fefff [ 1584.562086] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1584.567882] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1584.594176] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1584.619079] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1584.620748] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1584.644140] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1584.663745] reason=80000021 qualification=0000000000000000 [ 1584.663781] Interruptibility = 00000000 ActivityState = 00000000 [ 1584.677006] IDTVectoring: info=00000000 errcode=00000000 [ 1584.695911] TSC Offset = 0xfffffcad701a3cdf [ 1584.702194] *** Host State *** [ 1584.706139] TPR Threshold = 0x00 [ 1584.713115] EPT pointer = 0x000000009eb8501e [ 1584.718797] RIP = 0xffffffff811c8cac RSP = 0xffff8880569f78c0 [ 1584.743768] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1584.750415] FSBase=00007f8eb14c3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1584.795036] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1584.829328] CR0=0000000080050033 CR3=000000007dc35000 CR4=00000000001426e0 03:43:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:47 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_INIT(r0, 0x0, 0xfd96) 03:43:47 executing program 0: syz_emit_ethernet(0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x0) [ 1584.853681] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1584.880419] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1584.909530] *** Control State *** [ 1584.933854] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1584.940652] EntryControls=0000d1ff ExitControls=002fefff [ 1584.958513] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:43:47 executing program 3: r0 = syz_open_dev$sndseq(0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000440)) [ 1584.981430] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1585.009436] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1585.034793] reason=80000021 qualification=0000000000000000 [ 1585.060709] IDTVectoring: info=00000000 errcode=00000000 [ 1585.083189] TSC Offset = 0xfffffcad2828c36f [ 1585.111322] TPR Threshold = 0x00 [ 1585.133065] EPT pointer = 0x000000005b0af01e 03:43:47 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='fuse\x00', 0x0, &(0x7f0000000580)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@max_read={'max_read'}}]}}) 03:43:47 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:47 executing program 3: syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000440)) 03:43:47 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r0, 0x0, 0x0) 03:43:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:43:48 executing program 3: syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000440)) 03:43:48 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:48 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) [ 1586.119649] *** Guest State *** [ 1586.135097] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 03:43:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='map_files\x00') getdents64(r0, &(0x7f0000000100)=""/104, 0x28) [ 1586.164057] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1586.191019] CR3 = 0x0000000000000000 [ 1586.203100] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1586.239466] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1586.265017] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1586.294968] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1586.319127] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1586.388369] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1586.423901] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1586.440556] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1586.470094] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1586.504226] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:48 executing program 3: syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000440)) [ 1586.549219] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1586.584227] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1586.592343] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1586.623865] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1586.630710] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1586.695857] Interruptibility = 00000000 ActivityState = 00000000 [ 1586.714029] *** Host State *** [ 1586.717522] RIP = 0xffffffff811c8cac RSP = 0xffff8880593ef8c0 [ 1586.741764] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:43:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000b6dfc8)={0x500, 0x0, &(0x7f00008feff0)={&(0x7f0000000080)={0x2, 0x400000000000003, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[0x300000000000000, 0x0, 0x0, 0x6000000, 0x0, 0x0, 0x0, 0x40030000000000]}}}, @sadb_address={0x5, 0x9, 0xffffff80, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffff07}]}, 0x70}}, 0x0) 03:43:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1586.798959] FSBase=00007f04642d3700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000 [ 1586.818404] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1586.833476] CR0=0000000080050033 CR3=000000009f932000 CR4=00000000001426e0 03:43:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) chdir(&(0x7f0000000180)='./file0\x00') r1 = open(&(0x7f0000000280)='./bus\x00', 0x141042, 0x0) write$cgroup_int(r1, &(0x7f0000000000), 0x12) [ 1586.890007] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1586.899041] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1586.944892] *** Control State *** [ 1586.962196] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:43:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1586.998325] EntryControls=0000d1ff ExitControls=002fefff [ 1587.022345] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1587.053777] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1587.060446] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1587.114248] reason=80000021 qualification=0000000000000000 [ 1587.141508] IDTVectoring: info=00000000 errcode=00000000 [ 1587.172071] TSC Offset = 0xfffffcac15ca677f [ 1587.196088] TPR Threshold = 0x00 [ 1587.212683] EPT pointer = 0x000000009875a01e 03:43:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:49 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, 0x0) [ 1587.327443] *** Guest State *** 03:43:49 executing program 2: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000000c0)=[@in={0x2, 0x0, @local}], 0x3c0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x6d, &(0x7f0000ad2000), &(0x7f0000000000)=0x377) [ 1587.348372] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1587.374590] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1587.404603] CR3 = 0x0000000000000000 [ 1587.410760] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1587.432340] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1587.475935] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1587.485748] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1587.529435] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1587.563804] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1587.583850] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1587.598557] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:50 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, 0x0) [ 1587.645082] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 03:43:50 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000700)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in, 0x0, 0x33}, 0x0, @in6=@mcast2}}, 0xe8) sendmmsg(r1, &(0x7f0000005fc0), 0x800000000000059, 0x0) [ 1587.722126] GDTR: limit=0x0000ffff, base=0x0000000000000000 03:43:50 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000040)) [ 1587.806836] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 03:43:50 executing program 2: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2f) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="86000140005b6a533d1533eaa29450e03bd4bba13c7ee7cfe2c961b75165e2174c06ef7f0bb60b6505bf8a0000000000825500000000f4ee46"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1587.883730] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1587.891805] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1587.924637] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1587.939224] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1587.977486] Interruptibility = 00000000 ActivityState = 00000000 [ 1588.001910] *** Host State *** [ 1588.020646] RIP = 0xffffffff811c8cac RSP = 0xffff888097c1f8c0 [ 1588.059499] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1588.091141] FSBase=00007f8eb14c3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 03:43:50 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, 0x0) [ 1588.123943] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1588.129857] CR0=0000000080050033 CR3=00000000928a3000 CR4=00000000001426f0 [ 1588.193223] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1588.222636] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1588.233744] net_ratelimit: 18 callbacks suppressed [ 1588.233756] protocol 88fb is buggy, dev hsr_slave_0 [ 1588.243815] protocol 88fb is buggy, dev hsr_slave_1 [ 1588.245703] *** Control State *** [ 1588.254685] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 03:43:50 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x400000, 0x0, 0x44fe}) [ 1588.288895] EntryControls=0000d1ff ExitControls=002fefff [ 1588.323400] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1588.366224] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1588.402768] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1588.438437] reason=80000021 qualification=0000000000000000 [ 1588.466459] IDTVectoring: info=00000000 errcode=00000000 [ 1588.471917] TSC Offset = 0xfffffcab6d181a5b [ 1588.524869] TPR Threshold = 0x00 [ 1588.541814] EPT pointer = 0x000000008d61701e 03:43:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:50 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ion\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, 0x0) 03:43:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000280)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000340)={0x20, 0x1, &(0x7f0000000200)="a65bec9d7669d5b5bf563960ad93", {0x9, 0x0, 0x55595659, 0x3, 0x5, 0x1f, 0x4, 0x1000}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:43:51 executing program 3: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = accept(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x0) 03:43:51 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000dddfc8)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c00000004080513f14d11fffdffff010a0000000c000300ffffffff7d0a00b60c0002000002fa17711104a6"], 0x2c}}, 0x0) 03:43:51 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) migrate_pages(0x0, 0x400, &(0x7f0000000240)=0xfffffffffffffffb, &(0x7f0000000300)=0x5) openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) 03:43:51 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000b86000)={0x0, 0x0}, 0x11f) r0 = syz_open_procfs(0x0, &(0x7f0000000940)='numa_maps\x00') mlock2(&(0x7f0000bbd000/0x1000)=nil, 0x1000, 0x0) sendfile(r0, r0, &(0x7f0000000000)=0x15000010, 0xffff) [ 1588.928480] *** Guest State *** [ 1588.944099] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1588.964008] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1589.004032] CR3 = 0x0000000000000000 [ 1589.011786] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1589.029860] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 1589.054121] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1589.087152] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 1589.114432] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1589.129373] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1589.153983] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1589.190936] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1589.199564] protocol 88fb is buggy, dev hsr_slave_0 [ 1589.199964] protocol 88fb is buggy, dev hsr_slave_1 [ 1589.254696] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1589.293218] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1589.312241] kauditd_printk_skb: 26 callbacks suppressed [ 1589.312252] audit: type=1400 audit(2000000631.620:784): avc: denied { create } for pid=2510 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 1589.330157] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 1589.367476] netlink: 'syz-executor.0': attribute type 3 has an invalid length. [ 1589.435664] audit: type=1400 audit(2000000631.670:785): avc: denied { write } for pid=2510 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 1589.449672] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1589.503760] netlink: 'syz-executor.0': attribute type 2 has an invalid length. [ 1589.568875] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1589.594094] protocol 88fb is buggy, dev hsr_slave_0 [ 1589.599643] protocol 88fb is buggy, dev hsr_slave_1 [ 1589.605544] protocol 88fb is buggy, dev hsr_slave_0 [ 1589.611044] protocol 88fb is buggy, dev hsr_slave_1 [ 1589.614072] kasan: CONFIG_KASAN_INLINE enabled 03:43:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x77, 0x0, [0x4b564d02, 0x3]}) ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, 0x0) ioctl$PERF_EVENT_IOC_ID(0xffffffffffffffff, 0x80082407, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1589.656077] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1589.674080] protocol 88fb is buggy, dev hsr_slave_0 [ 1589.679571] protocol 88fb is buggy, dev hsr_slave_1 [ 1589.696124] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 1589.723764] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 03:43:52 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/uinput\x00', 0x0, 0x0) r1 = epoll_create(0x3) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)) [ 1589.791343] Interruptibility = 00000000 ActivityState = 00000000 [ 1589.848396] *** Host State *** [ 1589.863076] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 1589.869341] CPU: 0 PID: 2543 Comm: syz-executor.0 Not tainted 4.19.34 #2 [ 1589.876185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1589.885587] RIP: 0010:generic_timeout_obj_to_nlattr+0x77/0x120 [ 1589.891550] Code: b5 41 c7 00 f1 f1 f1 f1 c7 40 04 04 f3 f3 f3 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 e8 50 32 d5 fb 4c 89 e0 48 c1 e8 03 <42> 0f b6 14 38 4c 89 e0 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 74 [ 1589.910481] RSP: 0018:ffff888056e5f3d8 EFLAGS: 00010246 [ 1589.915868] RAX: 0000000000000000 RBX: 1ffff1100adcbe7b RCX: ffffc90005e7f000 [ 1589.923133] RDX: 0000000000036bb7 RSI: ffffffff859604f0 RDI: ffff888089d17a80 [ 1589.930417] RBP: ffff888056e5f460 R08: ffff88805f62a680 R09: ffff888050a62628 [ 1589.937694] R10: ffffed100a14c4c4 R11: ffff888050a62620 R12: 0000000000000000 [ 1589.944956] R13: ffff888056e5f438 R14: ffff888089d17a80 R15: dffffc0000000000 [ 1589.952218] FS: 00007fc383844700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 1589.960482] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1589.966388] CR2: 00007ffe60bd3090 CR3: 0000000089301000 CR4: 00000000001426f0 [ 1589.973658] Call Trace: [ 1589.976253] ? generic_timeout_nlattr_to_obj+0x140/0x140 [ 1589.981702] ? __nla_put+0x37/0x40 [ 1589.985235] ? nla_put+0x116/0x150 [ 1589.988846] cttimeout_default_get+0x69a/0xa80 [ 1589.993433] ? cttimeout_del_timeout+0x1a0/0x1a0 [ 1589.998186] ? lock_is_held_type+0x2f/0x210 [ 1590.002510] ? cttimeout_del_timeout+0x1a0/0x1a0 [ 1590.007277] nfnetlink_rcv_msg+0xd12/0xfe0 [ 1590.011546] ? nfnetlink_bind+0x2d0/0x2d0 [ 1590.015710] ? avc_has_extended_perms+0x10f0/0x10f0 [ 1590.020740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1590.026284] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1590.031837] ? cred_has_capability+0x193/0x320 [ 1590.036436] ? selinux_ipv4_output+0x50/0x50 [ 1590.040870] ? __sanitizer_cov_trace_cmp1+0x3/0x20 [ 1590.045812] netlink_rcv_skb+0x180/0x460 [ 1590.049914] ? nfnetlink_bind+0x2d0/0x2d0 [ 1590.054063] ? netlink_ack+0xb60/0xb60 [ 1590.057969] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1590.063553] ? ns_capable+0x23/0x30 [ 1590.067206] ? __netlink_ns_capable+0x104/0x140 [ 1590.071898] nfnetlink_rcv+0x1c0/0x460 [ 1590.075792] ? nfnetlink_rcv_batch+0x1770/0x1770 [ 1590.080554] ? netlink_deliver_tap+0x254/0xc20 [ 1590.085162] netlink_unicast+0x53c/0x720 [ 1590.089222] ? netlink_attachskb+0x770/0x770 [ 1590.093637] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1590.099165] netlink_sendmsg+0x8ae/0xd70 [ 1590.103221] ? netlink_unicast+0x720/0x720 [ 1590.107463] ? selinux_socket_sendmsg+0x36/0x40 [ 1590.112135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1590.117693] ? security_socket_sendmsg+0x93/0xc0 [ 1590.122449] ? netlink_unicast+0x720/0x720 [ 1590.126709] sock_sendmsg+0xdd/0x130 [ 1590.130436] ___sys_sendmsg+0x806/0x930 [ 1590.134408] ? copy_msghdr_from_user+0x430/0x430 [ 1590.139163] ? lock_downgrade+0x810/0x810 [ 1590.143308] ? kasan_check_read+0x11/0x20 [ 1590.147454] ? __fget+0x367/0x540 [ 1590.150916] ? iterate_fd+0x360/0x360 [ 1590.154722] ? lock_downgrade+0x810/0x810 [ 1590.158870] ? __fget_light+0x1a9/0x230 [ 1590.162887] ? __fdget+0x1b/0x20 [ 1590.166263] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1590.171802] __sys_sendmsg+0x105/0x1d0 [ 1590.175718] ? __ia32_sys_shutdown+0x80/0x80 [ 1590.180128] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1590.184878] ? do_syscall_64+0x26/0x610 [ 1590.188869] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1590.194244] ? do_syscall_64+0x26/0x610 [ 1590.198238] __x64_sys_sendmsg+0x78/0xb0 [ 1590.202415] do_syscall_64+0x103/0x610 [ 1590.206327] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1590.211547] RIP: 0033:0x458c29 [ 1590.214736] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1590.233714] RSP: 002b:00007fc383843c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1590.241418] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 1590.248678] RDX: 0000000000000000 RSI: 0000000020dddfc8 RDI: 0000000000000003 [ 1590.255952] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1590.263213] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc3838446d4 [ 1590.270477] R13: 00000000004c6501 R14: 00000000004dae68 R15: 00000000ffffffff [ 1590.277760] Modules linked in: [ 1590.291533] RIP = 0xffffffff811c8cac RSP = 0xffff88805f3df8c0 [ 1590.297558] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1590.304009] FSBase=00007f04642d3700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000 [ 1590.311819] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 1590.317901] CR0=0000000080050033 CR3=000000008c710000 CR4=00000000001426f0 [ 1590.324947] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff870013a0 [ 1590.331853] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1590.333332] kobject: 'loop1' (00000000688fb216): kobject_uevent_env [ 1590.337955] *** Control State *** [ 1590.347967] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 1590.348020] ---[ end trace aa679039c78a55e5 ]--- [ 1590.362670] RIP: 0010:generic_timeout_obj_to_nlattr+0x77/0x120 [ 1590.386974] EntryControls=0000d1ff ExitControls=002fefff [ 1590.396283] kobject: 'loop1' (00000000688fb216): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1590.406028] Code: b5 41 c7 00 f1 f1 f1 f1 c7 40 04 04 f3 f3 f3 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 e8 50 32 d5 fb 4c 89 e0 48 c1 e8 03 <42> 0f b6 14 38 4c 89 e0 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 74 [ 1590.413677] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:43:52 executing program 2: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, 0x0) [ 1590.450366] kobject: 'loop3' (000000002818de33): kobject_uevent_env [ 1590.457538] RSP: 0018:ffff888056e5f3d8 EFLAGS: 00010246 [ 1590.463007] kobject: 'loop3' (000000002818de33): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1590.466731] VMEntry: intr_info=8000030e errcode=00000000 ilen=00000000 [ 1590.477933] RAX: 0000000000000000 RBX: 1ffff1100adcbe7b RCX: ffffc90005e7f000 [ 1590.497789] RDX: 0000000000036bb7 RSI: ffffffff859604f0 RDI: ffff888089d17a80 [ 1590.499325] kobject: 'kvm' (000000002fb0f118): kobject_uevent_env [ 1590.521231] RBP: ffff888056e5f460 R08: ffff88805f62a680 R09: ffff888050a62628 [ 1590.531943] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1590.542892] reason=80000021 qualification=0000000000000000 [ 1590.543802] kobject: 'loop2' (00000000ac2f9452): kobject_uevent_env [ 1590.550288] kobject: 'kvm' (000000002fb0f118): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1590.558615] R10: ffffed100a14c4c4 R11: ffff888050a62620 R12: 0000000000000000 [ 1590.576691] IDTVectoring: info=00000000 errcode=00000000 [ 1590.580957] R13: ffff888056e5f438 R14: ffff888089d17a80 R15: dffffc0000000000 [ 1590.592953] kobject: 'loop2' (00000000ac2f9452): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 1590.596887] TSC Offset = 0xfffffcaa91605948 [ 1590.609108] FS: 00007fc383844700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 1590.635551] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1590.640430] TPR Threshold = 0x00 [ 1590.657398] CR2: 00007f33db093db8 CR3: 0000000089301000 CR4: 00000000001426e0 [ 1590.657439] EPT pointer = 0x000000009284801e [ 1590.687710] Kernel panic - not syncing: Fatal exception [ 1590.687882] kobject: 'kvm' (000000002fb0f118): kobject_uevent_env [ 1590.693835] Kernel Offset: disabled [ 1590.703655] Rebooting in 86400 seconds..