f9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) bind$llc(r0, &(0x7f0000000700)={0x1a, 0x33d, 0x200, 0x1, 0x2, 0x7, @random="e52c067a0789"}, 0x10) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) syz_open_dev$sg(&(0x7f0000000740)='/dev/sg#\x00', 0x101, 0x40000) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) sendmsg$inet_sctp(r1, &(0x7f0000000400)={&(0x7f0000000200)=@in={0x2, 0x4e22, @multicast2}, 0x10, &(0x7f0000000280)=[{&(0x7f00000004c0)="31d4431b63b7d9bda916ab5e1ce65781a6ca4c059d7614faf5e58f91826499be824578d93fdea588fe6cc76c5d68837bf4a3de893a0933a86eaaa55da6781af7021ac85a5e925211273ef3da2444d496283adc5372b405a34bc62febbb8f4cb6f62121a999a8b1e0c4272848fb2f5e86bf8a6ae15523e51e00623bbeac6c1ce6748afae546afa4118ed761cb911009e448caa027de450dec6346d93bf35b70f91bbc31309c9eff83ec03fd15a7c210355ecfe1310b81ae6edaf4bdaf95a4", 0xbe}, {&(0x7f0000000580)="271deee8192dcbc448016fe7661696adb81f1aee682961d27b0b5f726c18def69636d72c7a610bc101027a7370249c30ba670bf27039de9d254e2105f3996e758975ece8cd1abf2882ad0789443947a967439152007b1e301eaf1fcf8017dfc35e69632d582a89c9d4c8bdba45da7eb58e56bed06938d25c97a3eea39d53950230c717bf64e693ba321ed401a5488361b44b6c2c3b827913545189d0c00033b9b73d", 0xa2}], 0x2, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000084000000070000007f0000010000000018000000000000008400000005000000100000000000008400000008000000ff01000000000000000000000000000100000000002bde000080d76f487e6ba11d568e8e1cab8604d7738dccba508814f5e1395631676826474c4c167af51867455bc768459f014a7f840782869d523f748fbcdf54458b5ee1302aa8808d456e907a3b656b03820cabaf15504b01ed417dbb647958a4d0"], 0x50}, 0x844) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:07 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x8848]}) 16:07:07 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:07 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:07 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) fcntl$dupfd(r0, 0x406, r2) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000200)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) getsockopt$inet6_dccp_int(r1, 0x21, 0x3, &(0x7f0000000200), &(0x7f0000000280)=0x4) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1324.217077] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1324.223999] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1324.247164] Interruptibility = 00000000 ActivityState = 00000000 [ 1324.260289] *** Host State *** [ 1324.263660] RIP = 0xffffffff812048fe RSP = 0xffff8881d88af390 [ 1324.270946] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1324.277604] FSBase=00007f6581f3e700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1324.286601] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1324.310713] CR0=0000000080050033 CR3=000000018472b000 CR4=00000000001426f0 [ 1324.317981] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1324.325208] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1324.345423] *** Control State *** [ 1324.355426] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1324.362402] EntryControls=0000d1ff ExitControls=002fefff [ 1324.362455] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1324.362468] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1324.362550] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1324.362631] reason=80000021 qualification=0000000000000000 [ 1324.375280] IDTVectoring: info=00000000 errcode=00000000 [ 1324.403588] TSC Offset = 0xfffffd390725d6de [ 1324.408148] EPT pointer = 0x00000001d730701e 16:07:08 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x8035]}) [ 1324.480159] *** Guest State *** [ 1324.483552] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1324.492554] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1324.501736] CR3 = 0x0000000000000000 [ 1324.505518] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1324.514765] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1324.531290] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1324.538181] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.546374] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.566184] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.579597] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.587937] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.596309] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.620478] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1324.634272] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.647579] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1324.661469] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1324.675133] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1324.688752] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1324.696408] Interruptibility = 00000000 ActivityState = 00000000 [ 1324.703065] *** Host State *** [ 1324.706463] RIP = 0xffffffff812048fe RSP = 0xffff8881d818f390 [ 1324.716706] *** Guest State *** [ 1324.720224] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1324.723070] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:08 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0xfff, 0x140) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0xff54) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000400)='cubic\x00', 0x6) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x3, 0x0, 0x0, [], [], [], 0x5, 0x7}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$VIDIOC_G_PARM(r1, 0xc0cc5615, &(0x7f0000000540)={0xb, @output={0x1000, 0x1, {0x4, 0x4}, 0xff, 0xa2c4}}) ioctl$KVM_GET_CLOCK(r3, 0x8030ae7c, &(0x7f0000000480)) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f00000004c0)="2f70726f632f73656c662f6e65742f70666b65790020cb5b13900aec8c00f10ef1c421c2e231089740eeb830995727494c8ed0ca504e7418716e1e7821a72bb77633889d2edbebe0eee79af78ff0fbb6a2baf91df6", 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000000200)) socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1324.729168] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1324.738651] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1324.745362] CR3 = 0x0000000000000000 [ 1324.752558] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1324.762296] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1324.772225] CR0=0000000080050033 CR3=00000001d4a97000 CR4=00000000001426f0 [ 1324.773937] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:08 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:08 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xf0]}) [ 1324.787884] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1324.793181] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1324.799865] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1324.803051] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.807520] *** Control State *** [ 1324.816849] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.837240] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1324.837627] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.844157] EntryControls=0000d1ff ExitControls=002fefff [ 1324.844231] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1324.844241] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1324.844310] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1324.844356] reason=80000021 qualification=0000000000000000 [ 1324.844364] IDTVectoring: info=00000000 errcode=00000000 [ 1324.844370] TSC Offset = 0xfffffd38bc7b999f [ 1324.844437] EPT pointer = 0x000000017b4c401e [ 1324.853638] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.909000] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.917060] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:08 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1324.943814] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1324.970754] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1324.984399] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1324.998018] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1325.011583] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1325.018242] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1325.025843] Interruptibility = 00000000 ActivityState = 00000000 [ 1325.048728] *** Host State *** [ 1325.052093] RIP = 0xffffffff812048fe RSP = 0xffff88817e1cf390 [ 1325.058267] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1325.075179] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1325.085723] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1325.099273] CR0=0000000080050033 CR3=00000001b90ff000 CR4=00000000001426e0 [ 1325.106495] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1325.113483] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1325.132430] *** Control State *** [ 1325.135995] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 16:07:08 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xffffdd86]}) [ 1325.144843] EntryControls=0000d1ff ExitControls=002fefff [ 1325.168990] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1325.175968] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1325.182727] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1325.191989] reason=80000021 qualification=0000000000000000 16:07:08 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000400)={0x0, 0x319, 0x30}, &(0x7f00000004c0)=0xc) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000500)={r6, @in6={{0xa, 0x4e24, 0xf7, @mcast2, 0x1ff}}}, 0x84) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000200)=0x11, 0x4) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) r7 = semget$private(0x0, 0x7, 0x80) semctl$GETVAL(r7, 0x0, 0xc, &(0x7f0000000280)=""/35) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1325.202937] IDTVectoring: info=00000000 errcode=00000000 [ 1325.213783] TSC Offset = 0xfffffd38abdf9c06 [ 1325.218145] EPT pointer = 0x00000001b7fe301e 16:07:08 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0xfff, 0x140) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0xff54) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000400)='cubic\x00', 0x6) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x3, 0x0, 0x0, [], [], [], 0x5, 0x7}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$VIDIOC_G_PARM(r1, 0xc0cc5615, &(0x7f0000000540)={0xb, @output={0x1000, 0x1, {0x4, 0x4}, 0xff, 0xa2c4}}) ioctl$KVM_GET_CLOCK(r3, 0x8030ae7c, &(0x7f0000000480)) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f00000004c0)="2f70726f632f73656c662f6e65742f70666b65790020cb5b13900aec8c00f10ef1c421c2e231089740eeb830995727494c8ed0ca504e7418716e1e7821a72bb77633889d2edbebe0eee79af78ff0fbb6a2baf91df6", 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000000200)) socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1325.341397] *** Guest State *** [ 1325.344862] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1325.354157] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1325.363267] CR3 = 0x0000000000000000 [ 1325.367130] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1325.375068] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:09 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:09 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:09 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4001000000000000]}) [ 1325.391506] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1325.401683] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.413208] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.427318] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.440930] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.454464] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.473512] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.482347] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1325.495537] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.509311] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1325.517574] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1325.525877] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1325.549891] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1325.557539] Interruptibility = 00000000 ActivityState = 00000000 [ 1325.564558] *** Host State *** [ 1325.567899] RIP = 0xffffffff812048fe RSP = 0xffff8881b96af390 [ 1325.584410] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1325.599677] FSBase=00007f6581f3e700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1325.607674] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1325.613911] CR0=0000000080050033 CR3=00000001c2681000 CR4=00000000001426f0 [ 1325.637937] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1325.646058] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1325.657520] *** Control State *** [ 1325.668138] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1325.675129] EntryControls=0000d1ff ExitControls=002fefff [ 1325.685395] *** Guest State *** [ 1325.685603] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1325.689161] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1325.700437] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1325.705310] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1325.711935] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1325.727253] CR3 = 0x0000000000000000 [ 1325.730770] reason=80000021 qualification=0000000000000000 [ 1325.742564] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1325.743753] *** Guest State *** [ 1325.748936] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1325.752169] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1325.767238] IDTVectoring: info=00000000 errcode=00000000 [ 1325.767310] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1325.773161] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1325.788705] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.788713] TSC Offset = 0xfffffd3854c06c8c [ 1325.796801] EPT pointer = 0x000000017cff801e [ 1325.801233] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.805750] CR3 = 0x0000000000000000 [ 1325.818897] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1325.819627] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.825063] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1325.839976] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.848705] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1325.855507] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.862390] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.863727] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.876066] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.883669] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.891472] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1325.903921] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.904183] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.916761] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.930185] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.931020] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1325.938299] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1325.946482] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1325.954471] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1325.969632] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1325.975719] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1325.976902] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1325.976914] Interruptibility = 00000000 ActivityState = 00000000 16:07:09 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x88640000]}) [ 1326.000334] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1326.008023] *** Host State *** [ 1326.008539] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1326.008593] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1326.018229] Interruptibility = 00000000 ActivityState = 00000000 [ 1326.025964] RIP = 0xffffffff812048fe RSP = 0xffff88817cfcf390 [ 1326.038193] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1326.044747] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1326.044760] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1326.044775] CR0=0000000080050033 CR3=00000001cdede000 CR4=00000000001426f0 [ 1326.052845] *** Host State *** [ 1326.069443] RIP = 0xffffffff812048fe RSP = 0xffff88817fcdf390 [ 1326.069466] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1326.075600] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1326.088883] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1326.090935] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1326.096761] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1326.096781] CR0=0000000080050033 CR3=00000001bcd11000 CR4=00000000001426e0 [ 1326.104161] *** Control State *** [ 1326.122000] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1326.128020] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1326.129949] EntryControls=0000d1ff ExitControls=002fefff [ 1326.137953] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1326.141549] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1326.147368] *** Control State *** [ 1326.147433] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1326.159615] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1326.165668] EntryControls=0000d1ff ExitControls=002fefff [ 1326.180865] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1326.187609] reason=80000021 qualification=0000000000000000 [ 1326.187618] IDTVectoring: info=00000000 errcode=00000000 [ 1326.187625] TSC Offset = 0xfffffd380dcab9d0 [ 1326.194271] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1326.200441] EPT pointer = 0x00000001d1c8901e [ 1326.204052] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1326.204100] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1326.222711] reason=80000021 qualification=0000000000000000 [ 1326.239052] IDTVectoring: info=00000000 errcode=00000000 [ 1326.244731] TSC Offset = 0xfffffd3822c532eb [ 1326.250191] EPT pointer = 0x00000001c43f101e 16:07:09 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:09 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0xfff, 0x140) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0xff54) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000400)='cubic\x00', 0x6) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x3, 0x0, 0x0, [], [], [], 0x5, 0x7}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$VIDIOC_G_PARM(r1, 0xc0cc5615, &(0x7f0000000540)={0xb, @output={0x1000, 0x1, {0x4, 0x4}, 0xff, 0xa2c4}}) ioctl$KVM_GET_CLOCK(r3, 0x8030ae7c, &(0x7f0000000480)) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f00000004c0)="2f70726f632f73656c662f6e65742f70666b65790020cb5b13900aec8c00f10ef1c421c2e231089740eeb830995727494c8ed0ca504e7418716e1e7821a72bb77633889d2edbebe0eee79af78ff0fbb6a2baf91df6", 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000000200)) socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1326.332559] *** Guest State *** [ 1326.336121] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1326.345221] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1326.354245] CR3 = 0x0000000000000000 [ 1326.358054] RSP = 0x0000000000000000 RIP = 0x0000000000000000 16:07:10 executing program 1: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x6488]}) 16:07:10 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4305]}) [ 1326.384288] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1326.390545] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1326.397237] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.405335] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.419358] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:10 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1326.427369] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.435690] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.459553] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.468212] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1326.476333] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.500767] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1326.514132] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1326.527684] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1326.541181] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1326.552252] Interruptibility = 00000000 ActivityState = 00000000 [ 1326.564908] *** Host State *** [ 1326.568183] RIP = 0xffffffff812048fe RSP = 0xffff888186e3f390 [ 1326.575540] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1326.591056] FSBase=00007f3537b89700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1326.601930] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1326.607911] CR0=0000000080050033 CR3=00000001cdede000 CR4=00000000001426e0 [ 1326.615228] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1326.637005] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1326.648775] *** Control State *** 16:07:10 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x8100]}) [ 1326.652373] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1326.659105] EntryControls=0000d1ff ExitControls=002fefff [ 1326.664566] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1326.676848] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1326.697092] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1326.708657] reason=80000021 qualification=0000000000000000 [ 1326.719774] IDTVectoring: info=00000000 errcode=00000000 [ 1326.720250] *** Guest State *** [ 1326.725253] TSC Offset = 0xfffffd380dcab9d0 [ 1326.725263] EPT pointer = 0x00000001d1c8901e [ 1326.728789] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1326.746751] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 16:07:10 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) get_thread_area(&(0x7f0000000200)={0x3f, 0x20101000, 0x2000, 0xff, 0x4, 0x3, 0xb36, 0x6d21cda5, 0x80000001, 0x7}) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:10 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:10 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1326.775369] CR3 = 0x0000000000000000 [ 1326.779273] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1326.785305] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1326.785320] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1326.798140] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.806402] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.829555] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.837698] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.846089] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.870155] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.883331] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1326.897160] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1326.910598] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1326.938871] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1326.947209] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1326.954009] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1326.963379] Interruptibility = 00000000 ActivityState = 00000000 [ 1326.976034] *** Host State *** 16:07:10 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xe]}) [ 1326.986961] RIP = 0xffffffff812048fe RSP = 0xffff88817b997390 [ 1326.993431] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1327.003005] FSBase=00007f6581f3e700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1327.013694] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1327.027016] CR0=0000000080050033 CR3=00000001c1eff000 CR4=00000000001426f0 [ 1327.037275] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1327.049515] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1327.055691] *** Control State *** [ 1327.060737] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1327.067494] EntryControls=0000d1ff ExitControls=002fefff [ 1327.077204] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1327.097619] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1327.109420] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1327.116290] reason=80000021 qualification=0000000000000000 [ 1327.122849] IDTVectoring: info=00000000 errcode=00000000 [ 1327.142989] TSC Offset = 0xfffffd37834ef5f8 16:07:10 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1327.147555] EPT pointer = 0x00000001c5dbf01e [ 1327.186130] *** Guest State *** [ 1327.189690] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1327.198750] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1327.207730] CR3 = 0x0000000000000000 [ 1327.211812] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1327.217892] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1327.227279] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:10 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1327.247151] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.258787] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.267029] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.275383] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:10 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4888]}) [ 1327.299397] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.307700] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.316087] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1327.353438] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.361678] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1327.369886] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1327.378062] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1327.384810] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1327.395621] *** Guest State *** 16:07:11 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1327.399238] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1327.404759] Interruptibility = 00000000 ActivityState = 00000000 [ 1327.408186] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1327.417246] *** Host State *** [ 1327.426859] CR3 = 0x0000000000000000 [ 1327.433367] RIP = 0xffffffff812048fe RSP = 0xffff8881820ff390 [ 1327.443860] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1327.451621] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1327.457702] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1327.464119] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1327.472014] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1327.479928] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1327.486272] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.494637] CR0=0000000080050033 CR3=00000001b300a000 CR4=00000000001426f0 [ 1327.494670] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.501844] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1327.509819] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.516514] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1327.524479] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.524499] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.524522] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.547293] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1327.554972] *** Control State *** [ 1327.569840] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1327.570648] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1327.578003] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1327.584743] EntryControls=0000d1ff ExitControls=002fefff [ 1327.584759] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1327.584769] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1327.584779] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1327.584791] reason=80000021 qualification=0000000000000000 [ 1327.584855] IDTVectoring: info=00000000 errcode=00000000 [ 1327.584928] TSC Offset = 0xfffffd374048b00f [ 1327.607801] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1327.620816] EPT pointer = 0x000000018986b01e [ 1327.628478] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1327.675435] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1327.693383] Interruptibility = 00000000 ActivityState = 00000000 [ 1327.706103] *** Host State *** [ 1327.717087] RIP = 0xffffffff812048fe RSP = 0xffff8881d8bcf390 [ 1327.723821] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1327.732814] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1327.743718] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1327.756920] CR0=0000000080050033 CR3=00000001c3407000 CR4=00000000001426e0 [ 1327.766986] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 16:07:11 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1327.778928] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1327.785183] *** Control State *** [ 1327.790117] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1327.792213] *** Guest State *** [ 1327.796825] EntryControls=0000d1ff ExitControls=002fefff [ 1327.796841] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1327.796856] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1327.811641] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1327.823287] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1327.842251] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1327.844191] reason=80000021 qualification=0000000000000000 [ 1327.863862] IDTVectoring: info=00000000 errcode=00000000 16:07:11 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:11 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x14]}) 16:07:11 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) gettid() r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1327.875638] TSC Offset = 0xfffffd3739372752 [ 1327.884828] EPT pointer = 0x00000001ccbb501e [ 1327.950295] CR3 = 0x0000000000000000 [ 1327.963886] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1327.994796] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1328.001632] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1328.008456] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.016925] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.025159] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.033220] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.041315] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.049363] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.057806] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1328.065943] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.076179] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1328.084317] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1328.092418] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1328.098917] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1328.106582] Interruptibility = 00000000 ActivityState = 00000000 [ 1328.113028] *** Host State *** [ 1328.116301] RIP = 0xffffffff812048fe RSP = 0xffff8881bbbbf390 [ 1328.123514] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1328.139430] FSBase=00007f3537b89700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1328.178989] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1328.196297] CR0=0000000080050033 CR3=00000001b300a000 CR4=00000000001426e0 [ 1328.215933] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1328.257848] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1328.264179] *** Control State *** [ 1328.267663] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1328.285795] EntryControls=0000d1ff ExitControls=002fefff [ 1328.292660] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1328.300804] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:11 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:11 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:11 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x11]}) 16:07:11 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:11 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket(0xa, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000580)=@nat={'%at\x00', 0x19, 0x1, 0x1e0, [0x20000380, 0x0, 0x0, 0x20000500, 0x20000530], 0x0, &(0x7f0000000040), &(0x7f0000000380)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1d, 0x0, 0x0, 'team_slave_0\x00', 'bridge_slave_0\x00', 'bond_slave_1\x00', 'veth1_to_bridge\x00', @empty, [], @dev, [], 0xe0, 0x12f, 0x150, [@stp={'stp\x00', 0x48, {{0x0, {0x0, 0x0, 0x0, @local, [], 0x0, 0x0, 0x0, 0x0, @local}}}}]}, [@snat={'snat\x00', 0x10, {{@local}}}]}, @snat={'snat\x00', 0x10, {{@random="5f5a1fad6899"}}}}]}, {0x0, '\x00', 0x1}, {0x0, '\x00', 0x1}]}, 0x258) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) umount2(&(0x7f0000000200)='./file0\x00', 0x4) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0xfffffffffffffffb) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:11 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) gettid() r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1328.307568] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 1328.314726] reason=80000021 qualification=0000000000000000 [ 1328.321138] IDTVectoring: info=00000000 errcode=00000000 [ 1328.326612] TSC Offset = 0xfffffd374048b00f [ 1328.331026] EPT pointer = 0x000000018986b01e 16:07:12 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x14000000]}) [ 1328.611713] *** Guest State *** [ 1328.615300] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1328.617602] kernel msg: ebtables bug: please report to author: target size too small [ 1328.624402] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1328.624416] CR3 = 0x0000000000000000 [ 1328.659290] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1328.665515] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1328.671993] *** Guest State *** [ 1328.675569] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1328.675585] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1328.684678] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1328.702901] CR3 = 0x0000000000000000 [ 1328.706821] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1328.706994] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.717721] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1328.727710] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.736628] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1328.743773] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.752130] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.760365] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.768596] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.776656] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.778040] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.784903] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.802657] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.813601] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1328.822330] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.830863] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.840614] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1328.843377] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.848734] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1328.848746] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1328.848758] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1328.848769] Interruptibility = 00000000 ActivityState = 00000000 [ 1328.848774] *** Host State *** [ 1328.848850] RIP = 0xffffffff812048fe RSP = 0xffff888180cef390 [ 1328.856883] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1328.865134] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:12 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4400]}) [ 1328.909665] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1328.917853] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1328.926226] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1328.936297] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1328.943049] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1328.944590] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1328.956546] CR0=0000000080050033 CR3=00000001cea02000 CR4=00000000001426e0 [ 1328.956921] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1328.968652] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1328.981136] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1328.981620] Interruptibility = 00000000 ActivityState = 00000000 [ 1328.987284] *** Control State *** [ 1328.987296] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1328.987305] EntryControls=0000d1ff ExitControls=002fefff [ 1328.987320] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1328.987331] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1328.987345] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1328.987391] reason=80000021 qualification=0000000000000000 [ 1328.994005] *** Host State *** [ 1329.018112] IDTVectoring: info=00000000 errcode=00000000 [ 1329.030650] RIP = 0xffffffff812048fe RSP = 0xffff88817e1cf390 [ 1329.033409] TSC Offset = 0xfffffd367ca27481 [ 1329.037268] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:12 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x806]}) [ 1329.044319] EPT pointer = 0x0000000187ab201e [ 1329.062516] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1329.078893] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1329.084903] CR0=0000000080050033 CR3=00000001d778e000 CR4=00000000001426f0 [ 1329.101204] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1329.108138] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 16:07:12 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) gettid() r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:12 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1329.123229] *** Control State *** [ 1329.126821] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1329.144738] EntryControls=0000d1ff ExitControls=002fefff [ 1329.161866] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 16:07:12 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1329.171221] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1329.178120] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1329.185077] reason=80000021 qualification=0000000000000000 [ 1329.205526] IDTVectoring: info=00000000 errcode=00000000 [ 1329.216223] TSC Offset = 0xfffffd36772e9265 16:07:12 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1329.225685] EPT pointer = 0x00000001b704f01e [ 1329.415827] *** Guest State *** [ 1329.419412] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1329.428493] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1329.444324] CR3 = 0x0000000000000000 [ 1329.448202] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1329.454376] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:13 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x88480000]}) [ 1329.460721] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1329.467465] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.467494] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.495481] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:13 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:13 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={"74656100000000000000000100"}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x8002, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1329.509649] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.523921] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.537574] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.565013] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1329.574016] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.582179] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1329.592458] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1329.605656] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1329.619272] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1329.627012] Interruptibility = 00000000 ActivityState = 00000000 [ 1329.633617] *** Host State *** [ 1329.636923] RIP = 0xffffffff812048fe RSP = 0xffff8881b2ec7390 [ 1329.653790] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:13 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xd]}) [ 1329.669401] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1329.677365] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1329.683455] CR0=0000000080050033 CR3=000000018894c000 CR4=00000000001426f0 [ 1329.704756] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1329.715774] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1329.727257] *** Control State *** [ 1329.737597] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1329.745184] EntryControls=0000d1ff ExitControls=002fefff [ 1329.755162] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1329.764202] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1329.776314] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1329.799156] reason=80000021 qualification=0000000000000000 [ 1329.805801] IDTVectoring: info=00000000 errcode=00000000 [ 1329.811748] TSC Offset = 0xfffffd360b56e5ab [ 1329.816242] EPT pointer = 0x00000001b5ae601e 16:07:13 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:13 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x200000000000000]}) [ 1329.881240] *** Guest State *** [ 1329.884682] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1329.893883] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1329.903160] CR3 = 0x0000000000000000 [ 1329.906967] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1329.914674] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:13 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1329.931236] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1329.938120] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.946377] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.966378] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:13 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket(0xa, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000580)=@nat={'%at\x00', 0x19, 0x1, 0x1e0, [0x20000380, 0x0, 0x0, 0x20000500, 0x20000530], 0x0, &(0x7f0000000040), &(0x7f0000000380)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1d, 0x0, 0x0, 'team_slave_0\x00', 'bridge_slave_0\x00', 'bond_slave_1\x00', 'veth1_to_bridge\x00', @empty, [], @dev, [], 0xe0, 0x12f, 0x150, [@stp={'stp\x00', 0x48, {{0x0, {0x0, 0x0, 0x0, @local, [], 0x0, 0x0, 0x0, 0x0, @local}}}}]}, [@snat={'snat\x00', 0x10, {{@local}}}]}, @snat={'snat\x00', 0x10, {{@random="5f5a1fad6899"}}}}]}, {0x0, '\x00', 0x1}, {0x0, '\x00', 0x1}]}, 0x258) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) umount2(&(0x7f0000000200)='./file0\x00', 0x4) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0xfffffffffffffffb) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1329.979622] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.988022] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1329.996339] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.020426] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1330.033899] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.047231] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1330.061135] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1330.074559] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1330.099390] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1330.107102] Interruptibility = 00000000 ActivityState = 00000000 [ 1330.113722] *** Host State *** [ 1330.117018] RIP = 0xffffffff812048fe RSP = 0xffff88817d2af390 [ 1330.123268] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1330.138034] FSBase=00007f6581f3e700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1330.148873] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1330.155019] CR0=0000000080050033 CR3=00000001ca43d000 CR4=00000000001426e0 [ 1330.162307] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1330.167015] *** Guest State *** [ 1330.172732] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1330.181750] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1330.184061] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1330.190770] CR3 = 0x0000000000000000 [ 1330.204939] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1330.206534] *** Control State *** [ 1330.216312] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1330.221272] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1330.224288] EntryControls=0000d1ff ExitControls=002fefff [ 1330.235165] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1330.243728] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1330.244885] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.252645] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1330.266448] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.271476] kernel msg: ebtables bug: please report to author: target size too small [ 1330.279516] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.282549] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:13 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xe00000000000000]}) [ 1330.293331] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.297164] reason=80000021 qualification=0000000000000000 [ 1330.311840] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.323625] IDTVectoring: info=00000000 errcode=00000000 [ 1330.331746] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.334085] TSC Offset = 0xfffffd35d94b952d [ 1330.345129] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1330.353192] EPT pointer = 0x00000001cae3801e [ 1330.358825] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1330.366919] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1330.366984] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1330.366998] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1330.399115] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1330.406734] Interruptibility = 00000000 ActivityState = 00000000 [ 1330.413291] *** Host State *** [ 1330.416696] RIP = 0xffffffff812048fe RSP = 0xffff8881b2ec7390 [ 1330.435956] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:14 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1330.451405] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1330.462448] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1330.476014] CR0=0000000080050033 CR3=00000001b7053000 CR4=00000000001426f0 [ 1330.485964] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 16:07:14 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x86ddffff00000000]}) 16:07:14 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0xd01) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1330.497870] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1330.509727] *** Control State *** [ 1330.513260] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1330.520167] EntryControls=0000d1ff ExitControls=002fefff [ 1330.525725] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1330.536864] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:14 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0xf) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1330.557659] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1330.569105] reason=80000021 qualification=0000000000000000 [ 1330.575544] IDTVectoring: info=00000000 errcode=00000000 [ 1330.581595] TSC Offset = 0xfffffd35a701ca13 [ 1330.586040] EPT pointer = 0x00000001be14101e 16:07:14 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:14 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:14 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x800e]}) 16:07:14 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:14 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socketpair$unix(0x1, 0x800000000003, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000180)="ad56b6c5820f00006dcd3292ea90c2f9", 0x10) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 16:07:14 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4000000000000000]}) 16:07:14 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:14 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:14 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x2) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:14 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x8, 0xffff}, 0x4) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x5, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x1, 0x7}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:15 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x3600]}) 16:07:15 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:15 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) recvmsg$kcm(r0, &(0x7f0000001e40)={&(0x7f0000001d00)=@ll={0x11, 0x0, 0x0}, 0x80, &(0x7f0000001e00)=[{&(0x7f0000001d80)=""/60, 0x3c}, {&(0x7f0000001dc0)=""/6, 0x6}], 0x2}, 0x60) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001f40)={'rose0\x00', r2}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, 0x0) 16:07:15 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x800000000000000]}) 16:07:15 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:15 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xe803000000000000]}) 16:07:15 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:15 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000200)=r1) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, r5, 0x0, 0x1db, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f00000005c0)={r1, r1, 0xfffffffffffffffe, 0x80000000, &(0x7f00000004c0)="f2d4668b99e076589c8e4f49b60e0c63427348d7b355d267144340a5858c1ed8a63e888fcb614c9e1e5e95c37eee4d2f2c14d33336377b2ba7d85e8949ad2b9dc403adb5bf969b17e4486c01c3df061f77908711dfcc98b758ef22f5a3e133077d294cfe37da7f2f07f1544e4f850b63c3a6092eb27bbeb62a137d347b90bd993158514adbea7068f6c6b83dd8bff5a0f714be6b534f830f27ef42338ee7ad6fd09ee2cb3046a5bd15692b151c1194010725f55c2256d0f87ab5357160dfb94b38cbd1fca2ab053e768c07b597b4b580f3dbc0dbe5778bc3eb06d086734ece7c581433a4836a2e5788ccb2b7faaedf4dcee64af3d00f9ac6", 0x45, 0xffffffff00000001, 0x1000, 0xffffffffffffffff, 0x6, 0x1, 0x0, "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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) r6 = semget$private(0x0, 0x0, 0x40) semctl$GETALL(r6, 0x0, 0xd, &(0x7f0000001600)=""/70) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:15 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:15 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:15 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x900000000000000]}) [ 1332.199492] *** Guest State *** [ 1332.202963] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1332.212086] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1332.221059] CR3 = 0x0000000000000000 [ 1332.225446] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1332.235326] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1332.251828] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1332.261981] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.273528] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.287110] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.300730] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.314429] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.328258] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.329093] *** Guest State *** [ 1332.340225] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1332.341869] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1332.349166] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1332.349174] CR3 = 0x0000000000000000 [ 1332.349184] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1332.349195] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1332.349211] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1332.349234] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.357283] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.366198] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.389937] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.396769] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1332.404772] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.415276] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1332.438226] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1332.445844] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.460563] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1332.464019] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1332.476511] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1332.482393] Interruptibility = 00000000 ActivityState = 00000000 [ 1332.485262] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:16 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x8864]}) [ 1332.500251] *** Host State *** [ 1332.503654] RIP = 0xffffffff812048fe RSP = 0xffff88818736f390 [ 1332.508084] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1332.509860] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1332.509947] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1332.510014] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1332.510066] CR0=0000000080050033 CR3=00000001c3a5a000 CR4=00000000001426e0 [ 1332.510087] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1332.510154] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1332.523179] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1332.524682] *** Control State *** [ 1332.532594] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1332.548499] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1332.553056] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1332.561259] EntryControls=0000d1ff ExitControls=002fefff [ 1332.577716] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1332.583369] Interruptibility = 00000000 ActivityState = 00000000 [ 1332.583411] *** Host State *** [ 1332.583424] RIP = 0xffffffff812048fe RSP = 0xffff8881b6357390 [ 1332.583515] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1332.583580] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1332.583697] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1332.583801] CR0=0000000080050033 CR3=00000001b95e5000 CR4=00000000001426e0 [ 1332.583890] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1332.583940] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1332.583946] *** Control State *** [ 1332.583960] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1332.592284] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1332.597259] EntryControls=0000d1ff ExitControls=002fefff [ 1332.597312] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1332.597328] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1332.604604] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:16 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1332.616399] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1332.621233] reason=80000021 qualification=0000000000000000 [ 1332.626673] reason=80000021 qualification=0000000000000000 [ 1332.634601] IDTVectoring: info=00000000 errcode=00000000 [ 1332.645587] IDTVectoring: info=00000000 errcode=00000000 [ 1332.653259] TSC Offset = 0xfffffd34ad28fdd3 [ 1332.655393] TSC Offset = 0xfffffd3474c0835b [ 1332.662819] EPT pointer = 0x00000001c2d3b01e [ 1332.697354] EPT pointer = 0x00000001d35ef01e 16:07:16 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x44]}) 16:07:16 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000200)=r1) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, r5, 0x0, 0x1db, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f00000005c0)={r1, r1, 0xfffffffffffffffe, 0x80000000, &(0x7f00000004c0)="f2d4668b99e076589c8e4f49b60e0c63427348d7b355d267144340a5858c1ed8a63e888fcb614c9e1e5e95c37eee4d2f2c14d33336377b2ba7d85e8949ad2b9dc403adb5bf969b17e4486c01c3df061f77908711dfcc98b758ef22f5a3e133077d294cfe37da7f2f07f1544e4f850b63c3a6092eb27bbeb62a137d347b90bd993158514adbea7068f6c6b83dd8bff5a0f714be6b534f830f27ef42338ee7ad6fd09ee2cb3046a5bd15692b151c1194010725f55c2256d0f87ab5357160dfb94b38cbd1fca2ab053e768c07b597b4b580f3dbc0dbe5778bc3eb06d086734ece7c581433a4836a2e5788ccb2b7faaedf4dcee64af3d00f9ac6", 0x45, 0xffffffff00000001, 0x1000, 0xffffffffffffffff, 0x6, 0x1, 0x0, "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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) r6 = semget$private(0x0, 0x0, 0x40) semctl$GETALL(r6, 0x0, 0xd, &(0x7f0000001600)=""/70) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:16 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:16 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:16 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snapshot\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000000400)={0x0, 0x7}, &(0x7f00000005c0)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000600)={r1, 0x4, 0x8}, &(0x7f0000000640)=0x8) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, 0x0, 0x461) r3 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000500)={0x0, @dev, @multicast2}, &(0x7f0000000540)=0xc) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000580)={'tunl0\x00', r4}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r3, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) bind$bt_hci(r3, &(0x7f0000000680)={0x1f, r5}, 0xc) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r9 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r9) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$EVIOCGPROP(r2, 0x80404509, &(0x7f0000000700)=""/216) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r8, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f0000000200)={0x1, 0x7, 0x6, 0x93}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, 0x0) msgget$private(0x0, 0x100) syz_genetlink_get_family_id$nbd(&(0x7f00000006c0)='nbd\x00') ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:16 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x7ffff000]}) 16:07:16 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:16 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xe80]}) 16:07:16 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:16 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:17 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x10000000]}) [ 1333.531993] *** Guest State *** [ 1333.535486] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1333.549998] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1333.565762] CR3 = 0x0000000000000000 [ 1333.569805] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1333.575855] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:17 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x700]}) [ 1333.582158] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1333.592909] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.604219] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.617766] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.631451] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.645085] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.658650] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.666947] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1333.675316] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1333.699599] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1333.707855] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1333.716095] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1333.739850] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1333.747656] Interruptibility = 00000000 ActivityState = 00000000 [ 1333.754216] *** Host State *** [ 1333.757484] RIP = 0xffffffff812048fe RSP = 0xffff88818443f390 [ 1333.774057] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:17 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x2]}) [ 1333.789392] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1333.797393] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1333.803475] CR0=0000000080050033 CR3=00000001c0cc0000 CR4=00000000001426f0 [ 1333.823534] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1333.835735] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1333.847235] *** Control State *** [ 1333.857698] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1333.865167] EntryControls=0000d1ff ExitControls=002fefff [ 1333.875998] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1333.885071] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1333.897059] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1333.908751] reason=80000021 qualification=0000000000000000 [ 1333.915149] IDTVectoring: info=00000000 errcode=00000000 [ 1333.920854] TSC Offset = 0xfffffd33f2488484 [ 1333.925328] EPT pointer = 0x00000001802c801e 16:07:17 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000200)=r1) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, r5, 0x0, 0x1db, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f00000005c0)={r1, r1, 0xfffffffffffffffe, 0x80000000, &(0x7f00000004c0)="f2d4668b99e076589c8e4f49b60e0c63427348d7b355d267144340a5858c1ed8a63e888fcb614c9e1e5e95c37eee4d2f2c14d33336377b2ba7d85e8949ad2b9dc403adb5bf969b17e4486c01c3df061f77908711dfcc98b758ef22f5a3e133077d294cfe37da7f2f07f1544e4f850b63c3a6092eb27bbeb62a137d347b90bd993158514adbea7068f6c6b83dd8bff5a0f714be6b534f830f27ef42338ee7ad6fd09ee2cb3046a5bd15692b151c1194010725f55c2256d0f87ab5357160dfb94b38cbd1fca2ab053e768c07b597b4b580f3dbc0dbe5778bc3eb06d086734ece7c581433a4836a2e5788ccb2b7faaedf4dcee64af3d00f9ac6", 0x45, 0xffffffff00000001, 0x1000, 0xffffffffffffffff, 0x6, 0x1, 0x0, "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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) r6 = semget$private(0x0, 0x0, 0x40) semctl$GETALL(r6, 0x0, 0xd, &(0x7f0000001600)=""/70) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:17 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000940)={0x101ff, 0x0, 0x0, 0x2000, &(0x7f000001b000/0x2000)=nil}) request_key(&(0x7f00000008c0)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000200)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) fremovexattr(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="6f71780e65676f003ad90ca085c67b06e9d11169f09f9424b38f4bea8b72c82f5090ec128242a400000000000000000000000000"]) ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f00000004c0)={"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"}) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000980)={0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0xa, 0x1e, 0x1, "022b5e46abb45e11adfbfc9534bd1f1d17b00e21c3bd9ba7d07299715a7d398aabe237422b072cfc4d234ee2bcebec8334a3bf233f57dc50710f71506d56fdc5", "5aefda6a86cf3d23d835b685196a7bbea3b7d57dc1996fbc08252cc60839d8a6027cf225e41e99377d6ded308a7989121db0452feb16f0b0d33a90ac28e46589", "92e037621c143a1cce673a42618b6b8e39048fdee42a94025350d2efd84ca634", [0x7, 0x6]}) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:17 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:17 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:17 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:17 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x3580]}) 16:07:17 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x80350000]}) 16:07:17 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x88470000]}) 16:07:17 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:17 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1334.342308] *** Guest State *** [ 1334.345853] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1334.355105] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1334.365118] CR3 = 0x0000000000000000 [ 1334.376426] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1334.383056] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1334.393039] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1334.414718] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.422964] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.431226] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.441867] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.455254] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.468971] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.477115] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1334.485234] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:18 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x900]}) [ 1334.509643] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1334.517761] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1334.528726] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1334.535272] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1334.549964] Interruptibility = 00000000 ActivityState = 00000000 [ 1334.556465] *** Host State *** 16:07:18 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) semget$private(0x0, 0x3, 0x80) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) keyctl$invalidate(0x15, r4) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1334.573603] RIP = 0xffffffff812048fe RSP = 0xffff8881b9d57390 [ 1334.589677] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1334.596330] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1334.604697] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1334.624089] CR0=0000000080050033 CR3=00000001c21f8000 CR4=00000000001426f0 [ 1334.633849] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1334.645949] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1334.657411] *** Control State *** [ 1334.664989] *** Guest State *** [ 1334.667807] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1334.668443] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1334.675327] EntryControls=0000d1ff ExitControls=002fefff [ 1334.684187] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1334.684259] CR3 = 0x0000000000000000 [ 1334.701094] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1334.704235] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1334.710373] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1334.710423] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1334.710468] reason=80000021 qualification=0000000000000000 [ 1334.710476] IDTVectoring: info=00000000 errcode=00000000 [ 1334.710488] TSC Offset = 0xfffffd3372506e92 [ 1334.710569] EPT pointer = 0x00000001d272d01e [ 1334.730334] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1334.761354] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1334.768255] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.781088] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.806070] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.819389] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.827582] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.835810] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.860338] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1334.873529] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1334.887251] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1334.900944] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1334.914741] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1334.928028] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1334.939322] Interruptibility = 00000000 ActivityState = 00000000 [ 1334.945630] *** Host State *** [ 1334.951974] RIP = 0xffffffff812048fe RSP = 0xffff8881b410f390 [ 1334.967892] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1334.978324] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1334.989520] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1334.995511] CR0=0000000080050033 CR3=00000001d2e0b000 CR4=00000000001426f0 [ 1335.005700] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1335.024440] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1335.035838] *** Control State *** [ 1335.046580] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1335.053520] EntryControls=0000d1ff ExitControls=002fefff [ 1335.063919] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1335.073792] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1335.085515] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1335.096860] reason=80000021 qualification=0000000000000000 [ 1335.107987] IDTVectoring: info=00000000 errcode=00000000 [ 1335.118684] TSC Offset = 0xfffffd3355c61ec0 [ 1335.123024] EPT pointer = 0x00000001bc86e01e 16:07:18 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000200)=r1) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, r5, 0x0, 0x1db, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f00000005c0)={r1, r1, 0xfffffffffffffffe, 0x80000000, &(0x7f00000004c0)="f2d4668b99e076589c8e4f49b60e0c63427348d7b355d267144340a5858c1ed8a63e888fcb614c9e1e5e95c37eee4d2f2c14d33336377b2ba7d85e8949ad2b9dc403adb5bf969b17e4486c01c3df061f77908711dfcc98b758ef22f5a3e133077d294cfe37da7f2f07f1544e4f850b63c3a6092eb27bbeb62a137d347b90bd993158514adbea7068f6c6b83dd8bff5a0f714be6b534f830f27ef42338ee7ad6fd09ee2cb3046a5bd15692b151c1194010725f55c2256d0f87ab5357160dfb94b38cbd1fca2ab053e768c07b597b4b580f3dbc0dbe5778bc3eb06d086734ece7c581433a4836a2e5788ccb2b7faaedf4dcee64af3d00f9ac6", 0x45, 0xffffffff00000001, 0x1000, 0xffffffffffffffff, 0x6, 0x1, 0x0, "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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) r6 = semget$private(0x0, 0x0, 0x40) semctl$GETALL(r6, 0x0, 0xd, &(0x7f0000001600)=""/70) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:18 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x806000000000000]}) 16:07:18 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:18 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:18 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) 16:07:18 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x6, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1335.335808] *** Guest State *** [ 1335.339434] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1335.348434] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1335.357319] CR3 = 0x0000000000000000 [ 1335.361169] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1335.367322] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1335.377010] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1335.396918] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.422295] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.430461] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.438574] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.446698] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.455047] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.457287] *** Guest State *** [ 1335.467059] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1335.476161] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1335.476252] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.476356] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1335.487017] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1335.502893] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1335.517796] CR3 = 0x0000000000000000 [ 1335.527478] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1335.537803] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1335.544327] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1335.552124] Interruptibility = 00000000 ActivityState = 00000000 [ 1335.558948] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1335.565165] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1335.571924] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.574911] *** Host State *** [ 1335.580224] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.583433] RIP = 0xffffffff812048fe RSP = 0xffff88817f01f390 16:07:19 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x7000000]}) [ 1335.593777] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.597760] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1335.612584] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.612771] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.629236] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1335.632491] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.637217] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1335.646070] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1335.665103] CR0=0000000080050033 CR3=00000001c27b8000 CR4=00000000001426f0 [ 1335.667395] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1335.674809] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1335.687304] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1335.696566] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1335.697478] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1335.716115] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1335.717766] *** Control State *** [ 1335.724977] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1335.734496] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1335.741425] EntryControls=0000d1ff ExitControls=002fefff 16:07:19 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1335.747044] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1335.747293] Interruptibility = 00000000 ActivityState = 00000000 [ 1335.754081] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1335.765061] *** Host State *** [ 1335.772867] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1335.775462] RIP = 0xffffffff812048fe RSP = 0xffff8881d7d27390 [ 1335.783726] reason=80000021 qualification=0000000000000000 [ 1335.792410] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1335.795021] IDTVectoring: info=00000000 errcode=00000000 [ 1335.800997] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1335.808954] TSC Offset = 0xfffffd32dfaacd72 [ 1335.814254] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1335.816975] EPT pointer = 0x00000001d27f801e [ 1335.831494] CR0=0000000080050033 CR3=00000001be448000 CR4=00000000001426e0 [ 1335.845873] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1335.857996] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1335.869421] *** Control State *** [ 1335.873013] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1335.879844] EntryControls=0000d1ff ExitControls=002fefff [ 1335.885477] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1335.897297] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1335.918199] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1335.929688] reason=80000021 qualification=0000000000000000 [ 1335.936263] IDTVectoring: info=00000000 errcode=00000000 [ 1335.941834] TSC Offset = 0xfffffd32dc614590 16:07:19 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1335.946341] EPT pointer = 0x00000001cc82f01e 16:07:19 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xf000]}) 16:07:19 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:19 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:19 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000940)={0x101ff, 0x0, 0x0, 0x2000, &(0x7f000001b000/0x2000)=nil}) request_key(&(0x7f00000008c0)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000200)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) fremovexattr(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="6f71780e65676f003ad90ca085c67b06e9d11169f09f9424b38f4bea8b72c82f5090ec128242a400000000000000000000000000"]) ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f00000004c0)={"0e2f7118a00b297be1128b65a8cb2c0b6ca3acaee64cbbfec0680cd06bf7300c3ce649438af1d34f26819daccb443bc813219b44ccfa9fc7b90597969d193cbc671495c2ca990587151de5564460cc414fa9c62f57f71f7cb557a3f17c9540d48c9db9895e727e7051d80c285846b25409b6b2e74d776422924c33a0ee76a91c886c483f149b619f6b82c84f329ab1ca0f1880308231541aae534010623b7a054ad18f401934e93415657b1c360b99d36ff3e8021c3a70457bc9732cdcb96458dae2a9d3eefbac7a08520e9d785726bf049839f3a2c8cf36b8b0bc46b802e70bdc9fae19b11e157b9dc2e4f2a992c6cd15d83d4865d57661aa1e27927b5339e63e2bd6a6f93644a4d87414a55995817750a67c22c63ff80011ef02530a55dc9d07bbef94d4176eacf9f8407fbd253d9624b798f683bc31c154087516af6f5bc0537d873bc4769d8aa2ec73522229769276caf6f6845d2748415b44f0a7c09ff02c0a763393a3441e6bcf59adba71a345c8dce07551e48c460aa141318da20d1501b6d501ffdc9c2ae566e7a34361acf7e1c6075b8430d5eb46d5316fa2dfd0a11f25e02d27cf6503927bb1979481622d5aaf5c890488e7bdb009e2dd599e240ab19745d15e487181b0fd1c34e2c52c4946972e38ad41e4a8e7781a1a95aed5d05edb16b1176c7bcbe749e53bd671f01e93c7cae7eef5a3052cfeb8622eeb4e9d36ba145c7bb78991a6cfe16923d8295c2d40c887a9194d8bb5860e75ccddc496a6557b9167ef9b60ce4e914ec16b0193975834cab6c06ecdef50866cab62395cd539b8ad07ce2ad570740ac915a0de1d4fabe9116463c09b8c3ed7c7ab9ff484c2e8e29701aed8095acdc1ecbbd3cb0c93d8b95c804fa10486789fc5a5eb7ee02b121f6a662534b2c7a84d0d76c96b20369dfba1fc9ea3552f7dfc85bc801e130b7689d2f489b7eb082c2b75d06e20204be6543824474b1b5a366d2d2cd455eecb1339bafb82f83895bd313a240bf32ec0647e9348c36b03cee39d0bab8ce1b4b68ed642d30ee04f2bb0c74cb54779e5e8de0b99e26c86291e275a487651763aef2307e41cd729b96aa81aee6dc8bfbe911ebc3196ecfc045a1afbbe228831043ed614b682559356dec42386cdf29dc92fdf491e59372653118a944951a977dd324572e6e8cb3b0c8fd4432fff71304e3413821d837d2fd4f49807851d4e871d492652e348a907980fa1e3315d2c16452b3e0ba9d6faaeeaf85d20cb419870d3c8836d8d73eefb9bfdc7f75deae281a397c408a32698e688bb3dbffd7cd18abe9dbed8c0189a294642a2cf1fae331295de026d0e2f1cd1f9464c1cd3366f5e4c2bc119e8db6866b7ebb4e4279fd0191dcbab898b9f87c903dad7efbfdd3120f5e595667d70e5ed516ab586e16d5783c37bbdea5b72a9fa27245c1f6a2b85e998"}) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000980)={0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0xa, 0x1e, 0x1, "022b5e46abb45e11adfbfc9534bd1f1d17b00e21c3bd9ba7d07299715a7d398aabe237422b072cfc4d234ee2bcebec8334a3bf233f57dc50710f71506d56fdc5", "5aefda6a86cf3d23d835b685196a7bbea3b7d57dc1996fbc08252cc60839d8a6027cf225e41e99377d6ded308a7989121db0452feb16f0b0d33a90ac28e46589", "92e037621c143a1cce673a42618b6b8e39048fdee42a94025350d2efd84ca634", [0x7, 0x6]}) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:19 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xd00]}) 16:07:19 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000004c0)={{{@in6=@loopback, @in=@broadcast}}, {{@in6=@local}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8) getsockname$packet(r1, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14) accept4$packet(r0, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000600)=0x14, 0x80800) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000640)={{{@in=@remote, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000740)=0xe8) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000780)={'\x00', r2}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1336.291772] *** Guest State *** [ 1336.295289] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1336.304662] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1336.313683] CR3 = 0x0000000000000000 [ 1336.317545] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1336.326601] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1336.343160] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1336.353530] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.365439] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.378806] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.386945] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.396185] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.419463] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.427748] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1336.436322] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.459996] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1336.468279] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1336.487348] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1336.500621] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1336.511549] Interruptibility = 00000000 ActivityState = 00000000 [ 1336.518034] *** Host State *** [ 1336.524596] RIP = 0xffffffff812048fe RSP = 0xffff8881cc677390 [ 1336.540834] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1336.543491] *** Guest State *** [ 1336.547406] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1336.551198] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1336.567408] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1336.567738] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1336.580468] CR0=0000000080050033 CR3=00000001c4157000 CR4=00000000001426e0 [ 1336.590915] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1336.591878] CR3 = 0x0000000000000000 16:07:20 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1336.597722] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1336.606634] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1336.622638] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1336.623901] *** Control State *** [ 1336.633734] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1336.633997] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:20 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1336.642110] EntryControls=0000d1ff ExitControls=002fefff [ 1336.653549] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1336.655200] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.672110] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1336.675876] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.686998] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1336.689163] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:20 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) gettid() r1 = getpgid(0xffffffffffffffff) getpgrp(r1) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r5, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1336.695010] reason=80000021 qualification=0000000000000000 [ 1336.701847] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.701937] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.716417] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.724270] IDTVectoring: info=00000000 errcode=00000000 [ 1336.738211] TSC Offset = 0xfffffd326277f422 [ 1336.739271] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:20 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xe803]}) [ 1336.743799] EPT pointer = 0x000000017d65e01e [ 1336.752293] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1336.771388] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1336.789793] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1336.798127] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1336.806258] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1336.827719] Interruptibility = 00000000 ActivityState = 00000000 [ 1336.840247] *** Host State *** [ 1336.843810] RIP = 0xffffffff812048fe RSP = 0xffff888186a17390 [ 1336.850939] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1336.857605] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1336.866717] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1336.890931] CR0=0000000080050033 CR3=00000001c0c0d000 CR4=00000000001426f0 16:07:20 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1336.898111] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1336.905169] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1336.924157] *** Control State *** [ 1336.934608] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1336.941525] EntryControls=0000d1ff ExitControls=002fefff [ 1336.947143] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1336.954166] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1336.972841] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1336.984099] reason=80000021 qualification=0000000000000000 [ 1337.006143] IDTVectoring: info=00000000 errcode=00000000 [ 1337.011797] TSC Offset = 0xfffffd32395e9293 [ 1337.016241] EPT pointer = 0x00000001bcfb001e 16:07:20 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4]}) [ 1337.098833] *** Guest State *** [ 1337.102360] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:20 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f00000000c0)=@get={0x1, &(0x7f00000002c0)=""/4096, 0x322}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000280)={@mcast2}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:20 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xfffffffffffff000]}) [ 1337.178542] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 16:07:20 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1337.222314] CR3 = 0x0000000000000000 16:07:20 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1337.253385] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1337.281617] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1337.295671] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1337.311572] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:21 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1337.467494] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.478675] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.528800] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.550448] *** Guest State *** [ 1337.554005] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1337.563021] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1337.571996] CR3 = 0x0000000000000000 [ 1337.575769] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1337.584936] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1337.592614] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.601526] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1337.611669] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.623153] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.634037] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.642373] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.650585] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.659203] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1337.667494] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.674607] *** Guest State *** [ 1337.677277] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.679039] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1337.679093] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1337.679134] CR3 = 0x0000000000000000 [ 1337.679142] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1337.679157] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1337.679281] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1337.679333] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.687508] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.696430] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.705400] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1337.709382] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.715351] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.724070] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.728129] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1337.743885] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.751048] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1337.764061] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.768402] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1337.777965] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1337.784589] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1337.800774] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1337.816727] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1337.816741] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1337.816753] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1337.816762] Interruptibility = 00000000 ActivityState = 00000000 [ 1337.816782] *** Host State *** [ 1337.826076] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1337.833167] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1337.847799] RIP = 0xffffffff812048fe RSP = 0xffff88817e1c7390 [ 1337.857410] Interruptibility = 00000000 ActivityState = 00000000 [ 1337.862550] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1337.862635] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1337.862684] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1337.862695] Interruptibility = 00000000 ActivityState = 00000000 [ 1337.862741] *** Host State *** [ 1337.862824] RIP = 0xffffffff812048fe RSP = 0xffff8881bb62f390 [ 1337.884051] *** Host State *** [ 1337.887768] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1337.895367] RIP = 0xffffffff812048fe RSP = 0xffff88817fbd7390 [ 1337.901823] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1337.910689] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1337.916036] FSBase=00007f3537b89700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1337.922445] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1337.929880] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1337.939408] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1337.945309] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1337.945330] CR0=0000000080050033 CR3=000000018277f000 CR4=00000000001426f0 [ 1337.948729] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1337.955049] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1337.961129] CR0=0000000080050033 CR3=00000001c2511000 CR4=00000000001426e0 [ 1337.967588] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1337.974092] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1337.974140] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1337.974182] *** Control State *** [ 1337.974192] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1337.974200] EntryControls=0000d1ff ExitControls=002fefff [ 1337.974269] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1337.974341] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1337.974387] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1337.974395] reason=80000021 qualification=0000000000000000 [ 1337.974407] IDTVectoring: info=00000000 errcode=00000000 [ 1337.990313] CR0=0000000080050033 CR3=00000001c0c0d000 CR4=00000000001426e0 [ 1338.006844] TSC Offset = 0xfffffd31c0e0dc26 [ 1338.010136] *** Control State *** [ 1338.010148] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1338.010161] EntryControls=0000d1ff ExitControls=002fefff [ 1338.010264] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1338.010310] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1338.010320] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1338.010332] reason=80000021 qualification=0000000000000000 [ 1338.010378] IDTVectoring: info=00000000 errcode=00000000 [ 1338.010385] TSC Offset = 0xfffffd319d4cea50 [ 1338.010393] EPT pointer = 0x00000001c250d01e [ 1338.010763] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1338.030279] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1338.037422] EPT pointer = 0x000000018221601e [ 1338.056570] *** Control State *** [ 1338.079277] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1338.092657] EntryControls=0000d1ff ExitControls=002fefff [ 1338.205154] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1338.212585] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1338.221710] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 16:07:21 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) getpeername$inet6(r0, &(0x7f0000000640)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000680)=0x1c) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000400)=0x6, &(0x7f00000005c0)=0x2) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000600)=0x6) setfsuid(r5) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0xc) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:21 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) [ 1338.229013] reason=80000021 qualification=0000000000000000 [ 1338.235354] IDTVectoring: info=00000000 errcode=00000000 [ 1338.241448] TSC Offset = 0xfffffd32395e9293 [ 1338.245789] EPT pointer = 0x00000001bcfb001e 16:07:21 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x8]}) 16:07:21 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:21 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:21 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f00000000c0)=@get={0x1, &(0x7f00000002c0)=""/4096, 0x322}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000280)={@mcast2}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1338.496250] *** Guest State *** [ 1338.501564] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1338.510685] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1338.519801] CR3 = 0x0000000000000000 [ 1338.523612] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1338.531084] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1338.537256] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:22 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xd00000000000000]}) [ 1338.547357] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.568816] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.577039] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.585453] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.610715] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.624498] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.638098] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1338.651497] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:22 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) [ 1338.665054] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1338.678582] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1338.686680] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1338.693417] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 16:07:22 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x1400000000000000]}) [ 1338.716411] Interruptibility = 00000000 ActivityState = 00000000 [ 1338.728932] *** Host State *** [ 1338.732335] RIP = 0xffffffff812048fe RSP = 0xffff88817e1c7390 [ 1338.739979] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1338.744988] *** Guest State *** [ 1338.746563] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1338.746579] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1338.750165] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1338.772309] CR0=0000000080050033 CR3=00000001b6ede000 CR4=00000000001426e0 [ 1338.775326] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1338.785203] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1338.790019] CR3 = 0x0000000000000000 [ 1338.798239] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1338.806587] *** Control State *** [ 1338.806627] RSP = 0x0000000000000000 RIP = 0x0000000000000000 16:07:22 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1338.810488] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1338.810571] EntryControls=0000d1ff ExitControls=002fefff [ 1338.810623] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1338.810632] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1338.810683] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1338.810729] reason=80000021 qualification=0000000000000000 [ 1338.810737] IDTVectoring: info=00000000 errcode=00000000 [ 1338.810743] TSC Offset = 0xfffffd312edb66c8 16:07:22 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1338.831293] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1338.844172] EPT pointer = 0x00000001bfc0601e [ 1338.860691] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1338.883763] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.904963] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.913483] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.921966] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.932322] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.945483] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.960074] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1338.968286] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1338.986855] *** Guest State *** [ 1338.990328] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1338.999302] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1339.008580] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1339.016629] CR3 = 0x0000000000000000 [ 1339.020528] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1339.023184] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1339.029026] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1339.041944] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1339.043547] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1339.061628] Interruptibility = 00000000 ActivityState = 00000000 [ 1339.063458] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1339.067975] *** Host State *** [ 1339.074758] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.074784] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.074847] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.074920] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.074944] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.075004] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.075022] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1339.075085] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1339.075103] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1339.075166] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1339.075176] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1339.075233] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1339.092119] Interruptibility = 00000008 ActivityState = 00000000 [ 1339.096174] RIP = 0xffffffff812048fe RSP = 0xffff8881841df390 [ 1339.102547] *** Host State *** [ 1339.102561] RIP = 0xffffffff812048fe RSP = 0xffff88817e1c7390 [ 1339.102587] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1339.102600] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1339.102667] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 16:07:22 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x3000000]}) [ 1339.102683] CR0=0000000080050033 CR3=00000001b6ede000 CR4=00000000001426f0 [ 1339.102703] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1339.112253] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1339.128589] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1339.136648] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1339.143079] *** Control State *** [ 1339.143088] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1339.143095] EntryControls=0000d1ff ExitControls=002fefff [ 1339.143110] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1339.163855] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1339.165913] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1339.174079] CR0=0000000080050033 CR3=00000001beea1000 CR4=00000000001426f0 [ 1339.191405] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1339.198794] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1339.202036] reason=80000021 qualification=0000000000000000 [ 1339.224331] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1339.232398] IDTVectoring: info=00000000 errcode=00000000 [ 1339.242739] *** Control State *** [ 1339.242751] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1339.242759] EntryControls=0000d1ff ExitControls=002fefff [ 1339.242774] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1339.242784] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1339.242794] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1339.242803] reason=80000021 qualification=0000000000000000 [ 1339.242811] IDTVectoring: info=00000000 errcode=00000000 [ 1339.242818] TSC Offset = 0xfffffd312369faff [ 1339.242828] EPT pointer = 0x00000001ccc8a01e [ 1339.265496] TSC Offset = 0xfffffd312edb66c8 [ 1339.293521] EPT pointer = 0x00000001b370301e [ 1339.418646] *** Guest State *** [ 1339.427029] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1339.442146] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1339.477202] CR3 = 0x0000000000000000 [ 1339.483237] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1339.489622] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1339.499892] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1339.506697] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.515024] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.523363] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.532398] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.541080] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.549137] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1339.557104] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1339.565125] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1339.573168] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1339.581218] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1339.589221] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1339.595616] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1339.603098] Interruptibility = 00000008 ActivityState = 00000000 [ 1339.609362] *** Host State *** [ 1339.612547] RIP = 0xffffffff812048fe RSP = 0xffff8881877f7390 [ 1339.618588] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1339.624993] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1339.632853] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1339.638771] CR0=0000000080050033 CR3=00000001b6ede000 CR4=00000000001426f0 [ 1339.645785] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1339.652502] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1339.659176] *** Control State *** [ 1339.662730] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1339.669546] EntryControls=0000d1ff ExitControls=002fefff 16:07:23 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)) gettid() r1 = getpgid(0xffffffffffffffff) getpgrp(r1) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) syncfs(r2) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r5, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:23 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) 16:07:23 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x500]}) 16:07:23 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:23 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$VIDIOC_G_JPEGCOMP(r0, 0x808c563d, &(0x7f00000004c0)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:23 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1339.675002] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1339.681983] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1339.688683] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1339.695251] reason=80000021 qualification=0000000000000000 [ 1339.701629] IDTVectoring: info=00000000 errcode=00000000 [ 1339.707077] TSC Offset = 0xfffffd312edb66c8 [ 1339.711458] EPT pointer = 0x00000001b370301e [ 1339.958047] *** Guest State *** [ 1339.961528] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1339.970677] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1339.979640] CR3 = 0x0000000000000000 [ 1339.983465] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1339.992524] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:23 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1340.008874] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1340.015732] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.023951] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.043876] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.057275] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.061600] *** Guest State *** [ 1340.068901] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1340.072739] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.077851] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1340.086108] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.100927] CR3 = 0x0000000000000000 [ 1340.106608] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1340.106754] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1340.106780] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1340.106848] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1340.134916] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.143529] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.151866] IDTR: limit=0x00000000, base=0x0000000060000011 16:07:23 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x1f4]}) [ 1340.160149] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1340.168906] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.177072] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.178838] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1340.185148] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.191590] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1340.191602] Interruptibility = 00000000 ActivityState = 00000000 [ 1340.191607] *** Host State *** [ 1340.191619] RIP = 0xffffffff812048fe RSP = 0xffff88818139f390 [ 1340.191648] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1340.191706] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1340.206178] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.213856] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1340.219508] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.225922] CR0=0000000080050033 CR3=00000001c1d8c000 CR4=00000000001426f0 [ 1340.242480] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1340.246228] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1340.251976] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1340.260005] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.260020] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1340.260043] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1340.260125] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1340.278008] *** Control State *** [ 1340.294916] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1340.296556] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1340.308191] Interruptibility = 00000000 ActivityState = 00000000 [ 1340.320183] EntryControls=0000d1ff ExitControls=002fefff [ 1340.324007] *** Host State *** [ 1340.333412] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1340.343909] RIP = 0xffffffff812048fe RSP = 0xffff8881d35e7390 [ 1340.350598] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1340.353699] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1340.368148] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1340.385712] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1340.385793] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1340.385813] CR0=0000000080050033 CR3=00000001cc106000 CR4=00000000001426e0 [ 1340.385972] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1340.386158] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1340.386200] *** Control State *** [ 1340.386210] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1340.386218] EntryControls=0000d1ff ExitControls=002fefff [ 1340.386310] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1340.386409] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:24 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x13]}) [ 1340.386456] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1340.386464] reason=80000021 qualification=0000000000000000 [ 1340.386476] IDTVectoring: info=00000000 errcode=00000000 [ 1340.386556] TSC Offset = 0xfffffd30584b2381 [ 1340.386657] EPT pointer = 0x00000001b6fc301e [ 1340.484180] reason=80000021 qualification=0000000000000000 [ 1340.490677] IDTVectoring: info=00000000 errcode=00000000 [ 1340.496237] TSC Offset = 0xfffffd306bfd38bf [ 1340.501494] EPT pointer = 0x00000001cb2ab01e 16:07:24 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) getpeername$inet6(r0, &(0x7f0000000640)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000680)=0x1c) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000400)=0x6, &(0x7f00000005c0)=0x2) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000600)=0x6) setfsuid(r5) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0xc) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:24 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x4788]}) [ 1340.521492] *** Guest State *** [ 1340.524887] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1340.533862] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1340.542838] CR3 = 0x0000000000000000 [ 1340.546605] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1340.556924] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1340.573120] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1340.583450] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1340.594815] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1340.608978] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 16:07:24 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1340.617053] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1340.625142] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1340.649674] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1340.658121] GDTR: limit=0x000007ff, base=0x0000000000001000 16:07:24 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:24 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1340.666286] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1340.690404] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1340.703594] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1340.716875] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1340.730373] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1340.737859] Interruptibility = 00000008 ActivityState = 00000000 [ 1340.744387] *** Host State *** [ 1340.747595] RIP = 0xffffffff812048fe RSP = 0xffff8881d35e7390 [ 1340.764441] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1340.780194] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1340.788033] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1340.794011] CR0=0000000080050033 CR3=00000001cc106000 CR4=00000000001426f0 [ 1340.827464] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1340.834239] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1340.840360] *** Control State *** [ 1340.840373] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1340.840382] EntryControls=0000d1ff ExitControls=002fefff [ 1340.840396] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1340.840409] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1340.879427] *** Guest State *** [ 1340.882963] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1340.892054] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001 [ 1340.892064] reason=80000021 qualification=0000000000000000 [ 1340.892072] IDTVectoring: info=00000000 errcode=00000000 [ 1340.892079] TSC Offset = 0xfffffd30584b2381 [ 1340.892089] EPT pointer = 0x00000001d78aa01e [ 1340.899669] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 16:07:24 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0xfdffffff00000000]}) 16:07:24 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r2 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f0000000580)={'syz', 0x3}, &(0x7f00000005c0)="6d236c7e0c5e617969e8153fe5ec3cae2df809865f9d6eee58e706dd2c59e27bbc7c6184d4cfb24c20cd542c573ad9bcc01fc5f378155efa1f0779b4efdfaa26de85e78c088246b589f677fc10421945f6a01f36e1adbfdb1b930eb46338e77d780c0d58067d059a4e78365050f5fd871012814016a21360fcce025aa10cf6c2ba0ae7713ec337c308fc041fcb99dba78ec5da4239e1451313056869cd17e338b5b9664913dd09f6992e6cd30753bc05d45e2f68500da5c3a630", 0xba, 0xffffffffffffffff) keyctl$get_security(0x11, r2, &(0x7f0000000680)=""/186, 0xba) getpgrp(0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000140)={0x0, 0x97, 0xe1c}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000004c0)={r3, @in6={{0xa, 0x4e22, 0x80000001, @loopback, 0x6b1d}}, 0x155, 0x2}, 0x90) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000400)='cifs.spnego\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1340.910923] CR3 = 0x0000000000000000 [ 1340.947239] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1340.963712] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1340.969975] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1340.977669] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.985885] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1340.998782] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.006992] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.015106] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.039090] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.047209] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1341.047231] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:24 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1341.079418] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1341.087721] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1341.095812] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:24 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1341.120107] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1341.127690] Interruptibility = 00000000 ActivityState = 00000000 [ 1341.134420] *** Host State *** [ 1341.137795] RIP = 0xffffffff812048fe RSP = 0xffff88817f507390 [ 1341.154249] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1341.169731] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1341.177766] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1341.183791] CR0=0000000080050033 CR3=00000001d6610000 CR4=00000000001426f0 [ 1341.204042] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 16:07:24 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1341.216187] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1341.227063] *** Control State *** [ 1341.237688] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1341.246880] EntryControls=0000d1ff ExitControls=002fefff [ 1341.255489] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1341.264267] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1341.276329] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1341.287803] reason=80000021 qualification=0000000000000000 [ 1341.298865] IDTVectoring: info=00000000 errcode=00000000 [ 1341.304494] TSC Offset = 0xfffffd2ff745bc62 [ 1341.309751] EPT pointer = 0x00000001b86f501e [ 1341.321748] *** Guest State *** 16:07:24 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x2000000]}) [ 1341.325141] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1341.334157] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1341.343109] CR3 = 0x0000000000000000 [ 1341.346909] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1341.357032] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1341.373348] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1341.383593] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.394846] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.408429] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.416634] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.424704] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.424723] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.449006] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1341.457092] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1341.465133] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1341.489222] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1341.497266] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1341.503734] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1341.526644] Interruptibility = 00000000 ActivityState = 00000000 [ 1341.539013] *** Host State *** [ 1341.542287] RIP = 0xffffffff812048fe RSP = 0xffff8881b6397390 [ 1341.548281] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1341.554769] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1341.576034] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 16:07:25 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0xd) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:25 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:25 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x3580]}) [ 1341.589083] CR0=0000000080050033 CR3=00000001cc106000 CR4=00000000001426e0 [ 1341.596141] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1341.602996] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1341.622502] *** Control State *** [ 1341.626082] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1341.632843] EntryControls=0000d1ff ExitControls=002fefff [ 1341.649898] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1341.656872] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1341.663700] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1341.681234] reason=80000021 qualification=0000000000000000 [ 1341.687596] IDTVectoring: info=00000000 errcode=00000000 [ 1341.687605] TSC Offset = 0xfffffd2fbe4dcd32 [ 1341.687626] EPT pointer = 0x00000001d89b801e 16:07:25 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:25 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:25 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8847000000000000]}) 16:07:25 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000140)={{{@in=@multicast2, @in6=@local}}, {{@in6=@remote}, 0x0, @in=@loopback}}, &(0x7f00000000c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001f40)={'rose0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:25 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1341.977425] *** Guest State *** [ 1341.982863] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1341.991843] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1342.001214] CR3 = 0x0000000000000000 [ 1342.005070] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1342.012171] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1342.018293] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:25 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1342.028812] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.037060] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.050097] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.077208] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.091778] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.105127] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.118890] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1342.127203] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.135510] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1342.160102] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1342.168266] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1342.175415] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1342.197971] Interruptibility = 00000000 ActivityState = 00000000 [ 1342.210501] *** Host State *** [ 1342.214004] RIP = 0xffffffff812048fe RSP = 0xffff8881b87e7390 [ 1342.221172] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:25 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4001]}) [ 1342.228219] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1342.261791] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1342.268010] CR0=0000000080050033 CR3=00000001b3f6c000 CR4=00000000001426f0 [ 1342.275486] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1342.283804] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1342.294887] *** Control State *** [ 1342.305376] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1342.314459] EntryControls=0000d1ff ExitControls=002fefff [ 1342.324141] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1342.331897] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1342.343800] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1342.355198] reason=80000021 qualification=0000000000000000 [ 1342.366345] IDTVectoring: info=00000000 errcode=00000000 [ 1342.377136] TSC Offset = 0xfffffd2f5255370d [ 1342.386683] EPT pointer = 0x00000001c644501e 16:07:26 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1342.458859] *** Guest State *** [ 1342.462187] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:26 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:26 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xf401000000000000]}) [ 1342.523364] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1342.592600] CR3 = 0x0000000000000000 [ 1342.601971] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1342.610386] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:26 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000140)={{{@in=@multicast2, @in6=@local}}, {{@in6=@remote}, 0x0, @in=@loopback}}, &(0x7f00000000c0)=0xe8) recvmsg$kcm(r0, &(0x7f0000001e40)={&(0x7f0000001d00)=@ll, 0x80, &(0x7f0000001e00)=[{&(0x7f0000001d80)=""/60, 0x3c}, {&(0x7f0000001dc0)=""/6, 0x6}], 0x2}, 0x60) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, 0x0) [ 1342.660113] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1342.667779] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.676000] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.684137] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.692294] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.700481] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:26 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1342.708725] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.736682] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1342.790048] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1342.814289] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1342.834522] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1342.843009] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1342.961990] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1342.965757] *** Guest State *** [ 1342.973558] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1342.977021] Interruptibility = 00000000 ActivityState = 00000000 [ 1342.982743] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1342.997531] *** Host State *** [ 1343.002044] CR3 = 0x0000000000000000 [ 1343.002707] RIP = 0xffffffff812048fe RSP = 0xffff8881d96cf390 [ 1343.005893] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1343.012339] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1343.033021] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1343.033722] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1343.043021] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1343.052949] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1343.055725] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.061681] CR0=0000000080050033 CR3=00000001b3f6c000 CR4=00000000001426f0 [ 1343.070958] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.075248] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1343.084627] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.090669] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1343.104131] *** Control State *** [ 1343.104888] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.107590] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1343.107599] EntryControls=0000d1ff ExitControls=002fefff [ 1343.107614] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1343.107624] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1343.107635] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 1343.107644] reason=80000021 qualification=0000000000000000 [ 1343.107652] IDTVectoring: info=00000000 errcode=00000000 16:07:26 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) inotify_init() ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:26 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x3600000000000000]}) 16:07:26 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:26 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:26 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1343.107659] TSC Offset = 0xfffffd2f5255370d [ 1343.107668] EPT pointer = 0x00000001c644501e [ 1343.118276] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.186371] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.233696] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1343.247341] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.261260] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1343.274810] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1343.288776] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1343.295479] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1343.303142] Interruptibility = 00000000 ActivityState = 00000000 [ 1343.325542] *** Host State *** [ 1343.329835] *** Guest State *** 16:07:26 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4000000000000000]}) [ 1343.335961] RIP = 0xffffffff812048fe RSP = 0xffff88817c5b7390 [ 1343.342343] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1343.351867] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1343.362632] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1343.376071] CR0=0000000080050033 CR3=00000001b8486000 CR4=00000000001426f0 [ 1343.385209] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1343.394493] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1343.401469] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1343.401516] *** Control State *** [ 1343.401524] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1343.401531] EntryControls=0000d1ff ExitControls=002fefff [ 1343.401548] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1343.401594] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:27 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1343.401604] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1343.401617] reason=80000021 qualification=0000000000000000 [ 1343.401696] IDTVectoring: info=00000000 errcode=00000000 [ 1343.401777] TSC Offset = 0xfffffd2ecf6e0d40 [ 1343.401878] EPT pointer = 0x00000001b98fa01e [ 1343.444753] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1343.478438] CR3 = 0x0000000000000000 [ 1343.482300] RSP = 0x0000000000000000 RIP = 0x0000000000000000 16:07:27 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x806000000000000]}) [ 1343.518507] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1343.538761] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:27 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg(r0, &(0x7f00000092c0), 0x400000000000064, 0x0) [ 1343.576154] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.598091] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:27 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xd00000000000000]}) 16:07:27 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1343.629287] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.648836] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.668500] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:27 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x43, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000200)={0x40000000}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1343.683004] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1343.728757] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1343.761986] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:27 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1343.784667] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1343.818596] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1343.826795] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1343.877537] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 16:07:27 executing program 1: sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg(r0, &(0x7f00000092c0), 0x400000000000064, 0x0) 16:07:27 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1343.982504] Interruptibility = 00000000 ActivityState = 00000000 [ 1343.989855] *** Host State *** [ 1343.994596] RIP = 0xffffffff812048fe RSP = 0xffff8881893d7390 [ 1344.041999] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1344.074529] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1344.105340] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1344.132037] CR0=0000000080050033 CR3=00000001bcc00000 CR4=00000000001426f0 [ 1344.174925] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1344.189292] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1344.197521] *** Control State *** [ 1344.201155] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1344.208462] EntryControls=0000d1ff ExitControls=002fefff [ 1344.214003] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 16:07:27 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:27 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xfffffffd]}) 16:07:27 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:27 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000500)='/proc/self/net/pfkey\x00', 0x200, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000001540)={[0x8, 0x2, 0x3, 0x7f, 0x3, 0x7f, 0x4, 0x4, 0x9, 0x7fffffff, 0x7f, 0x80000000, 0x1, 0x7, 0xd965, 0x100], 0xf000, 0x400}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) uname(&(0x7f0000000540)=""/4096) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) clock_adjtime(0x6, &(0x7f0000001600)={0x10001, 0x5, 0x79, 0x10000, 0x1103, 0x3f, 0xe71, 0x4, 0xfff, 0x8, 0x3, 0x7ff, 0x6, 0x20, 0x3, 0x4, 0x5, 0xfffffffffffff800, 0x3f00000, 0x981f, 0xfffffffffffffff7, 0x0, 0x6, 0x8, 0x9, 0x1}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) seccomp(0x1, 0x0, &(0x7f0000000200)={0x4, &(0x7f0000000040)=[{0x2, 0x5, 0x0, 0x3}, {0x1, 0x20, 0x7, 0x78b9}, {0x4, 0xce, 0x3, 0x7fff}, {0x80, 0x5, 0x5, 0x8}]}) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:27 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1344.221749] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1344.228988] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1344.235576] reason=80000021 qualification=0000000000000000 [ 1344.242131] IDTVectoring: info=00000000 errcode=00000000 [ 1344.247592] TSC Offset = 0xfffffd2e9be69d70 [ 1344.251981] EPT pointer = 0x00000001ba2a801e [ 1344.502727] *** Guest State *** [ 1344.506203] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1344.515394] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1344.524470] CR3 = 0x0000000000000000 [ 1344.528308] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1344.537121] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:28 executing program 1: perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x20400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x9) r0 = socket$inet6(0xa, 0x400000000001, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000e77fff), 0x0, 0x20000008, 0x0, 0x0) 16:07:28 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x543]}) [ 1344.553548] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1344.563656] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.574977] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.602314] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.610643] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.619231] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.627477] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.635829] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:28 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1344.656199] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1344.669606] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1344.677872] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1344.686155] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:28 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:28 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4305000000000000]}) [ 1344.710589] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1344.718159] Interruptibility = 00000000 ActivityState = 00000000 [ 1344.724746] *** Host State *** [ 1344.728187] RIP = 0xffffffff812048fe RSP = 0xffff8881d2d3f390 [ 1344.744560] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1344.759999] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1344.767938] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1344.775478] CR0=0000000080050033 CR3=00000001c686f000 CR4=00000000001426e0 [ 1344.795070] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1344.806884] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1344.818810] *** Control State *** [ 1344.822435] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1344.829378] EntryControls=0000d1ff ExitControls=002fefff [ 1344.834920] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1344.846558] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:28 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1344.866617] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1344.878528] reason=80000021 qualification=0000000000000000 [ 1344.884968] IDTVectoring: info=00000000 errcode=00000000 [ 1344.890665] TSC Offset = 0xfffffd2dfc3bf327 [ 1344.895146] EPT pointer = 0x000000018277f01e 16:07:28 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:28 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x600000000000000]}) 16:07:28 executing program 1: perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x20400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x9) r0 = socket$inet6(0xa, 0x400000000001, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000e77fff), 0x0, 0x20000008, 0x0, 0x0) 16:07:28 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:28 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x100000000000000]}) 16:07:28 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:28 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000a40)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 16:07:28 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f0000000280)) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000200)=0x49d, 0x8) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:28 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:29 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x140]}) [ 1345.481974] FAT-fs (loop1): bogus number of reserved sectors [ 1345.489603] FAT-fs (loop1): Can't find a valid FAT filesystem 16:07:29 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:29 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r3 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r3) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1345.582125] *** Guest State *** [ 1345.585529] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1345.594702] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1345.603768] CR3 = 0x0000000000000000 [ 1345.607648] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1345.616837] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:29 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d024031") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1345.633067] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1345.643310] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.654849] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.682172] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.690612] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.698790] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.707032] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.715518] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1345.736219] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1345.749645] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1345.758027] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1345.766343] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:29 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r3 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r3) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1345.790702] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1345.798283] Interruptibility = 00000000 ActivityState = 00000000 [ 1345.804824] *** Host State *** [ 1345.808119] RIP = 0xffffffff812048fe RSP = 0xffff88817f04f390 [ 1345.824956] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1345.839858] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1345.847962] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1345.855441] CR0=0000000080050033 CR3=00000001bf1d6000 CR4=00000000001426f0 [ 1345.855494] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1345.874328] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1345.886006] *** Control State *** 16:07:29 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x6488]}) [ 1345.892415] FAT-fs (loop1): bogus number of reserved sectors [ 1345.898461] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1345.905237] EntryControls=0000d1ff ExitControls=002fefff [ 1345.910958] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1345.918089] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1345.925111] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:29 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4000000]}) 16:07:29 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1345.943034] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1345.949195] reason=80000021 qualification=0000000000000000 [ 1345.955632] IDTVectoring: info=00000000 errcode=00000000 [ 1345.961349] TSC Offset = 0xfffffd2d62f3d588 [ 1345.965800] EPT pointer = 0x00000001ccce201e [ 1346.033804] *** Guest State *** [ 1346.037175] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1346.046433] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1346.055917] CR3 = 0x0000000000000000 [ 1346.070102] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1346.076174] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:29 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c) r1 = bpf$MAP_CREATE(0x0, &(0x7f00004f9fe4)={0xc, 0x4, 0x4, 0x100000001, 0x0, r0}, 0x2c) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x0, 0x0}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r1, &(0x7f00000001c0), 0x0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r1, &(0x7f00000001c0), 0x0}, 0x18) 16:07:29 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r3 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r3) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1346.082663] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1346.096666] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1346.107951] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1346.121434] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1346.135134] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1346.148571] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1346.156585] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1346.164987] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1346.189477] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1346.197500] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1346.205838] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1346.229729] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1346.236352] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1346.244169] Interruptibility = 00000008 ActivityState = 00000000 [ 1346.266718] *** Host State *** [ 1346.277454] RIP = 0xffffffff812048fe RSP = 0xffff88817f04f390 [ 1346.283572] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1346.293448] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1346.304046] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1346.317447] CR0=0000000080050033 CR3=00000001bf1d6000 CR4=00000000001426f0 [ 1346.327482] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1346.339347] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1346.345448] *** Control State *** [ 1346.350665] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1346.357327] EntryControls=0000d1ff ExitControls=002fefff [ 1346.366657] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1346.387168] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:30 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) sendmsg$xdp(r0, &(0x7f00000006c0)={&(0x7f0000000200)={0x2c, 0x5, r2, 0x31}, 0x10, &(0x7f0000000400)=[{&(0x7f00000004c0)="4fc73b227416e164d4ef7ca1506b83855aac337f8fb0affe876ffedcf42314551ac0ae8b34c3902184241436a92c5771efaedc714606724ac37fc3170efd6284d39ea3162ab92a95aac4fd4c95d96671d34970242490c509d8951bc1bfd774fcd09a95fc7b3db445240c3dd967c03b4ad792aaf4f719bed3c74f706c4b5e1015ba9741e625b9b3a8b6553bd3611ef1d4562bc3beeddeb2423a727233723202eac3f60e613af317be0bfb8d9362516baedac76c1e9cb6c6129e69a408fcc64b1b40895209eccfb9f54ad1b5378fbf96c80a5f138ca8e089a3ddee5d934cbf1d3f24b9da48d4e7dc34813d9b09", 0xec}, {&(0x7f0000000280)="da47023befae5d29ce4372dd27b5fc2dd192ed4a3e97", 0x16}, {&(0x7f00000005c0)="c3f243eb15203b108c5b1acc2b07d616714498f045a7512367151270dbb484866d2574ea51d2556c9e8d31c809c49221d0e757da4054c83fb89958b79c22cad5839fab7010aa3f84fd4fe2c8fe115cc4586c19fc2ff73b6d5aef47439e82fc5471ba69e7d90e805f09a7767a2d97c9756f26567b01f9b35a36af605c1e61ea7c7c6a4c10a85b962f7d16828d40045fc0c422cb75e8aa49819107e0d1bf355c1e7d817c1c0362b9b688ea1295951ad001ab2f474059857963a486eade380b68462b6eaff5107aec19f3b6b3eff943", 0xce}], 0x3, 0x0, 0x0, 0x4884}, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:30 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1346.398842] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 1346.405426] reason=80000021 qualification=0000000000000000 [ 1346.411811] IDTVectoring: info=00000000 errcode=00000000 [ 1346.417256] TSC Offset = 0xfffffd2d62f3d588 [ 1346.431762] EPT pointer = 0x00000001b319401e 16:07:30 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d024031") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:30 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xffffa888]}) 16:07:30 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:30 executing program 1: r0 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x9) mmap(&(0x7f00001bf000/0x2000)=nil, 0x2000, 0x2, 0x24011, r1, 0x0) r2 = socket$inet6(0xa, 0x400000000001, 0x0) bind$inet6(r2, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r2, &(0x7f0000e77fff), 0x0, 0x20000008, 0x0, 0x0) 16:07:30 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1346.684770] *** Guest State *** [ 1346.688216] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1346.697228] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1346.706208] CR3 = 0x0000000000000000 [ 1346.719034] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1346.725164] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1346.731586] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1346.745458] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.756830] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.770755] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.784190] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.797634] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.801369] *** Guest State *** [ 1346.809349] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1346.811311] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.818793] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1346.835593] CR3 = 0x0000000000000000 [ 1346.836736] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1346.850015] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.856452] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1346.858229] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1346.864301] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1346.864352] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1346.864369] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.864427] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.864502] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.877877] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1346.905964] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1346.909543] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:30 executing program 1: sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6b}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$UI_BEGIN_FF_ERASE(0xffffffffffffffff, 0xc00c55ca, 0x0) sendmmsg(r0, &(0x7f00000092c0), 0x400000000000064, 0x0) [ 1346.917471] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1346.924102] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.933496] Interruptibility = 00000000 ActivityState = 00000000 [ 1346.939582] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.939701] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1346.939771] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1346.956780] *** Host State *** [ 1346.979124] RIP = 0xffffffff812048fe RSP = 0xffff8881b3037390 [ 1346.981770] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1346.987769] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1346.995912] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1347.015260] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1347.020381] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1347.029970] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1347.031551] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1347.037518] Interruptibility = 00000000 ActivityState = 00000000 [ 1347.046782] CR0=0000000080050033 CR3=0000000187ffe000 CR4=00000000001426e0 [ 1347.059256] *** Host State *** [ 1347.062601] RIP = 0xffffffff812048fe RSP = 0xffff8881c3ab7390 [ 1347.069765] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1347.076631] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1347.083780] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1347.090301] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1347.098284] *** Control State *** [ 1347.099797] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1347.102028] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1347.107939] CR0=0000000080050033 CR3=00000001cc668000 CR4=00000000001426f0 [ 1347.114725] EntryControls=0000d1ff ExitControls=002fefff [ 1347.128719] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 16:07:30 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1000000000000]}) [ 1347.134154] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1347.135744] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1347.145985] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1347.159602] *** Control State *** [ 1347.163203] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1347.163394] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1347.170075] EntryControls=0000d1ff ExitControls=002fefff [ 1347.170135] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1347.170206] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1347.196497] reason=80000021 qualification=0000000000000000 [ 1347.203047] IDTVectoring: info=00000000 errcode=00000000 [ 1347.208723] TSC Offset = 0xfffffd2ccffaf077 [ 1347.213223] EPT pointer = 0x00000001d3a1301e [ 1347.216632] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1347.224939] reason=80000021 qualification=0000000000000000 [ 1347.231529] IDTVectoring: info=00000000 errcode=00000000 16:07:30 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d024031") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1347.237219] TSC Offset = 0xfffffd2cbad7bee4 [ 1347.241766] EPT pointer = 0x00000001ba9ad01e 16:07:30 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1347.299038] *** Guest State *** [ 1347.302381] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:30 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x40010000]}) [ 1347.352350] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1347.380916] CR3 = 0x0000000000000000 [ 1347.395601] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1347.418005] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1347.438807] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1347.454420] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1347.508273] *** Guest State *** [ 1347.516238] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1347.533667] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1347.547013] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1347.560654] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1347.571511] CR3 = 0x0000000000000000 [ 1347.575395] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1347.581628] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1347.581646] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1347.594502] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.603936] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.620613] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1347.620763] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.641052] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1347.642114] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.652340] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1347.657200] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.665798] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1347.673372] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.681688] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1347.689591] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1347.698131] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1347.705651] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1347.713901] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1347.721671] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1347.729980] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1347.738602] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1347.744531] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1347.752248] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1347.759924] Interruptibility = 00000008 ActivityState = 00000000 [ 1347.766178] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1347.772650] *** Host State *** [ 1347.780093] Interruptibility = 00000000 ActivityState = 00000000 [ 1347.783395] RIP = 0xffffffff812048fe RSP = 0xffff8881d18ef390 [ 1347.789505] *** Host State *** [ 1347.795712] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1347.798766] RIP = 0xffffffff812048fe RSP = 0xffff8881b2ed7390 [ 1347.805227] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1347.811233] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1347.819765] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1347.825461] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1347.831613] CR0=0000000080050033 CR3=00000001cc668000 CR4=00000000001426f0 [ 1347.839324] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1347.846302] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1347.852252] CR0=0000000080050033 CR3=00000001c4b20000 CR4=00000000001426f0 [ 1347.859504] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1347.866068] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1347.872348] *** Control State *** [ 1347.879654] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1347.882693] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1347.888564] *** Control State *** [ 1347.895232] EntryControls=0000d1ff ExitControls=002fefff [ 1347.898745] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1347.904084] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1347.904099] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1347.904109] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 1347.904118] reason=80000021 qualification=0000000000000000 [ 1347.904125] IDTVectoring: info=00000000 errcode=00000000 [ 1347.904135] TSC Offset = 0xfffffd2cbad7bee4 [ 1347.910931] EntryControls=0000d1ff ExitControls=002fefff [ 1347.919296] EPT pointer = 0x00000001bcc0001e 16:07:31 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r4 = request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', r4) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:31 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:31 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xf4010000]}) 16:07:31 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0x3, &(0x7f0000000000)=@framed, 0x0, 0x1, 0xb7, &(0x7f0000000240)=""/183}, 0x48) r2 = socket$kcm(0x29, 0x1000000000002, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000100)={r0, r1}) write$binfmt_misc(r2, &(0x7f0000000300)={'syz0', "3e7e5f8c66cb7d32bb23221a00007efef4667513a54d5668ad7ba09df89606dd4913c744855a7a06959e308f5474b8ee8fc5bf27986061bff8711dc88531bb41a5b8d8c19339196b2ad91aea40492156df38f3a6087586547323a178646c27437a8f5e692b396f403e5e51c13557266072dbcd07192df3496d013e30bada0865c769ae9e46c5ad2b472400b6b74e2d7a67b1a9cef8b25494b6016761807319b5377ac51f0096e82b5b9574e5b6cbe693521e756d7ed2073a65d79f33954aa1af"}, 0xc4) 16:07:31 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1347.924575] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1347.937509] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1347.947333] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1347.977575] reason=80000021 qualification=0000000000000000 [ 1347.984160] IDTVectoring: info=00000000 errcode=00000000 [ 1347.989808] TSC Offset = 0xfffffd2c5b1898ce [ 1348.014948] EPT pointer = 0x00000001c2ced01e [ 1348.066399] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 16:07:31 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d024031628571") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:31 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x11]}) 16:07:31 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:31 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20) sendmsg(0xffffffffffffffff, &(0x7f000000c440)={&(0x7f0000001640)=@xdp, 0x80, 0x0, 0x0, &(0x7f000000a180)}, 0x0) msgctl$IPC_INFO(0x0, 0x3, &(0x7f0000000240)=""/83) semctl$SEM_INFO(0x0, 0x0, 0x13, &(0x7f00000002c0)=""/213) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f0000000540), 0x2ff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KDSIGACCEPT(0xffffffffffffffff, 0x4b4e, 0x2d) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000580), 0x4) ftruncate(0xffffffffffffffff, 0x0) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000100)=0x8) clone(0x20020102100, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$VIDIOC_G_ENC_INDEX(0xffffffffffffffff, 0x8818564c, &(0x7f0000000800)) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r2 = socket(0x0, 0x2, 0xc) write(r2, 0x0, 0x0) lookup_dcookie(0x0, 0x0, 0x0) write$smack_current(0xffffffffffffffff, 0x0, 0x0) 16:07:31 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x200000000000000]}) [ 1348.341068] binder: 1515:1516 ioctl c0306201 0 returned -14 16:07:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0) ioctl$KVM_NMI(r2, 0xae9a) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, 0x0}], 0x1, 0xfffffffbfffffffc, 0x0, 0x0) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000000)=ANY=[@ANYBLOB="f5adb9c9d6fb"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:07:32 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1348.443417] *** Guest State *** [ 1348.472401] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 1348.532048] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 16:07:32 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000000)=0x49c3f0c0, 0x4) setsockopt$sock_int(r6, 0x1, 0x2a, &(0x7f0000000040)=0x9, 0x4) sendmmsg(r5, &(0x7f000000d8c0)=[{}], 0x1, 0x0) recvfrom(r6, &(0x7f0000003540)=""/68, 0x44, 0x10062, &(0x7f0000003640)=@ax25={0x3, {"9c3711aa278fef"}}, 0x7071c9) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xb) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) rt_sigaction(0xe, &(0x7f00000002c0)={&(0x7f0000000200)="8f8870854a0b4966410f72e300c4c22da68602000000f2f240df2d69000000450f01964d000000c402d50202c48265bff9c4218f583336400faac4e24daa6900", {0x1}, 0x0, &(0x7f0000000280)="c48379608900000000f51839c4a279af639941af0ff6d33e3e66e243c462c1b7710964450faa0f0f91060001001c65460fed36"}, &(0x7f00000003c0)={&(0x7f0000000300)="66400f3a425c4a00e8c4a19574ed66660fae7475e4c4015de5ffc462293d11c4c2fd229af2ffffffc44231981c92366526430500000000c46261b800d28e6ad8f219", {}, 0x0, &(0x7f0000000380)="f34680490e0e46dc21c441e8562126400f1b6500dbe0410f0fa00008000094c4c1f853d50f01fcabc4217d5b01"}, 0x8, &(0x7f0000000400)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:32 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1348.598501] CR3 = 0x0000000000000000 [ 1348.603352] RSP = 0x0000000000000f80 RIP = 0x0000000000000006 [ 1348.610749] RFLAGS=0x00000203 DR7 = 0x0000000000000400 [ 1348.616872] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1348.623758] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 1348.631893] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1348.640051] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1348.640068] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1348.656216] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1348.665112] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1348.673307] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1348.681501] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1348.689801] IDTR: limit=0x0000ffff, base=0x0000000000000000 16:07:32 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8000002000000000]}) 16:07:32 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d024031628571") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1348.697937] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1348.706102] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1348.712690] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1348.723092] Interruptibility = 00000001 ActivityState = 00000000 [ 1348.773397] *** Host State *** [ 1348.810136] *** Guest State *** [ 1348.813575] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1348.822637] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1348.831651] CR3 = 0x0000000000000000 [ 1348.835535] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1348.844422] RIP = 0xffffffff812048fe RSP = 0xffff88817d9df390 [ 1348.850728] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1348.856846] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1348.863650] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.872609] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1348.879590] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1348.887716] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.896227] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.905499] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1348.911761] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.920376] CR0=0000000080050033 CR3=00000001d8bf8000 CR4=00000000001426e0 [ 1348.927701] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.936029] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.944641] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1348.951612] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1348.960207] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1348.966550] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1348.975677] *** Control State *** [ 1348.979470] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1348.987506] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1348.995646] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1349.016396] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1349.023364] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1349.030890] Interruptibility = 00000000 ActivityState = 00000000 [ 1349.037156] *** Host State *** [ 1349.040418] RIP = 0xffffffff812048fe RSP = 0xffff88817b47f390 [ 1349.046549] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1349.056011] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1349.077158] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1349.084707] EntryControls=0000d1ff ExitControls=002fefff [ 1349.090482] CR0=0000000080050033 CR3=00000001c4184000 CR4=00000000001426f0 [ 1349.097692] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1349.104670] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1349.123239] *** Control State *** 16:07:32 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x88a8ffff00000000]}) [ 1349.126834] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1349.133604] EntryControls=0000d1ff ExitControls=002fefff [ 1349.141716] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1349.150631] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1349.157740] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1349.164572] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:32 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1349.189928] VMEntry: intr_info=80000202 errcode=00000000 ilen=00000000 [ 1349.196883] reason=80000021 qualification=0000000000000000 [ 1349.203342] IDTVectoring: info=00000000 errcode=00000000 [ 1349.208992] TSC Offset = 0xfffffd2ba927990d [ 1349.213443] EPT pointer = 0x00000001bf1d601e 16:07:32 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1349.333220] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 1349.339956] reason=80000021 qualification=0000000000000003 [ 1349.346279] IDTVectoring: info=00000000 errcode=00000000 [ 1349.351812] TSC Offset = 0xfffffd2bd200eeff [ 1349.356137] EPT pointer = 0x00000001d8a7801e 16:07:33 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d024031628571") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:33 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1349.479182] *** Guest State *** [ 1349.482511] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 16:07:33 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x500]}) [ 1349.531068] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1349.542491] CR3 = 0x0000000000000000 [ 1349.554014] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 1349.599583] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1349.618869] *** Guest State *** [ 1349.622340] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1349.633274] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1349.643815] CR3 = 0x0000000000000000 [ 1349.647693] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1349.653916] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1349.664331] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1349.673076] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.677426] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1349.682851] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.696180] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.704463] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.707500] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 1349.712674] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.729679] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.733149] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1349.742694] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1349.753864] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1349.761981] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1349.762345] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1349.770185] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1349.786214] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1349.788643] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1349.792944] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1349.808268] Interruptibility = 00000000 ActivityState = 00000000 [ 1349.808609] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1349.814625] *** Host State *** [ 1349.823121] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 1349.826059] RIP = 0xffffffff812048fe RSP = 0xffff8881bdf97390 [ 1349.834229] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1349.840105] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1349.848098] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1349.854679] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1349.863210] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1349.871487] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1349.879132] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1349.884611] CR0=0000000080050033 CR3=00000001c179e000 CR4=00000000001426e0 [ 1349.892730] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1349.899714] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1349.906144] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1349.912871] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1349.920961] Interruptibility = 00000001 ActivityState = 00000000 [ 1349.926458] *** Control State *** [ 1349.933011] *** Host State *** [ 1349.936277] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1349.939662] RIP = 0xffffffff812048fe RSP = 0xffff8881d8d1f390 [ 1349.946248] EntryControls=0000d1ff ExitControls=002fefff [ 1349.952367] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1349.957720] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1349.964387] FSBase=00007fc26186a700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1349.971135] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1349.979168] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1349.985667] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1349.991812] CR0=0000000080050033 CR3=00000001d8bf8000 CR4=00000000001426e0 [ 1349.998195] reason=80000021 qualification=0000000000000000 [ 1350.005443] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1350.012432] IDTVectoring: info=00000000 errcode=00000000 [ 1350.018387] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1350.018395] *** Control State *** [ 1350.023915] TSC Offset = 0xfffffd2b34890930 [ 1350.030851] PinBased=0000003f CPUBased=b5986dfe SecondaryExec=000000ca [ 1350.033514] EPT pointer = 0x00000001c6ac601e 16:07:33 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:33 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:33 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000140)={0x0, 0x1}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000840)=@sack_info={r1, 0x401, 0x7fffffff}, &(0x7f0000000280)=0xc) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000400)={0x8, 0x0, 0xff, 0x1}, &(0x7f00000004c0)=0x10) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) fcntl$setstatus(r0, 0x4, 0x400) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = dup2(r3, r0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) add_key$keyring(&(0x7f0000000540)='keyring\x00', &(0x7f0000000580)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000640)='keyring\x00', &(0x7f0000000680)={'syz', 0x0}, 0x0, 0x0, 0x0) r7 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x0}, &(0x7f0000000780)="01a096ba3365911e8adf7caa8beea8c23fb2cbeb71ab494ce9eb901106dd5d469fee48761cc0a8e2fc589c79250a949374312e5f002868996d30a469b4cbf524d5d2eaf5ee9fb9d4dd1528a91861b27a82dbe4c69156571dec7aa2fe603dcc5bbe4d5cb2e8d6fd9fa57c4bb166a64731fd3e2d5599e1026abcd3d64e33ace8fe023decf734e821ed759b960ddf464c90d7dbc397e395a002358687c0c8411dc7627e011e49", 0xa5, 0xfffffffffffffff8) request_key(&(0x7f00000005c0)="636966732e73706e65676f0084082651d520d6047be8391709e39d20867c8c0aad0ff8216373d5d3deea585377640c641456f71922fd0f29ef916e9c1b3dbb8e37541d2de9", &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000006c0)='/proc/self/net/pfkey\x00', r7) fcntl$setflags(r0, 0x2, 0x1) r8 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r8) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:33 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x8, 0x4, &(0x7f0000000100)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x6, 0x2, 0x1, 0x58}]}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f0000000000)=""/251}, 0x48) 16:07:33 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x13]}) 16:07:33 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d02403162857170") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1350.037835] EntryControls=0000d1ff ExitControls=002fefff [ 1350.049026] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1350.049035] VMEntry: intr_info=80000202 errcode=00000000 ilen=00000000 [ 1350.049044] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 1350.079606] reason=80000021 qualification=0000000000000000 [ 1350.085947] IDTVectoring: info=00000000 errcode=00000000 [ 1350.092777] TSC Offset = 0xfffffd2bd200eeff [ 1350.097482] EPT pointer = 0x00000001d8a7801e 16:07:33 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:34 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1350.378081] *** Guest State *** [ 1350.381708] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:34 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x36]}) 16:07:34 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x0, 0x400) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000180)) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000500)=0x0) getpgrp(r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r6 = add_key$keyring(&(0x7f0000000400)='keyring\x00', &(0x7f00000004c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) request_key(&(0x7f0000000200)="5f6175b96800", &(0x7f0000000280)={'syz', 0x3}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', r6) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000540)='/dev/snd/pcmC#D#c\x00', 0x5, 0x10000) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1350.418805] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1350.445712] CR3 = 0x0000000000000000 [ 1350.498960] *** Guest State *** [ 1350.502448] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1350.505344] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1350.511534] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1350.526642] CR3 = 0x0000000000000000 [ 1350.541966] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1350.543990] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1350.556361] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1350.567161] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1350.575909] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1350.582905] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.592327] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.601535] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.609917] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.618076] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.626548] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.634892] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.643225] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.651749] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.660063] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1350.668178] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.676355] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1350.684835] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.693884] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.702289] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1350.710470] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1350.717026] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1350.724713] Interruptibility = 00000000 ActivityState = 00000000 [ 1350.731236] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.731251] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1350.731271] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1350.731285] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1350.731304] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1350.731315] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1350.731327] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1350.731337] Interruptibility = 00000000 ActivityState = 00000000 [ 1350.731343] *** Host State *** 16:07:34 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1350.731356] RIP = 0xffffffff812048fe RSP = 0xffff8881b2ed7390 [ 1350.731378] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1350.731392] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1350.746236] *** Host State *** [ 1350.762923] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1350.772073] RIP = 0xffffffff812048fe RSP = 0xffff8881c3d37390 [ 1350.815964] CR0=0000000080050033 CR3=00000001c0839000 CR4=00000000001426f0 [ 1350.815982] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 16:07:34 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x20000080]}) [ 1350.815995] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1350.816000] *** Control State *** [ 1350.816009] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1350.816016] EntryControls=0000d1ff ExitControls=002fefff [ 1350.816031] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1350.839241] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1350.880698] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1350.887164] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1350.895091] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 16:07:34 executing program 1: mkdir(&(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snapshot\x00', 0x40000, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000480)={0x0, 0x80, 0x80000000, 0x101, 0x0, 0x1}) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20) fchmodat(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x0) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000600), &(0x7f0000000580)=0x8) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000880)=ANY=[@ANYBLOB="fc2124edcfd90449479d1b67a6ba6b92ec8a63d33aef9edf3495c282a910a2dc1536ef26ff29f1b7f07e0becc399f984dd81be070321f4b8e0970861c98d83ae6b47ddf0961d07931cc05dcda86dbdd9299285dff46b5963a509430605e4b19465a13d831c9c86404ab567c6529be58a9bbd21c8e368ed22f8c37669c6bbc8b20fb486dce6fab4"], 0x0) ioctl$KVM_SET_XSAVE(r0, 0x5000aea5, &(0x7f00000009c0)={"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"}) socket$nl_generic(0x10, 0x3, 0x10) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000800)={0x0, 0x73e}) ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005) kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, r1) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000340), 0xffffffffffffffff) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f0000000240)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='nfs\x00', 0x0, &(0x7f0000000000)) clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000000c0)=ANY=[@ANYBLOB="bf5d9d72b869f8b10001", @ANYRES32=0x0, @ANYRES32=0x0], 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000003c0)={r2, 0x10, &(0x7f0000000380)=[@in={0x2, 0x4e22, @local}]}, &(0x7f0000000540)=0x10) getpid() setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000700)={r3, @in6={{0xa, 0x4e21, 0x2, @empty, 0x9}}}, 0x84) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 1350.901374] CR0=0000000080050033 CR3=00000001b3eba000 CR4=00000000001426e0 [ 1350.908663] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1350.915531] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1350.921706] *** Control State *** [ 1350.925326] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1350.938799] EntryControls=0000d1ff ExitControls=002fefff [ 1350.944385] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1350.954953] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1350.961955] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1350.971063] reason=80000021 qualification=0000000000000000 [ 1350.977573] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1350.984691] IDTVectoring: info=00000000 errcode=00000000 [ 1350.990364] reason=80000021 qualification=0000000000000000 [ 1350.996794] IDTVectoring: info=00000000 errcode=00000000 [ 1351.002564] TSC Offset = 0xfffffd2ac5bc5e72 [ 1351.007123] EPT pointer = 0x00000001ba0ec01e [ 1351.012857] TSC Offset = 0xfffffd2acc54cd5d [ 1351.017415] EPT pointer = 0x00000001b504501e 16:07:34 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:34 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x20000000]}) 16:07:34 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/net/pfkey\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000880)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000b00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000980)={0x108, r1, 0x900, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x428500000000000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3, 0x4}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xb7}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x10001}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3f}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team_slave_0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000840)='/proc/self/net/pfkey\x00', 0x100fff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r3 = semget$private(0x0, 0x0, 0x4) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000004c0)={{{@in6=@dev, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f0000000200)=0xe8) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r3, 0x0, 0x1, &(0x7f0000000780)={{0x10000, r4, r5, r6, r7, 0x40, 0x6}, 0x9, 0x7, 0xda}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r9, r10, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r11 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r11) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r10, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:34 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:34 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1351.377127] *** Guest State *** [ 1351.380704] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1351.389826] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1351.398821] CR3 = 0x0000000000000000 [ 1351.402639] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1351.411461] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1351.417701] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:35 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1351.427718] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.449355] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.457616] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.466043] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.490260] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.503685] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.517302] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1351.530999] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:35 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8035000000000000]}) [ 1351.544812] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1351.558312] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1351.580259] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1351.580856] *** Guest State *** [ 1351.586850] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1351.590231] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1351.597679] Interruptibility = 00000000 ActivityState = 00000000 [ 1351.606680] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1351.628972] *** Host State *** [ 1351.632454] RIP = 0xffffffff812048fe RSP = 0xffff888185eaf390 [ 1351.633018] CR3 = 0x0000000000000000 [ 1351.639425] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1351.647696] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1351.655019] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1351.656949] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1351.669232] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1351.670674] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1351.675984] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.676091] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.683982] CR0=0000000080050033 CR3=00000001c5dbf000 CR4=00000000001426f0 [ 1351.699916] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.713202] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1351.715095] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.735618] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.738160] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1351.744128] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.759983] *** Control State *** [ 1351.763639] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1351.768014] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1351.770502] EntryControls=0000d1ff ExitControls=002fefff [ 1351.770518] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1351.770528] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1351.770538] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1351.770547] reason=80000021 qualification=0000000000000000 [ 1351.770554] IDTVectoring: info=00000000 errcode=00000000 [ 1351.770561] TSC Offset = 0xfffffd2a518a57d1 [ 1351.770612] EPT pointer = 0x00000001ba9c501e [ 1351.781573] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1351.834275] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1351.872052] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1351.885072] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1351.899313] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1351.906962] Interruptibility = 00000000 ActivityState = 00000000 [ 1351.913315] *** Host State *** [ 1351.916557] RIP = 0xffffffff812048fe RSP = 0xffff8881889cf390 16:07:35 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:35 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1351.933221] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1351.959446] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1351.967502] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1351.974573] CR0=0000000080050033 CR3=00000001b36d2000 CR4=00000000001426e0 16:07:35 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x11000000]}) 16:07:35 executing program 1: mkdir(&(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snapshot\x00', 0x40000, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000480)={0x0, 0x80, 0x80000000, 0x101, 0x0, 0x1}) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20) fchmodat(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x0) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000600), &(0x7f0000000580)=0x8) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000880)=ANY=[@ANYBLOB="fc2124edcfd90449479d1b67a6ba6b92ec8a63d33aef9edf3495c282a910a2dc1536ef26ff29f1b7f07e0becc399f984dd81be070321f4b8e0970861c98d83ae6b47ddf0961d07931cc05dcda86dbdd9299285dff46b5963a509430605e4b19465a13d831c9c86404ab567c6529be58a9bbd21c8e368ed22f8c37669c6bbc8b20fb486dce6fab4"], 0x0) ioctl$KVM_SET_XSAVE(r0, 0x5000aea5, &(0x7f00000009c0)={"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"}) socket$nl_generic(0x10, 0x3, 0x10) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000800)={0x0, 0x73e}) ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005) kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, r1) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000340), 0xffffffffffffffff) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f0000000240)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='nfs\x00', 0x0, &(0x7f0000000000)) clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000000c0)=ANY=[@ANYBLOB="bf5d9d72b869f8b10001", @ANYRES32=0x0, @ANYRES32=0x0], 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000003c0)={r2, 0x10, &(0x7f0000000380)=[@in={0x2, 0x4e22, @local}]}, &(0x7f0000000540)=0x10) getpid() setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000700)={r3, @in6={{0xa, 0x4e21, 0x2, @empty, 0x9}}}, 0x84) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 1351.982832] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1351.994448] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1352.006130] *** Control State *** [ 1352.016088] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1352.023937] EntryControls=0000d1ff ExitControls=002fefff 16:07:35 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1352.033787] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1352.042785] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1352.054667] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1352.066002] reason=80000021 qualification=0000000000000000 [ 1352.076639] IDTVectoring: info=00000000 errcode=00000000 [ 1352.087304] TSC Offset = 0xfffffd2a2d89f4eb [ 1352.096697] EPT pointer = 0x00000001b292a01e 16:07:35 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xf000]}) [ 1352.229954] *** Guest State *** [ 1352.233419] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1352.242598] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1352.251785] CR3 = 0x0000000000000000 [ 1352.255665] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1352.264333] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1352.280880] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1352.287667] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.287782] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.315850] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:35 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$KDENABIO(r0, 0x4b36) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1352.329027] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.342740] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.356270] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.369815] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1352.378126] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.386454] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1352.410842] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1352.424042] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1352.437701] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1352.449498] Interruptibility = 00000000 ActivityState = 00000000 [ 1352.455872] *** Host State *** [ 1352.461905] RIP = 0xffffffff812048fe RSP = 0xffff88817b8ff390 [ 1352.468092] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1352.478097] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 16:07:36 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1352.499199] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1352.505282] CR0=0000000080050033 CR3=00000001d120b000 CR4=00000000001426f0 [ 1352.513200] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1352.535267] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 16:07:36 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4305]}) [ 1352.546725] *** Control State *** [ 1352.557145] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1352.565552] EntryControls=0000d1ff ExitControls=002fefff [ 1352.574594] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1352.579633] *** Guest State *** [ 1352.583806] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1352.584978] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1352.601055] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1352.608739] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1352.613835] CR3 = 0x0000000000000000 [ 1352.616677] reason=80000021 qualification=0000000000000000 [ 1352.616686] IDTVectoring: info=00000000 errcode=00000000 [ 1352.616698] TSC Offset = 0xfffffd29db4ff48f [ 1352.616761] EPT pointer = 0x00000001c33c701e [ 1352.628751] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1352.655852] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1352.673219] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1352.683307] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.695064] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.722410] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.732556] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.740997] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.757223] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:36 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8]}) 16:07:36 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1352.768968] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1352.777240] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1352.785377] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1352.807376] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1352.820762] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1352.827380] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1352.835031] Interruptibility = 00000000 ActivityState = 00000000 [ 1352.857889] *** Host State *** [ 1352.868624] RIP = 0xffffffff812048fe RSP = 0xffff8881c3d37390 [ 1352.874826] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1352.881515] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1352.894962] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1352.908124] CR0=0000000080050033 CR3=0000000183a7a000 CR4=00000000001426e0 [ 1352.918064] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1352.930250] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1352.936506] *** Control State *** [ 1352.941778] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1352.957910] EntryControls=0000d1ff ExitControls=002fefff [ 1352.969143] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1352.976312] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1352.983281] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1353.002295] reason=80000021 qualification=0000000000000000 [ 1353.014516] IDTVectoring: info=00000000 errcode=00000000 16:07:36 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1353.023887] TSC Offset = 0xfffffd29a50a7e00 [ 1353.033783] EPT pointer = 0x00000001bcc3201e 16:07:36 executing program 1: ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800"}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000540)={0x0, 'team0\x00'}, 0x18) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, 0x0, &(0x7f00000005c0)) clock_gettime(0x0, &(0x7f0000000240)) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) userfaultfd(0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="c7da5f1a", 0x4) fcntl$setstatus(r1, 0x4, 0x2000) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0) socket(0x0, 0x0, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r1, r2, 0x0, 0x10000000000443) writev(r1, &(0x7f00000006c0)=[{&(0x7f0000000600), 0x60020}], 0x1) read(r1, &(0x7f00000003c0)=""/72, 0x100000104) sendmsg$xdp(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="9d", 0x1}], 0x1}, 0x0) [ 1353.073430] *** Guest State *** 16:07:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1353.134437] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1353.146240] *** Guest State *** [ 1353.150483] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1353.160786] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1353.170028] CR3 = 0x0000000000000000 [ 1353.173840] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1353.180351] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1353.186442] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1353.195796] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.204449] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.212772] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.221217] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:36 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xfdffffff00000000]}) [ 1353.231147] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.239472] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.265402] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1353.276765] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:36 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1353.294132] CR3 = 0x0000000000000000 [ 1353.306883] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1353.428450] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1353.436245] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1353.448986] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.456991] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1353.468605] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1353.481348] *** Guest State *** [ 1353.483340] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1353.484762] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1353.493181] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1353.502374] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1353.510196] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1353.526915] CR3 = 0x0000000000000000 16:07:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1353.527151] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1353.539826] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1353.541758] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1353.547900] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1353.554026] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1353.568507] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1353.568944] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1353.577978] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1353.585289] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.602988] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.613341] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.626978] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.639963] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1353.647626] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.656163] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.664554] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1353.664582] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1353.680924] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1353.689147] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1353.697365] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1353.705484] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1353.714042] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1353.722535] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1353.729108] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1353.736806] Interruptibility = 00000000 ActivityState = 00000000 [ 1353.737162] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1353.749933] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1353.757673] Interruptibility = 00000000 ActivityState = 00000000 [ 1353.764168] *** Host State *** [ 1353.764493] Interruptibility = 00000008 ActivityState = 00000000 [ 1353.767511] RIP = 0xffffffff812048fe RSP = 0xffff8881b5e37390 [ 1353.781376] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1353.787892] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1353.797124] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1353.801470] *** Host State *** [ 1353.808105] *** Host State *** [ 1353.811465] RIP = 0xffffffff812048fe RSP = 0xffff8881b3037390 [ 1353.818735] RIP = 0xffffffff812048fe RSP = 0xffff88817d9df390 [ 1353.825097] CR0=0000000080050033 CR3=00000001c697f000 CR4=00000000001426f0 [ 1353.832493] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1353.840000] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1353.844265] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1353.846685] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1353.859735] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1353.867699] *** Control State *** [ 1353.871660] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1353.877851] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1353.885108] EntryControls=0000d1ff ExitControls=002fefff [ 1353.885981] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1353.892379] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1353.905654] CR0=0000000080050033 CR3=00000001bcb4b000 CR4=00000000001426e0 [ 1353.905672] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1353.905685] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1353.905693] *** Control State *** [ 1353.912909] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1353.935985] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1353.943692] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1353.950752] reason=80000021 qualification=0000000000000000 [ 1353.957200] IDTVectoring: info=00000000 errcode=00000000 [ 1353.959197] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1353.963326] TSC Offset = 0xfffffd2927b322b7 [ 1353.972759] CR0=0000000080050033 CR3=0000000183a7a000 CR4=00000000001426f0 [ 1353.973170] EntryControls=0000d1ff ExitControls=002fefff [ 1353.980467] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1353.985710] EPT pointer = 0x00000001cd7c001e [ 1353.992968] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1353.992974] *** Control State *** [ 1353.992983] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1353.992992] EntryControls=0000d1ff ExitControls=002fefff [ 1353.993007] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1353.993017] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1353.993026] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 1353.993034] reason=80000021 qualification=0000000000000000 [ 1353.993048] IDTVectoring: info=00000000 errcode=00000000 [ 1353.993055] TSC Offset = 0xfffffd29a50a7e00 [ 1353.993064] EPT pointer = 0x00000001b31bf01e [ 1353.997965] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1354.013957] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1354.026383] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:37 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = semget(0x3, 0x7, 0x140) semctl$SEM_INFO(r0, 0x7, 0x13, &(0x7f0000000500)=""/213) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000200)=@assoc_value={0x0}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000400)={r3, 0x2}, &(0x7f00000004c0)=0x8) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:37 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x88a8ffff]}) 16:07:37 executing program 1: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$inet6(0xa, 0x80002, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000500)=""/246) socket$unix(0x1, 0x5, 0x0) socket(0x200000000000011, 0x4000000000080002, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) socket$rds(0x15, 0x5, 0x0) 16:07:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:37 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1354.039741] reason=80000021 qualification=0000000000000000 [ 1354.039753] IDTVectoring: info=00000000 errcode=00000000 [ 1354.095971] TSC Offset = 0xfffffd294e5d1355 [ 1354.109788] EPT pointer = 0x0000000184f5101e 16:07:37 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:37 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x14000000]}) 16:07:37 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/cgroup\x00') [ 1354.349151] *** Guest State *** [ 1354.383974] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:38 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1354.449295] *** Guest State *** [ 1354.452731] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1354.461703] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1354.469189] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1354.471560] CR3 = 0x0000000000000000 [ 1354.484184] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1354.485142] CR3 = 0x0000000000000000 [ 1354.496301] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1354.497370] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1354.503645] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1354.515714] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1354.517535] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1354.522877] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.537498] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.537787] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.546963] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.554412] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.585070] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.593874] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.602683] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.603909] *** Guest State *** [ 1354.614890] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1354.615214] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.624104] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1354.632443] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.645226] CR3 = 0x0000000000000000 [ 1354.649981] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1354.661443] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.661545] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1354.671940] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.675836] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1354.684059] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1354.701978] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1354.705162] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1354.714866] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1354.723493] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.723522] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.723646] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.723956] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.724041] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.724107] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.743056] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1354.762262] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1354.764840] Interruptibility = 00000000 ActivityState = 00000000 [ 1354.775305] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.791648] *** Host State *** [ 1354.801514] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1354.806375] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1354.807883] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1354.826002] RIP = 0xffffffff812048fe RSP = 0xffff88818572f390 [ 1354.840484] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1354.847193] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1354.848120] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1354.855286] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1354.871333] CR0=0000000080050033 CR3=0000000187530000 CR4=00000000001426f0 [ 1354.874918] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1354.881460] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1354.887014] Interruptibility = 00000000 ActivityState = 00000000 [ 1354.893779] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1354.893923] *** Control State *** [ 1354.894119] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1354.894287] EntryControls=0000d1ff ExitControls=002fefff [ 1354.894465] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1354.894476] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1354.894487] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1354.894501] reason=80000021 qualification=0000000000000000 16:07:38 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1300]}) [ 1354.894735] IDTVectoring: info=00000000 errcode=00000000 [ 1354.902850] *** Host State *** [ 1354.913131] TSC Offset = 0xfffffd28a7c00c28 [ 1354.927326] RIP = 0xffffffff812048fe RSP = 0xffff8881b410f390 [ 1354.932502] EPT pointer = 0x00000001c108301e [ 1354.945191] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1354.982271] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1354.993156] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1355.001512] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1355.007554] CR0=0000000080050033 CR3=00000001d8894000 CR4=00000000001426e0 [ 1355.014933] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1355.041589] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:38 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x200000000003, &(0x7f0000000240)) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r1) r2 = syz_open_dev$adsp(&(0x7f00000003c0)='/dev/adsp#\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000680), &(0x7f0000000440)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000480), 0x4) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000400)='cgroup.procs\x00', 0x2, 0x0) ppoll(&(0x7f0000000380)=[{r1, 0x1d1}, {r0, 0x180}, {r1, 0xc002}], 0x3, &(0x7f00000004c0), &(0x7f0000000500)={0x100}, 0x8) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000700)=0xffffffffffffff00) ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000540)) stat(&(0x7f0000004980)='./file0\x00', &(0x7f00000049c0)) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x162}], 0x1, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000300), 0x1, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x7003, &(0x7f00000000c0)) preadv(r3, &(0x7f0000000280)=[{&(0x7f0000000180)=""/116, 0x74}], 0x1, 0x100000000000000) close(r3) getpgrp(0x0) getpgid(0x0) rmdir(&(0x7f0000000300)='./file0\x00') ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000240)={0x2, &(0x7f0000000200)=[{}, {}]}) openat$md(0xffffffffffffff9c, &(0x7f0000000280)='/dev/md0\x00', 0xffffffffffffffff, 0x0) [ 1355.049995] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1355.056120] *** Control State *** [ 1355.060011] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1355.066806] EntryControls=0000d1ff ExitControls=002fefff [ 1355.072414] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1355.086217] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1355.093147] IDTR: limit=0x00000000, base=0x0000000060000011 16:07:38 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1355.101262] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1355.108012] reason=80000021 qualification=0000000000000000 [ 1355.116202] IDTVectoring: info=00000000 errcode=00000000 [ 1355.130929] TSC Offset = 0xfffffd28a43eb7c3 [ 1355.135439] EPT pointer = 0x00000001bf4c501e [ 1355.178229] *** Guest State *** [ 1355.182195] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1355.191211] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1355.200370] CR3 = 0x0000000000000000 [ 1355.204302] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1355.213908] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1355.230134] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1355.236856] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.244881] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1355.244894] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1355.244906] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1355.244920] Interruptibility = 00000000 ActivityState = 00000000 [ 1355.265128] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.267688] *** Host State *** [ 1355.278457] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.292381] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.292412] RIP = 0xffffffff812048fe RSP = 0xffff8881889cf390 [ 1355.309748] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1355.316286] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.324801] FSBase=00007fd89f9ec700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1355.332759] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.341199] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1355.347177] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1355.355230] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1355.355246] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1355.355265] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1355.355278] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1355.408729] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1355.416298] Interruptibility = 00000000 ActivityState = 00000000 [ 1355.422901] *** Host State *** [ 1355.426114] RIP = 0xffffffff812048fe RSP = 0xffff8881bc83f390 [ 1355.442086] CR0=0000000080050033 CR3=00000001ca7d1000 CR4=00000000001426f0 [ 1355.449350] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1355.455812] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1355.463697] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1355.480498] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1355.481657] CR0=0000000080050033 CR3=00000001d8894000 CR4=00000000001426f0 [ 1355.487350] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1355.494298] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1355.494310] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1355.494319] *** Control State *** [ 1355.500502] *** Control State *** [ 1355.512645] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1355.527556] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1355.535345] EntryControls=0000d1ff ExitControls=002fefff [ 1355.540861] EntryControls=0000d1ff ExitControls=002fefff [ 1355.540877] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1355.540886] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1355.542003] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1355.555714] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1355.561090] reason=80000021 qualification=0000000000000000 [ 1355.572420] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1355.573835] IDTVectoring: info=00000000 errcode=00000000 [ 1355.583280] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1355.586916] TSC Offset = 0xfffffd28b6a5d038 [ 1355.586928] EPT pointer = 0x000000017c99401e 16:07:39 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x12) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x2, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000400)={0x34, 0x0, &(0x7f0000000280)}) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) setsockopt$inet6_dccp_buf(r0, 0x21, 0x2, &(0x7f0000000200)="2c6d7c5a2a98a91e91f4545bf1318468641a24359486adb6d80e666b27279b5823f8666a9765f2f142767855cb83b51b103109aeec", 0x35) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:39 executing program 2: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:39 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x800e]}) 16:07:39 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1355.596127] reason=80000021 qualification=0000000000000000 [ 1355.617139] IDTVectoring: info=00000000 errcode=00000000 [ 1355.642231] TSC Offset = 0xfffffd28a43eb7c3 [ 1355.646636] EPT pointer = 0x00000001bf4c501e 16:07:39 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:39 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x88caffff00000000]}) 16:07:39 executing program 2: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:39 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:39 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000540)={'vcan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'team0\x00', r1}) ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000200)=0x8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000280)='gre0\x00') request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) add_key$user(&(0x7f0000000400)='user\x00', &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000500)="c18a3f4794b24d0749006438b134abfdc3446c74e9cf6c420cdb4164584adf31d4f3e00bf7f453", 0x27, r5) 16:07:39 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:39 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x200000000003, &(0x7f0000000240)) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r1) r2 = syz_open_dev$adsp(&(0x7f00000003c0)='/dev/adsp#\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000680), &(0x7f0000000440)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000480), 0x4) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000400)='cgroup.procs\x00', 0x2, 0x0) ppoll(&(0x7f0000000380)=[{r1, 0x1d1}, {r0, 0x180}, {r1, 0xc002}], 0x3, &(0x7f00000004c0), &(0x7f0000000500)={0x100}, 0x8) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000700)=0xffffffffffffff00) ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000540)) stat(&(0x7f0000004980)='./file0\x00', &(0x7f00000049c0)) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x162}], 0x1, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000300), 0x1, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x7003, &(0x7f00000000c0)) preadv(r3, &(0x7f0000000280)=[{&(0x7f0000000180)=""/116, 0x74}], 0x1, 0x100000000000000) close(r3) getpgrp(0x0) getpgid(0x0) rmdir(&(0x7f0000000300)='./file0\x00') ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000240)={0x2, &(0x7f0000000200)=[{}, {}]}) openat$md(0xffffffffffffff9c, &(0x7f0000000280)='/dev/md0\x00', 0xffffffffffffffff, 0x0) 16:07:39 executing program 2: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:39 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x9000000]}) 16:07:39 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1356.344275] *** Guest State *** [ 1356.375182] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1356.402380] *** Guest State *** [ 1356.405785] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1356.414783] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1356.424038] CR3 = 0x0000000000000000 [ 1356.427820] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1356.452080] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1356.458176] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1356.465127] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.473778] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.487402] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.497523] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1356.500781] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.529604] CR3 = 0x0000000000000000 [ 1356.529749] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.533342] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1356.533354] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1356.533371] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1356.533387] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.533409] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:40 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x806]}) [ 1356.533431] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.533450] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.533470] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.542856] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.562339] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1356.578514] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.591058] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.617514] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1356.644076] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1356.647539] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1356.668775] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1356.675466] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1356.686495] Interruptibility = 00000000 ActivityState = 00000000 [ 1356.693900] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1356.702432] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1356.710854] *** Host State *** [ 1356.714203] RIP = 0xffffffff812048fe RSP = 0xffff88818572f390 [ 1356.720349] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:40 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xffffdd86]}) [ 1356.727850] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1356.735743] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1356.742868] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1356.751397] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1356.758043] CR0=0000000080050033 CR3=00000001b8ab3000 CR4=00000000001426f0 [ 1356.766681] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 16:07:40 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1356.777998] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1356.786254] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1356.793976] *** Control State *** [ 1356.797580] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1356.804379] EntryControls=0000d1ff ExitControls=002fefff [ 1356.810652] Interruptibility = 00000000 ActivityState = 00000000 [ 1356.817373] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 16:07:40 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1356.826096] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1356.831492] *** Host State *** [ 1356.837900] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1356.844146] RIP = 0xffffffff812048fe RSP = 0xffff8881889cf390 [ 1356.849367] reason=80000021 qualification=0000000000000000 [ 1356.856948] IDTVectoring: info=00000000 errcode=00000000 [ 1356.862930] TSC Offset = 0xfffffd27a1785ced [ 1356.867514] EPT pointer = 0x00000001c2fe701e [ 1356.881182] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1356.888888] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1356.897994] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1356.919593] CR0=0000000080050033 CR3=00000001c127e000 CR4=00000000001426e0 [ 1356.926767] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1356.935135] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1356.941766] *** Control State *** [ 1356.945676] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1356.955732] EntryControls=0000d1ff ExitControls=002fefff 16:07:40 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xfeffffff00000000]}) [ 1356.982582] *** Guest State *** [ 1357.089387] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1357.098531] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1357.107520] CR3 = 0x0000000000000000 [ 1357.111791] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1357.114476] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1357.124951] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1357.131182] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1357.138839] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1357.149075] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1357.154546] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1357.163257] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1357.172476] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1357.187758] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1357.195827] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1357.195837] reason=80000021 qualification=0000000000000000 [ 1357.195844] IDTVectoring: info=00000000 errcode=00000000 [ 1357.195850] TSC Offset = 0xfffffd27a1d8a048 [ 1357.195859] EPT pointer = 0x00000001bbffa01e [ 1357.205331] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 16:07:40 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) [ 1357.249455] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1357.261535] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1357.271220] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1357.279892] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1357.288025] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1357.294922] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1357.303608] Interruptibility = 00000008 ActivityState = 00000000 [ 1357.311204] *** Host State *** [ 1357.314730] RIP = 0xffffffff812048fe RSP = 0xffff8881bc83f390 [ 1357.321184] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1357.327730] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1357.336177] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1357.342570] CR0=0000000080050033 CR3=00000001b8ab3000 CR4=00000000001426f0 [ 1357.352607] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1357.359912] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1357.366084] *** Control State *** [ 1357.370122] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1357.378106] EntryControls=0000d1ff ExitControls=002fefff [ 1357.383738] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1357.390796] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1357.397553] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1357.404292] reason=80000021 qualification=0000000000000000 [ 1357.404301] IDTVectoring: info=00000000 errcode=00000000 [ 1357.404308] TSC Offset = 0xfffffd27a1785ced [ 1357.404318] EPT pointer = 0x00000001ba93701e 16:07:41 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x101000, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) lsetxattr$trusted_overlay_opaque(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='trusted.overlay.opaque\x00', &(0x7f0000000400)='y\x00', 0x2, 0x2) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:41 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:41 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:41 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x13000000]}) 16:07:41 executing program 1: socketpair$unix(0x1, 0x0, 0x0, 0x0) clone(0x2122001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000018000)=0x1, 0x4) bind$inet(r0, &(0x7f0000003ff0)={0x2, 0x0, @multicast2}, 0x10) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000013000)=[@in={0x2, 0x0, @broadcast}], 0x10) sendto$inet(r0, &(0x7f000001d000)="a9", 0x1, 0x0, 0x0, 0x0) listen(r0, 0x7) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x0, @multicast1}], 0x10) r1 = socket$inet6(0xa, 0x0, 0x0) exit(0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x7fe) [ 1357.451284] *** Guest State *** [ 1357.454608] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1357.518591] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1357.554788] CR3 = 0x0000000000000000 [ 1357.562190] RSP = 0x0000000000000000 RIP = 0x0000000000000000 16:07:41 executing program 2: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:41 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x600]}) [ 1357.572228] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1357.578720] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:41 executing program 1: r0 = socket$inet(0x10, 0x3, 0x7) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) [ 1357.628592] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:41 executing program 2: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1357.722063] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.734377] *** Guest State *** [ 1357.737882] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1357.747111] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1357.756061] CR3 = 0x0000000000000000 16:07:41 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4400000000000000]}) [ 1357.769114] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1357.775224] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1357.781593] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1357.792342] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.795555] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.807068] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.815113] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.823460] *** Guest State *** [ 1357.828614] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.829262] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1357.836923] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.845667] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1357.845677] CR3 = 0x0000000000000000 [ 1357.867016] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.877059] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1357.887566] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895792] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1357.895829] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1357.895842] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895862] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895881] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895897] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895917] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895936] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895949] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1357.895969] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.895982] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1357.896001] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1357.896012] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1357.896024] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1357.896033] Interruptibility = 00000000 ActivityState = 00000000 [ 1357.896038] *** Host State *** [ 1357.896050] RIP = 0xffffffff812048fe RSP = 0xffff888184e5f390 16:07:41 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x200000000003, &(0x7f0000000240)) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000680), &(0x7f0000000440)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000480), 0x4) ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, &(0x7f0000000540)) stat(&(0x7f0000004980)='./file0\x00', &(0x7f00000049c0)) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000300), 0x1, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f00000000c0)) preadv(r1, &(0x7f0000000280)=[{&(0x7f0000000180)=""/116, 0x74}], 0x1, 0x100000000000000) close(r1) getpgrp(0x0) getpgid(0x0) rmdir(&(0x7f0000000300)='./file0\x00') ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000240)={0x2, &(0x7f0000000200)=[{}, {}]}) openat$md(0xffffffffffffff9c, &(0x7f0000000280)='/dev/md0\x00', 0xffffffffffffffff, 0x0) [ 1357.896073] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1357.896086] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1357.896098] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1357.896113] CR0=0000000080050033 CR3=00000001c2fe7000 CR4=00000000001426f0 [ 1357.896130] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1357.896150] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1357.896155] *** Control State *** [ 1357.896164] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1357.896172] EntryControls=0000d1ff ExitControls=002fefff [ 1357.896185] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1357.896195] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1357.896204] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1357.896213] reason=80000021 qualification=0000000000000000 [ 1357.896221] IDTVectoring: info=00000000 errcode=00000000 [ 1357.896227] TSC Offset = 0xfffffd26d43333c2 [ 1357.896236] EPT pointer = 0x000000018986b01e [ 1357.902713] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.922980] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1357.936331] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.951532] *** Guest State *** [ 1357.960071] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1357.965386] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1357.973623] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1357.988036] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1358.000922] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1358.003856] CR3 = 0x0000000000000000 [ 1358.014279] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1358.027016] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1358.037496] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1358.047985] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1358.061087] Interruptibility = 00000000 ActivityState = 00000000 [ 1358.067059] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1358.072444] *** Host State *** [ 1358.077733] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.083414] RIP = 0xffffffff812048fe RSP = 0xffff88817b8ff390 [ 1358.103060] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.108640] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1358.112857] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.112875] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.117316] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1358.125254] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.125273] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.125290] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1358.137570] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1358.141433] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.150814] CR0=0000000080050033 CR3=00000001b8ab3000 CR4=00000000001426e0 [ 1358.154806] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1358.161653] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1358.173423] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1358.193026] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1358.197030] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1358.206724] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1358.220407] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1358.230168] *** Control State *** [ 1358.233183] Interruptibility = 00000000 ActivityState = 00000000 [ 1358.233189] *** Host State *** [ 1358.233202] RIP = 0xffffffff812048fe RSP = 0xffff888184e5f390 [ 1358.233227] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1358.233240] FSBase=00007f3537b89700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1358.233253] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1358.233270] CR0=0000000080050033 CR3=00000001c2fe7000 CR4=00000000001426e0 [ 1358.241324] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1358.250821] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1358.255375] EntryControls=0000d1ff ExitControls=002fefff [ 1358.269553] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1358.288791] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1358.301813] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1358.310392] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1358.315823] *** Control State *** [ 1358.323882] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1358.340501] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1358.345796] reason=80000021 qualification=0000000000000000 [ 1358.353696] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1358.353704] EntryControls=0000d1ff ExitControls=002fefff [ 1358.353717] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1358.353726] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1358.353734] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1358.353742] reason=80000021 qualification=0000000000000000 [ 1358.353750] IDTVectoring: info=00000000 errcode=00000000 [ 1358.353757] TSC Offset = 0xfffffd26d43333c2 [ 1358.353766] EPT pointer = 0x000000018986b01e [ 1358.354180] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1358.370371] IDTVectoring: info=00000000 errcode=00000000 [ 1358.385290] TSC Offset = 0xfffffd26e68bd467 [ 1358.385302] EPT pointer = 0x00000001bf8ed01e [ 1358.447437] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1358.475393] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1358.566583] Interruptibility = 00000000 ActivityState = 00000000 [ 1358.575274] *** Host State *** [ 1358.589281] RIP = 0xffffffff812048fe RSP = 0xffff8881889cf390 [ 1358.604862] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1358.612104] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1358.625745] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1358.639896] CR0=0000000080050033 CR3=00000001b3332000 CR4=00000000001426f0 [ 1358.647121] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1358.654099] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1358.660609] *** Control State *** [ 1358.664094] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1358.670879] EntryControls=0000d1ff ExitControls=002fefff [ 1358.676363] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1358.684697] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1358.691446] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1358.698024] reason=80000021 qualification=0000000000000000 [ 1358.704383] IDTVectoring: info=00000000 errcode=00000000 [ 1358.709858] TSC Offset = 0xfffffd2701ac423a [ 1358.714165] EPT pointer = 0x00000001c1e0b01e 16:07:42 executing program 2: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:42 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xe00000000000000]}) 16:07:42 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:42 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:42 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r3 = getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, r7, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) r8 = request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r9 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r9) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000540)=ANY=[@ANYRES64=r8, @ANYRES32=r4, @ANYRESDEC=r2, @ANYRES64=r9, @ANYPTR64=&(0x7f00000004c0)=ANY=[@ANYRESHEX=r5, @ANYRES32=r4, @ANYRES16, @ANYRESOCT=r0, @ANYRESHEX=r3, @ANYRESDEC=r1], @ANYPTR64, @ANYRESOCT=r4]) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, 0x0) 16:07:42 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x88caffff]}) [ 1359.057988] *** Guest State *** [ 1359.061836] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:42 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1359.114492] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1359.130090] *** Guest State *** [ 1359.133526] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1359.142483] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1359.152432] CR3 = 0x0000000000000000 [ 1359.156268] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1359.162941] CR3 = 0x0000000000000000 [ 1359.166857] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1359.173414] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1359.179838] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1359.186217] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1359.194281] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:42 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8060000]}) [ 1359.208740] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1359.216723] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.220223] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.225592] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.242558] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.256215] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.269739] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.277886] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1359.286085] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:42 executing program 1: [ 1359.310199] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1359.323748] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1359.329252] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.337221] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1359.349151] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:42 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1359.357349] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1359.364994] Interruptibility = 00000000 ActivityState = 00000000 [ 1359.371354] *** Host State *** [ 1359.374714] RIP = 0xffffffff812048fe RSP = 0xffff88817d357390 [ 1359.380819] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1359.387375] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1359.396037] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 16:07:43 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000001d000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f00000004c0)="0f20e035000002000f22e0f236400f0134010f080f234348b806000000000000000f23d80f21f835400000100f23f8440f019b0100000066ba2100ed66b899000f00d0b805000000b90e0000000f01c1f30f165cf300"}], 0x4c7, 0x1, 0x0, 0xff33) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1359.408568] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.420270] CR0=0000000080050033 CR3=00000001bd520000 CR4=00000000001426f0 [ 1359.428290] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1359.436971] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1359.444008] *** Control State *** [ 1359.447663] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 16:07:43 executing program 1: [ 1359.458674] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.466856] EntryControls=0000d1ff ExitControls=002fefff [ 1359.478629] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.486779] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1359.493923] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1359.501479] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:43 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4001000000000000]}) [ 1359.509760] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1359.516497] reason=80000021 qualification=0000000000000000 [ 1359.525297] IDTVectoring: info=00000000 errcode=00000000 [ 1359.534102] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1359.542550] TSC Offset = 0xfffffd26360a290a [ 1359.546958] EPT pointer = 0x00000001b9ccb01e [ 1359.553053] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1359.561441] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1359.569796] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1359.579571] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1359.589740] Interruptibility = 00000000 ActivityState = 00000000 [ 1359.595992] *** Host State *** [ 1359.596007] RIP = 0xffffffff812048fe RSP = 0xffff88818572f390 [ 1359.596037] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1359.596050] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1359.596064] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1359.627305] CR0=0000000080050033 CR3=00000001b6ede000 CR4=00000000001426e0 [ 1359.634597] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 16:07:43 executing program 1: [ 1359.758829] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1359.764927] *** Control State *** 16:07:43 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1359.809845] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1359.816586] EntryControls=0000d1ff ExitControls=002fefff 16:07:43 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1000000]}) 16:07:43 executing program 1: 16:07:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1359.892484] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1359.899787] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1359.906702] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1359.913489] reason=80000021 qualification=0000000000000000 [ 1359.920012] IDTVectoring: info=00000000 errcode=00000000 [ 1359.925569] TSC Offset = 0xfffffd2624953fb3 [ 1359.930101] EPT pointer = 0x00000001d89b801e 16:07:43 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:43 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1359.991335] *** Guest State *** [ 1359.994829] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1360.004043] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1360.013219] CR3 = 0x0000000000000000 [ 1360.017037] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1360.025550] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1360.042008] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1360.052269] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.063920] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.077852] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.091678] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.105329] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.118993] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.127144] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:43 executing program 1: [ 1360.135994] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.159886] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1360.168085] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1360.176203] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:43 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x2000]}) [ 1360.200160] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1360.207853] Interruptibility = 00000000 ActivityState = 00000000 [ 1360.214463] *** Host State *** [ 1360.217918] RIP = 0xffffffff812048fe RSP = 0xffff888184e5f390 [ 1360.234222] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 16:07:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1360.250103] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1360.258023] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1360.264262] CR0=0000000080050033 CR3=000000017cff8000 CR4=00000000001426e0 [ 1360.285036] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1360.296027] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1360.307596] *** Control State *** [ 1360.318015] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1360.324808] EntryControls=0000d1ff ExitControls=002fefff [ 1360.344454] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1360.352182] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1360.359016] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1360.365728] reason=80000021 qualification=0000000000000000 [ 1360.372576] IDTVectoring: info=00000000 errcode=00000000 [ 1360.378195] TSC Offset = 0xfffffd25aebbbbf7 [ 1360.384965] *** Guest State *** [ 1360.389657] EPT pointer = 0x00000001b76bd01e 16:07:44 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x2000000]}) [ 1360.398280] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1360.407487] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1360.417596] CR3 = 0x0000000000000000 [ 1360.421574] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1360.427559] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1360.433731] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1360.433746] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:44 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000280)='nbd\x00') sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000540)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f00000004c0)={0x50, r5, 0xb0a, 0x70bd28, 0x25dfdbfc, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x100000000}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xaeba}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xe8a}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000041) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:44 executing program 1: [ 1360.433769] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:44 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1360.479868] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.487938] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.496079] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.504258] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.525550] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1360.568672] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:44 executing program 1: [ 1360.644855] IDTR: limit=0x00000000, base=0x0000000060000011 16:07:44 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1360.750948] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1360.815282] *** Guest State *** [ 1360.818816] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1360.825713] *** Guest State *** [ 1360.827719] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1360.827726] CR3 = 0x0000000000000000 [ 1360.827734] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1360.827749] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1360.831425] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1360.841297] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1360.843858] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1360.856042] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.864914] CR3 = 0x0000000000000000 [ 1360.877960] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1360.888914] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1360.892573] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:44 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x800e0000]}) [ 1360.900067] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1360.905075] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.924839] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1360.935088] Interruptibility = 00000000 ActivityState = 00000000 [ 1360.941756] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.949886] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.957942] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.958090] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1360.966629] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1360.973151] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.973173] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.973197] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.986662] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1360.997750] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.005988] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1361.006079] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1361.006144] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1361.006194] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1361.006214] Interruptibility = 00000000 ActivityState = 00000000 [ 1361.033929] *** Host State *** [ 1361.038870] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.045206] *** Host State *** [ 1361.052699] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.067781] RIP = 0xffffffff812048fe RSP = 0xffff88818574f390 [ 1361.073080] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1361.074109] RIP = 0xffffffff812048fe RSP = 0xffff8881d4a77390 [ 1361.088089] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1361.088103] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1361.088116] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1361.088131] CR0=0000000080050033 CR3=00000001c1515000 CR4=00000000001426f0 [ 1361.088146] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1361.096347] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.115865] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1361.127438] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1361.129951] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1361.129957] *** Control State *** [ 1361.129968] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1361.129976] EntryControls=0000d1ff ExitControls=002fefff [ 1361.129990] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1361.130000] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1361.130010] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1361.130018] reason=80000021 qualification=0000000000000000 [ 1361.130026] IDTVectoring: info=00000000 errcode=00000000 [ 1361.130032] TSC Offset = 0xfffffd254477c16e [ 1361.130042] EPT pointer = 0x00000001d1aa301e [ 1361.140311] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1361.151419] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1361.220066] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1361.225804] Interruptibility = 00000000 ActivityState = 00000000 [ 1361.248679] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1361.257865] *** Host State *** [ 1361.268730] RIP = 0xffffffff812048fe RSP = 0xffff8881b5797390 [ 1361.274965] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1361.281540] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1361.297160] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1361.313700] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1361.320431] CR0=0000000080050033 CR3=00000001d72a8000 CR4=00000000001426e0 [ 1361.327645] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1361.334428] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1361.343568] *** Control State *** [ 1361.347123] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1361.353898] EntryControls=0000d1ff ExitControls=002fefff [ 1361.371074] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1361.378288] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1361.378723] CR0=0000000080050033 CR3=00000001bdc27000 CR4=00000000001426e0 [ 1361.392703] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1361.399200] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1361.407192] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1361.411250] reason=80000021 qualification=0000000000000000 [ 1361.413975] *** Control State *** [ 1361.422295] IDTVectoring: info=00000000 errcode=00000000 [ 1361.423554] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1361.436432] TSC Offset = 0xfffffd253e494428 [ 1361.447023] EPT pointer = 0x00000001b7df501e [ 1361.448594] EntryControls=0000d1ff ExitControls=002fefff [ 1361.472009] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1361.491899] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1361.498917] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1361.505505] reason=80000021 qualification=0000000000000000 [ 1361.512702] IDTVectoring: info=00000000 errcode=00000000 [ 1361.518146] TSC Offset = 0xfffffd257d4c3faa 16:07:45 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:45 executing program 1: 16:07:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) ioctl$VIDIOC_G_EDID(r0, 0xc0285628, &(0x7f0000000400)={0x8001, 0xe7, 0xffffffffffffffff, [], &(0x7f0000000280)=0x4}) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000540)={&(0x7f0000000500)='./file0\x00', r1}, 0x10) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000200)) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) syncfs(r1) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) setsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f0000000580)={@mcast1, r2}, 0x14) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) fcntl$setstatus(r5, 0x4, 0x2000) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:45 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x300]}) 16:07:45 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1361.522517] EPT pointer = 0x00000001b328501e 16:07:45 executing program 1: 16:07:45 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x3e8]}) 16:07:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:45 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x20480]}) 16:07:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1361.883715] *** Guest State *** [ 1361.887123] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1361.896272] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1361.905594] CR3 = 0x0000000000000000 [ 1361.919484] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1361.925510] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:45 executing program 1: [ 1361.931592] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1361.938276] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.946339] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.970500] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.983846] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1361.997341] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.011014] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.024476] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1362.038037] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.051535] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1362.065032] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1362.079055] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1362.085502] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1362.093039] Interruptibility = 00000000 ActivityState = 00000000 [ 1362.115960] *** Host State *** [ 1362.126309] RIP = 0xffffffff812048fe RSP = 0xffff8881b5797390 16:07:45 executing program 3: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r3, 0x20010000008912, &(0x7f0000000040)="0a5c2d0240316285717070") perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 16:07:45 executing program 1: [ 1362.132547] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1362.142167] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1362.152845] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1362.166091] CR0=0000000080050033 CR3=00000001bdc27000 CR4=00000000001426e0 [ 1362.176055] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1362.187974] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1362.199310] *** Control State *** [ 1362.203202] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1362.210054] EntryControls=0000d1ff ExitControls=002fefff [ 1362.215517] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1362.227570] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1362.249132] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1362.255783] reason=80000021 qualification=0000000000000000 [ 1362.262189] IDTVectoring: info=00000000 errcode=00000000 [ 1362.267653] TSC Offset = 0xfffffd24bba8a5e1 [ 1362.282032] EPT pointer = 0x00000001bde8301e [ 1362.282199] *** Guest State *** [ 1362.289954] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1362.289969] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1362.307726] CR3 = 0x0000000000000000 [ 1362.314098] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1362.320459] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1362.327422] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1362.334545] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000680)=0x0) getpgrp(r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = msgget(0x3, 0x2) msgctl$IPC_STAT(r5, 0x2, &(0x7f00000004c0)=""/236) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000280)={0x4, 0x2, 0xf000, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x785) prctl$PR_SVE_SET_VL(0x32, 0x2551c) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x9, 0x80) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000200)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f00000005c0)={0x2, 0x7fffffff, 0xffffffffffffffe0, 'queue0\x00', 0x6}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:45 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:45 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x7ffff000]}) 16:07:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:45 executing program 1: [ 1362.343104] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.360973] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.369352] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.385417] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:46 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x700000000000000]}) [ 1362.412626] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.434793] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1362.445884] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1362.454313] IDTR: limit=0x00000000, base=0x0000000060000011 16:07:46 executing program 1: [ 1362.468422] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1362.485588] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1362.560530] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1362.591142] Interruptibility = 00000000 ActivityState = 00000000 [ 1362.597568] *** Host State *** [ 1362.601459] RIP = 0xffffffff812048fe RSP = 0xffff88817f0f7390 [ 1362.617173] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1362.624163] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1362.632327] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 16:07:46 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x40000000]}) 16:07:46 executing program 1: [ 1362.658231] CR0=0000000080050033 CR3=00000001ccbb5000 CR4=00000000001426f0 [ 1362.675221] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1362.705180] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1362.743431] *** Control State *** [ 1362.761416] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1362.799078] EntryControls=0000d1ff ExitControls=002fefff [ 1362.824850] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1362.835600] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1362.848699] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 16:07:46 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:46 executing program 1: 16:07:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f00000005c0)={0x1}, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) unlink(&(0x7f0000000200)='./file0\x00') r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000400)=0x400, 0x4) ioctl$FS_IOC_SETFSLABEL(r2, 0x41009432, &(0x7f00000004c0)="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") r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000280)) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917}, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:46 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xfffff000]}) [ 1362.870532] reason=80000021 qualification=0000000000000000 [ 1362.877208] IDTVectoring: info=00000000 errcode=00000000 [ 1362.884602] TSC Offset = 0xfffffd246bab9b09 [ 1362.889102] EPT pointer = 0x00000001c251601e 16:07:46 executing program 3: 16:07:46 executing program 1: 16:07:46 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x3000000]}) 16:07:46 executing program 3: 16:07:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1363.169924] *** Guest State *** [ 1363.173448] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1363.188282] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1363.199115] CR3 = 0x0000000000000000 [ 1363.204838] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1363.221749] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1363.227846] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1363.234991] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.243301] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.256610] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:46 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x86ddffff]}) [ 1363.269903] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.278045] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.286421] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.310537] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:46 executing program 1: perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x20400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x9) r0 = socket$inet6(0xa, 0x400000000001, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000e77fff), 0x0, 0x20000008, 0x0, 0x0) [ 1363.324242] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.338157] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1363.351308] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1363.364636] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1363.378245] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1363.389164] Interruptibility = 00000000 ActivityState = 00000000 [ 1363.395567] *** Host State *** [ 1363.401863] RIP = 0xffffffff812048fe RSP = 0xffff88817f0f7390 [ 1363.407940] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1363.417987] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1363.438924] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1363.444906] CR0=0000000080050033 CR3=00000001b4e27000 CR4=00000000001426e0 [ 1363.452192] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1363.474059] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1363.485759] *** Control State *** 16:07:47 executing program 5: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1363.495645] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1363.502681] EntryControls=0000d1ff ExitControls=002fefff [ 1363.513486] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1363.522518] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1363.534467] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1363.545834] reason=80000021 qualification=0000000000000000 [ 1363.557174] IDTVectoring: info=00000000 errcode=00000000 [ 1363.568215] TSC Offset = 0xfffffd23fac0cb97 [ 1363.577893] EPT pointer = 0x00000001b542c01e [ 1363.629528] *** Guest State *** [ 1363.632947] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1363.657825] *** Guest State *** [ 1363.661258] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1363.670278] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1363.679189] CR3 = 0x0000000000000000 [ 1363.682913] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1363.693365] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1363.703643] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1363.712751] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1363.719711] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.727738] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.735984] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.744984] CR3 = 0x0000000000000000 [ 1363.749336] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1363.755359] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1363.761564] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.769712] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1363.776465] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.784571] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.792711] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.800805] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1363.808876] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.816925] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.824976] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1363.833055] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.841185] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1363.849271] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.857303] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1363.864135] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.872252] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1363.879773] Interruptibility = 00000000 ActivityState = 00000000 [ 1363.879792] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.885993] *** Host State *** [ 1363.886006] RIP = 0xffffffff812048fe RSP = 0xffff8881b5797390 [ 1363.886033] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1363.910652] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1363.918760] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1363.926564] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1363.932614] CR0=0000000080050033 CR3=00000001c2038000 CR4=00000000001426e0 [ 1363.942313] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1363.950452] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1363.957129] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1363.963292] *** Control State *** [ 1363.966754] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1363.973533] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1363.981580] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1363.989784] EntryControls=0000d1ff ExitControls=002fefff [ 1363.995251] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1363.995560] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1364.002244] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1364.002259] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1364.022056] reason=80000021 qualification=0000000000000000 [ 1364.022373] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1364.031532] IDTVectoring: info=00000000 errcode=00000000 [ 1364.036273] Interruptibility = 00000000 ActivityState = 00000000 [ 1364.044179] TSC Offset = 0xfffffd23ac1f07ab [ 1364.048103] *** Host State *** [ 1364.055653] RIP = 0xffffffff812048fe RSP = 0xffff888188ec7390 [ 1364.060698] EPT pointer = 0x00000001c10d201e [ 1364.061875] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1364.072592] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1364.098844] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1364.122225] CR0=0000000080050033 CR3=00000001b4e27000 CR4=00000000001426f0 [ 1364.130056] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1364.141372] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1364.150545] *** Control State *** [ 1364.154119] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1364.161557] EntryControls=0000d1ff ExitControls=002fefff [ 1364.167061] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1364.178432] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1364.186063] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 1364.192818] reason=80000021 qualification=0000000000000000 16:07:47 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x200}, &(0x7f0000000280)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000400)={r5, 0x9, 0x0, 0x3f}, 0x10) 16:07:47 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:47 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xe80]}) [ 1364.199220] IDTVectoring: info=00000000 errcode=00000000 [ 1364.204670] TSC Offset = 0xfffffd23fac0cb97 [ 1364.209484] EPT pointer = 0x00000001b542c01e 16:07:47 executing program 5: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:47 executing program 1: r0 = creat(&(0x7f0000000040)='./file1\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) write$P9_ROPEN(r2, &(0x7f00000000c0)={0x18}, 0xff9c) write$UHID_CREATE(r2, &(0x7f0000000380)={0x0, 'syz0\x00', 'syz0\x00', 'syz0\x00', 0x0}, 0xfffffc87) fcntl$setstatus(r0, 0x4, 0x4bff) io_setup(0x1, &(0x7f00000001c0)=0x0) io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000200), 0xfffffd07}]) 16:07:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1364.339213] *** Guest State *** [ 1364.342568] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1364.351534] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1364.360434] CR3 = 0x0000000000000000 [ 1364.364153] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1364.375065] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:47 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x4888]}) 16:07:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1364.391267] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1364.398018] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.406144] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.426071] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.439430] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.447486] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.455566] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.479796] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1364.487847] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.495922] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1364.512359] *** Guest State *** [ 1364.516015] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1364.520039] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1364.525202] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1364.533329] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1364.548597] CR3 = 0x0000000000000000 [ 1364.552370] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1364.554893] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1364.566139] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1364.569461] Interruptibility = 00000000 ActivityState = 00000000 [ 1364.575815] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1364.578464] *** Host State *** [ 1364.578479] RIP = 0xffffffff812048fe RSP = 0xffff8881804ef390 [ 1364.578504] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1364.578517] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1364.578537] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1364.578553] CR0=0000000080050033 CR3=00000001c481a000 CR4=00000000001426e0 [ 1364.578569] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1364.578582] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1364.578588] *** Control State *** [ 1364.578597] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1364.578605] EntryControls=0000d1ff ExitControls=002fefff [ 1364.578619] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1364.578629] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1364.578638] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1364.578647] reason=80000021 qualification=0000000000000000 [ 1364.578654] IDTVectoring: info=00000000 errcode=00000000 [ 1364.578661] TSC Offset = 0xfffffd234f31649e [ 1364.578670] EPT pointer = 0x00000001bbc1a01e [ 1364.673350] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.709436] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.717830] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.726968] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:48 executing program 5: sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1364.754087] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.768033] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.781549] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1364.795170] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:48 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1000000000000000]}) 16:07:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1364.808757] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1364.822448] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1364.835898] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1364.849698] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1364.857246] Interruptibility = 00000000 ActivityState = 00000000 [ 1364.863800] *** Host State *** [ 1364.867158] RIP = 0xffffffff812048fe RSP = 0xffff888185647390 [ 1364.883957] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1364.899207] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1364.907165] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1364.913201] CR0=0000000080050033 CR3=00000001b5fe1000 CR4=00000000001426f0 [ 1364.933522] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1364.945336] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1364.956658] *** Control State *** [ 1364.967030] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1364.968882] *** Guest State *** [ 1364.973956] EntryControls=0000d1ff ExitControls=002fefff [ 1364.977121] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1364.977135] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1364.977142] CR3 = 0x0000000000000000 [ 1364.977150] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1364.977161] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1364.977176] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1364.977189] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.977209] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.977228] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1364.992116] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.000714] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1365.006859] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.010405] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1365.020946] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.023115] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1365.031091] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1365.031112] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.031126] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1365.031144] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1365.048894] reason=80000021 qualification=0000000000000000 [ 1365.056933] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1365.062282] IDTVectoring: info=00000000 errcode=00000000 [ 1365.092312] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1365.115700] Interruptibility = 00000000 ActivityState = 00000000 [ 1365.128200] TSC Offset = 0xfffffd2343b65f66 [ 1365.136550] *** Host State *** [ 1365.136966] EPT pointer = 0x00000001c2c3001e [ 1365.150584] RIP = 0xffffffff812048fe RSP = 0xffff8881b5797390 [ 1365.177333] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1365.190450] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1365.198279] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1365.204364] CR0=0000000080050033 CR3=00000001cb173000 CR4=00000000001426e0 [ 1365.225316] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1365.235163] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1365.246603] *** Control State *** 16:07:48 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8864000000000000]}) [ 1365.256737] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1365.263523] EntryControls=0000d1ff ExitControls=002fefff [ 1365.274045] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1365.283181] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1365.294877] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1365.306211] reason=80000021 qualification=0000000000000000 [ 1365.317361] IDTVectoring: info=00000000 errcode=00000000 [ 1365.328095] TSC Offset = 0xfffffd22f9800b03 [ 1365.337406] EPT pointer = 0x00000001bbac001e [ 1365.355886] *** Guest State *** [ 1365.373733] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1365.408973] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1365.417927] CR3 = 0x0000000000000000 [ 1365.475598] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1365.490076] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1365.496211] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1365.503370] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.512489] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.521018] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.529432] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.537531] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.546949] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.555395] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1365.564817] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.573259] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1365.581486] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1365.589542] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1365.595949] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1365.603464] Interruptibility = 00000000 ActivityState = 00000000 [ 1365.609728] *** Host State *** [ 1365.612925] RIP = 0xffffffff812048fe RSP = 0xffff8881c114f390 [ 1365.618967] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1365.625394] FSBase=00007f3537b68700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1365.633262] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1365.639184] CR0=0000000080050033 CR3=00000001b5fe1000 CR4=00000000001426e0 [ 1365.646191] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1365.652896] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1365.658985] *** Control State *** [ 1365.662439] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1365.669165] EntryControls=0000d1ff ExitControls=002fefff 16:07:49 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000200)='bbr\x00', 0x4) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:49 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:49 executing program 3: r0 = syz_open_dev$sndctrl(&(0x7f0000000100)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$FS_IOC_GETFLAGS(r0, 0xc0045540, 0x0) [ 1365.674623] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1365.681591] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1365.688261] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1365.695530] reason=80000021 qualification=0000000000000000 [ 1365.701916] IDTVectoring: info=00000000 errcode=00000000 [ 1365.707358] TSC Offset = 0xfffffd2343b65f66 [ 1365.711743] EPT pointer = 0x00000001c2c3001e 16:07:49 executing program 1: syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x201, 0x8000000100079) 16:07:49 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1300000000000000]}) [ 1365.834032] *** Guest State *** [ 1365.837412] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1365.846365] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1365.855272] CR3 = 0x0000000000000000 [ 1365.869542] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1365.875646] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:49 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000680)=0x0) getpgrp(r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = msgget(0x3, 0x2) msgctl$IPC_STAT(r5, 0x2, &(0x7f00000004c0)=""/236) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000280)={0x4, 0x2, 0xf000, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x785) prctl$PR_SVE_SET_VL(0x32, 0x2551c) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x9, 0x80) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000200)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f00000005c0)={0x2, 0x7fffffff, 0xffffffffffffffe0, 'queue0\x00', 0x6}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1365.882234] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1365.896089] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.907304] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.920728] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.934299] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.947804] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.961459] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.975047] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1365.988578] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1365.996640] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1366.004696] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1366.028720] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:49 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xf0]}) [ 1366.035230] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1366.042788] Interruptibility = 00000000 ActivityState = 00000000 [ 1366.065419] *** Host State *** [ 1366.075891] RIP = 0xffffffff812048fe RSP = 0xffff88818982f390 [ 1366.081986] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1366.091379] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1366.102129] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1366.108099] CR0=0000000080050033 CR3=00000001c694d000 CR4=00000000001426e0 [ 1366.115356] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 16:07:49 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1366.137087] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1366.148191] *** Control State *** [ 1366.158545] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1366.165320] EntryControls=0000d1ff ExitControls=002fefff [ 1366.175657] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1366.184835] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1366.196621] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1366.208043] reason=80000021 qualification=0000000000000000 [ 1366.219236] IDTVectoring: info=00000000 errcode=00000000 [ 1366.225311] TSC Offset = 0xfffffd22837b2e02 [ 1366.229984] EPT pointer = 0x00000001d8fdd01e 16:07:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:49 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:49 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1366.476961] *** Guest State *** [ 1366.480448] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1366.489369] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1366.498219] CR3 = 0x0000000000000000 [ 1366.502030] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1366.508002] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1366.518775] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:50 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x43050000]}) [ 1366.525507] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1366.538714] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1366.546723] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1366.563373] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:50 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1366.590231] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1366.604262] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1366.617811] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1366.632042] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:50 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1366.645476] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1366.659238] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1366.667234] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1366.667249] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1366.667260] Interruptibility = 00000000 ActivityState = 00000000 [ 1366.667265] *** Host State *** 16:07:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000680)=0x0) getpgrp(r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = msgget(0x3, 0x2) msgctl$IPC_STAT(r5, 0x2, &(0x7f00000004c0)=""/236) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000280)={0x4, 0x2, 0xf000, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x785) prctl$PR_SVE_SET_VL(0x32, 0x2551c) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x9, 0x80) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000200)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f00000005c0)={0x2, 0x7fffffff, 0xffffffffffffffe0, 'queue0\x00', 0x6}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1366.667278] RIP = 0xffffffff812048fe RSP = 0xffff888185967390 [ 1366.696984] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1366.709362] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1366.717370] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1366.723384] CR0=0000000080050033 CR3=00000001bb003000 CR4=00000000001426f0 16:07:50 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8848]}) [ 1366.743446] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1366.755101] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1366.776724] *** Control State *** [ 1366.780356] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1366.787026] EntryControls=0000d1ff ExitControls=002fefff [ 1366.792597] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1366.803070] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1366.814740] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1366.826070] reason=80000021 qualification=0000000000000000 [ 1366.837301] IDTVectoring: info=00000000 errcode=00000000 16:07:50 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$VIDIOC_G_AUDOUT(r0, 0x80345631, &(0x7f0000000200)) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1366.848030] TSC Offset = 0xfffffd2231fad997 [ 1366.857191] EPT pointer = 0x00000001bcbfb01e 16:07:50 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:50 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, 0x0, 0x0, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:50 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8847]}) [ 1367.150648] *** Guest State *** [ 1367.154056] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1367.163154] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1367.172144] CR3 = 0x0000000000000000 [ 1367.175949] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1367.185210] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1367.202137] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1367.209447] *** Guest State *** [ 1367.212374] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.212749] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1367.212764] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1367.212772] CR3 = 0x0000000000000000 [ 1367.212787] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1367.238770] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.244342] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1367.249898] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.259183] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1367.263973] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271751] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271772] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271791] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271809] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271828] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271847] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271862] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1367.271879] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.271892] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1367.279991] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.289084] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1367.294665] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.302564] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1367.302578] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 16:07:51 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1f4]}) [ 1367.302589] Interruptibility = 00000000 ActivityState = 00000000 [ 1367.302594] *** Host State *** [ 1367.302612] RIP = 0xffffffff812048fe RSP = 0xffff88818982f390 [ 1367.317350] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1367.322973] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1367.330464] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.336426] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1367.343333] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1367.356386] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1367.366334] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1367.367250] CR0=0000000080050033 CR3=00000001b7752000 CR4=00000000001426f0 [ 1367.379701] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1367.384697] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1367.394430] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1367.398050] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 16:07:51 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1367.410927] Interruptibility = 00000000 ActivityState = 00000000 [ 1367.415368] *** Control State *** [ 1367.426149] *** Host State *** [ 1367.443313] RIP = 0xffffffff812048fe RSP = 0xffff8881b5797390 [ 1367.451204] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1367.451212] EntryControls=0000d1ff ExitControls=002fefff [ 1367.451226] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1367.451236] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1367.451246] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1367.451254] reason=80000021 qualification=0000000000000000 [ 1367.451262] IDTVectoring: info=00000000 errcode=00000000 [ 1367.451276] TSC Offset = 0xfffffd21c57bd796 [ 1367.451286] EPT pointer = 0x00000001ce66c01e [ 1367.458028] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1367.579174] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1367.587051] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 16:07:51 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, 0x0, 0x0, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:51 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xfffffffe]}) [ 1367.604270] CR0=0000000080050033 CR3=00000001bb003000 CR4=00000000001426e0 [ 1367.627276] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1367.639329] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1367.645713] *** Control State *** [ 1367.650772] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1367.657560] EntryControls=0000d1ff ExitControls=002fefff [ 1367.667099] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1367.687550] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:51 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000680)=0x0) getpgrp(r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = msgget(0x3, 0x2) msgctl$IPC_STAT(r5, 0x2, &(0x7f00000004c0)=""/236) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000280)={0x4, 0x2, 0xf000, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x785) prctl$PR_SVE_SET_VL(0x32, 0x2551c) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x9, 0x80) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000200)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f00000005c0)={0x2, 0x7fffffff, 0xffffffffffffffe0, 'queue0\x00', 0x6}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:51 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1367.699385] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1367.706134] reason=80000021 qualification=0000000000000000 [ 1367.712599] IDTVectoring: info=00000000 errcode=00000000 [ 1367.718171] TSC Offset = 0xfffffd21d7d7cd20 [ 1367.732783] EPT pointer = 0x00000001c33c701e [ 1367.781270] *** Guest State *** [ 1367.819689] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1367.831721] *** Guest State *** [ 1367.835178] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1367.844162] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1367.853134] CR3 = 0x0000000000000000 [ 1367.856922] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1367.864023] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:51 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x6000000]}) [ 1367.875351] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1367.885325] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.896831] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.910508] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.924118] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.937873] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.950132] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1367.959427] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.967622] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1367.975963] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1367.989066] CR3 = 0x0000000000000000 [ 1367.992124] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1367.992803] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1367.992816] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1367.992833] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1367.992849] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.005578] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1368.020082] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1368.060248] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1368.067856] Interruptibility = 00000000 ActivityState = 00000000 [ 1368.074227] *** Host State *** [ 1368.077608] RIP = 0xffffffff812048fe RSP = 0xffff888185967390 [ 1368.093469] *** Guest State *** [ 1368.094143] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1368.109535] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1368.117491] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1368.124353] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1368.124808] CR0=0000000080050033 CR3=00000001d4b90000 CR4=00000000001426f0 [ 1368.148194] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1368.162156] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1368.164775] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 16:07:51 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x7000000]}) [ 1368.168508] *** Control State *** [ 1368.182384] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1368.193304] EntryControls=0000d1ff ExitControls=002fefff [ 1368.197939] CR3 = 0x0000000000000000 [ 1368.204654] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1368.213853] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1368.218612] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1368.225625] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1368.231707] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.237576] reason=80000021 qualification=0000000000000000 [ 1368.250902] IDTVectoring: info=00000000 errcode=00000000 [ 1368.256161] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1368.256431] TSC Offset = 0xfffffd21864822fb [ 1368.267114] EPT pointer = 0x00000001bfb6b01e [ 1368.292794] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.302149] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.310707] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.312834] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1368.318836] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.334286] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1368.350055] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.353872] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.364694] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1368.374244] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1368.382446] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1368.395033] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1368.402617] Interruptibility = 00000000 ActivityState = 00000000 [ 1368.409045] *** Host State *** [ 1368.412251] RIP = 0xffffffff812048fe RSP = 0xffff8881b53af390 [ 1368.419891] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1368.426417] FSBase=00007f3537b68700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1368.438769] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.446867] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1368.450995] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.453526] CR0=0000000080050033 CR3=00000001bb003000 CR4=00000000001426f0 [ 1368.464966] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.476063] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.481727] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1368.485302] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.499553] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1368.505646] *** Control State *** [ 1368.505998] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1368.509307] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1368.517737] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.524087] EntryControls=0000d1ff ExitControls=002fefff [ 1368.532463] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1368.537639] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1368.545940] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1368.552677] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1368.561289] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1368.567369] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1368.574153] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1368.580489] reason=80000021 qualification=0000000000000000 [ 1368.588270] Interruptibility = 00000000 ActivityState = 00000000 [ 1368.594420] IDTVectoring: info=00000000 errcode=00000000 [ 1368.601649] *** Host State *** [ 1368.606096] TSC Offset = 0xfffffd21d7d7cd20 [ 1368.609579] RIP = 0xffffffff812048fe RSP = 0xffff88818982f390 [ 1368.613646] EPT pointer = 0x00000001c33c701e [ 1368.619951] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1368.635809] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1368.644012] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 16:07:52 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000200)={0x2, 0x6, 0x3, 0x1000, 0x5}) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000400)={0x0, 0x9, 0x8e, 0x5, 0x2, 0x2}, &(0x7f00000004c0)=0x14) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000500)=@sack_info={r3, 0x2, 0x1b00000000000000}, 0xc) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_open_dev$swradio(&(0x7f0000000280)='/dev/swradio#\x00', 0x1, 0x2) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) 16:07:52 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, 0x0, 0x0, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:52 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x1400000000000000]}) 16:07:52 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000540)={'vcan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'team0\x00', r1}) ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000200)=0x8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000280)='gre0\x00') request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) add_key$user(&(0x7f0000000400)='user\x00', &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000500)="c18a3f4794b24d0749006438b134abfdc3446c74e9cf6c420cdb4164584adf31d4f3e00bf7f453", 0x27, r5) [ 1368.650370] CR0=0000000080050033 CR3=00000001b7752000 CR4=00000000001426e0 [ 1368.657582] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1368.665459] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1368.678104] *** Control State *** [ 1368.682574] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1368.690449] EntryControls=0000d1ff ExitControls=002fefff [ 1368.721854] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1368.788475] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 16:07:52 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x81000000]}) [ 1368.838651] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1368.846555] reason=80000021 qualification=0000000000000000 [ 1368.862039] IDTVectoring: info=00000000 errcode=00000000 [ 1368.905275] TSC Offset = 0xfffffd2153b1e421 [ 1368.921950] *** Guest State *** [ 1368.925398] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1368.934354] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1368.943363] CR3 = 0x0000000000000000 [ 1368.947193] RSP = 0x0000000000000000 RIP = 0x0000000000000000 16:07:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1368.955367] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1368.971516] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1368.981738] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1368.993194] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.006748] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.020386] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.028969] EPT pointer = 0x00000001b4ef101e [ 1369.034023] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.047601] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.061166] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1369.075031] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.088727] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1369.096805] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1369.105026] EFER = 0x0000000000000000 PAT = 0x0007040600070406 16:07:52 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x900]}) [ 1369.128938] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1369.136539] Interruptibility = 00000000 ActivityState = 00000000 [ 1369.142905] *** Host State *** [ 1369.146318] RIP = 0xffffffff812048fe RSP = 0xffff8881b732f390 [ 1369.156208] *** Guest State *** [ 1369.159915] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1369.163164] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1369.169002] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1369.184381] CR3 = 0x0000000000000000 [ 1369.188167] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1369.188283] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1369.201200] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1369.202661] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1369.217935] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 16:07:52 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1369.229776] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.231326] CR0=0000000080050033 CR3=00000001b8e7c000 CR4=00000000001426e0 [ 1369.237882] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.245066] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1369.267260] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1369.279702] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.287847] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.288574] *** Control State *** [ 1369.296159] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.299531] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1369.312668] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.314886] EntryControls=0000d1ff ExitControls=002fefff [ 1369.325494] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1369.331497] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1369.342254] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.343832] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1369.359328] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1369.362868] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:52 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1369.367466] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1369.374629] reason=80000021 qualification=0000000000000000 [ 1369.393252] IDTVectoring: info=00000000 errcode=00000000 [ 1369.398830] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1369.398882] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1369.398898] Interruptibility = 00000000 ActivityState = 00000000 [ 1369.405957] TSC Offset = 0xfffffd20e8ba1b86 [ 1369.412953] *** Host State *** [ 1369.412972] RIP = 0xffffffff812048fe RSP = 0xffff88817b8ff390 [ 1369.413149] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1369.427048] EPT pointer = 0x00000001d7df401e [ 1369.435412] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1369.453182] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1369.473825] CR0=0000000080050033 CR3=00000001c2370000 CR4=00000000001426f0 16:07:53 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xe803]}) [ 1369.483822] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1369.495934] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1369.507390] *** Control State *** [ 1369.517782] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1369.525068] EntryControls=0000d1ff ExitControls=002fefff [ 1369.535266] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1369.544356] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1369.556261] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1369.571169] reason=80000021 qualification=0000000000000000 [ 1369.577739] IDTVectoring: info=00000000 errcode=00000000 [ 1369.583350] TSC Offset = 0xfffffd20cc928937 [ 1369.587827] EPT pointer = 0x00000001b7c9e01e 16:07:53 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x12) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x2, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000400)={0x34, 0x0, &(0x7f0000000280)}) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) setsockopt$inet6_dccp_buf(r0, 0x21, 0x2, &(0x7f0000000200)="2c6d7c5a2a98a91e91f4545bf1318468641a24359486adb6d80e666b27279b5823f8666a9765f2f142767855cb83b51b103109aeec", 0x35) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1369.689174] *** Guest State *** [ 1369.692667] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1369.701892] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1369.711019] CR3 = 0x0000000000000000 [ 1369.714857] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1369.724584] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1369.750855] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1369.752821] *** Guest State *** [ 1369.757589] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.765608] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1369.769015] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.769035] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.769053] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.769080] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.769100] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.769113] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1369.769131] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1369.769145] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1369.769164] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 16:07:53 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8906]}) [ 1369.769175] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1369.769187] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1369.769197] Interruptibility = 00000000 ActivityState = 00000000 [ 1369.769203] *** Host State *** [ 1369.769216] RIP = 0xffffffff812048fe RSP = 0xffff88817b8ff390 [ 1369.769243] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1369.778158] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1369.786088] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1369.786101] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1369.786117] CR0=0000000080050033 CR3=00000001c2370000 CR4=00000000001426e0 [ 1369.786133] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1369.786145] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1369.786150] *** Control State *** [ 1369.786158] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1369.786165] EntryControls=0000d1ff ExitControls=002fefff 16:07:53 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:53 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000004c0)={0x9, 0x6, 0x1d, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x20000) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) syz_kvm_setup_cpu$x86(r0, r0, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000200)="b800068ed8dbe166660f79de640f3809070f015d800f019e002066b92d0800000f322e0f01cb0fc76e032e0f01c8", 0x2e}], 0x1, 0x60, &(0x7f0000000400), 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000400)={0x9f6, 0x7}) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:53 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1369.786179] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1369.786188] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1369.786198] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1369.786206] reason=80000021 qualification=0000000000000000 [ 1369.786214] IDTVectoring: info=00000000 errcode=00000000 [ 1369.786220] TSC Offset = 0xfffffd20776460c2 [ 1369.786231] EPT pointer = 0x00000001bc50c01e [ 1369.799419] CR3 = 0x0000000000000000 [ 1369.812725] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1369.916578] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1369.968600] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1370.015435] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.053142] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.066157] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.080445] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.094274] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.107974] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.121651] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1370.135134] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.148931] IDTR: limit=0x00000000, base=0x0000000060000011 16:07:53 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x5]}) [ 1370.157150] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1370.168455] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1370.175047] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1370.189855] Interruptibility = 00000000 ActivityState = 00000000 [ 1370.196348] *** Host State *** [ 1370.213171] RIP = 0xffffffff812048fe RSP = 0xffff8881c114f390 [ 1370.229362] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1370.236116] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1370.244178] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 16:07:53 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = semget(0x3, 0x7, 0x140) semctl$SEM_INFO(r0, 0x7, 0x13, &(0x7f0000000500)=""/213) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000200)=@assoc_value={0x0}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000400)={r3, 0x2}, &(0x7f00000004c0)=0x8) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1370.264076] CR0=0000000080050033 CR3=00000001d0cba000 CR4=00000000001426f0 [ 1370.270890] *** Guest State *** [ 1370.273521] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1370.274445] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1370.286060] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1370.290049] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1370.290068] CR3 = 0x0000000000000000 [ 1370.298693] *** Control State *** [ 1370.305041] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1370.308745] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1370.308757] EntryControls=0000d1ff ExitControls=002fefff [ 1370.328180] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1370.330807] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1370.338650] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1370.343434] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1370.350148] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:53 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1370.358968] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1370.367704] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.390917] reason=80000021 qualification=0000000000000000 [ 1370.392157] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.397476] IDTVectoring: info=00000000 errcode=00000000 16:07:54 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$KDENABIO(r0, 0x4b36) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1370.397484] TSC Offset = 0xfffffd20850d6a9b [ 1370.397494] EPT pointer = 0x00000001bd51401e [ 1370.405557] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.405575] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.405597] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:54 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x608]}) [ 1370.471386] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1370.484776] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.498315] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1370.513973] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1370.522062] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1370.522076] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1370.522088] Interruptibility = 00000000 ActivityState = 00000000 [ 1370.522093] *** Host State *** [ 1370.522106] RIP = 0xffffffff812048fe RSP = 0xffff8881b2ae7390 [ 1370.522130] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1370.522144] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1370.522156] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1370.522172] CR0=0000000080050033 CR3=00000001cb173000 CR4=00000000001426e0 [ 1370.522188] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1370.522200] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1370.522210] *** Control State *** [ 1370.576684] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1370.604492] EntryControls=0000d1ff ExitControls=002fefff [ 1370.642680] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1370.651970] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1370.663809] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1370.675110] reason=80000021 qualification=0000000000000000 [ 1370.686513] IDTVectoring: info=00000000 errcode=00000000 [ 1370.697254] TSC Offset = 0xfffffd2021b035a8 [ 1370.706708] EPT pointer = 0x00000001d1e4501e 16:07:54 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:54 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x300000000000000]}) 16:07:54 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1370.809767] *** Guest State *** [ 1370.813301] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1370.822601] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1370.834578] CR3 = 0x0000000000000000 [ 1370.845222] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1370.851411] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1370.857446] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1370.864455] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.882817] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.893598] *** Guest State *** [ 1370.896206] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.896941] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1370.896972] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1370.896979] CR3 = 0x0000000000000000 [ 1370.896988] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1370.896999] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1370.897015] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1370.897029] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.897048] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.897066] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.909982] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.914034] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.924584] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.928194] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.984689] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:54 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$KDENABIO(r0, 0x4b36) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1370.986595] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1370.998450] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1371.004224] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1371.014477] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.019886] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.033966] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1371.034472] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1371.055557] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1371.058677] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1371.058689] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1371.058702] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1371.058713] Interruptibility = 00000000 ActivityState = 00000000 [ 1371.058718] *** Host State *** [ 1371.058730] RIP = 0xffffffff812048fe RSP = 0xffff8881c3be7390 [ 1371.058753] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1371.058764] FSBase=00007f6f3ad73700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1371.058776] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1371.058792] CR0=0000000080050033 CR3=00000001b312f000 CR4=00000000001426e0 [ 1371.058808] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1371.058820] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1371.058825] *** Control State *** 16:07:54 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xd000000]}) [ 1371.058835] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1371.058843] EntryControls=0000d1ff ExitControls=002fefff [ 1371.058857] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1371.058865] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1371.058875] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1371.058884] reason=80000021 qualification=0000000000000000 [ 1371.058891] IDTVectoring: info=00000000 errcode=00000000 [ 1371.058898] TSC Offset = 0xfffffd1fce79a468 [ 1371.058907] EPT pointer = 0x0000000187ffe01e 16:07:54 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$VIDIOC_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f00000004c0)={0x8001, 0xffff, [], {0x0, @reserved}}) setsockopt$inet6_opts(r0, 0x29, 0x3f, &(0x7f0000000580)=@srh={0x29, 0xa, 0x4, 0x5, 0x1ff00000000000, 0x0, 0x80000001, [@loopback, @remote, @ipv4={[], [], @rand_addr=0x1}, @mcast1, @loopback]}, 0x58) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x1, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) write$P9_RWRITE(r0, &(0x7f0000000200)={0xb, 0x77, 0x2, 0x6}, 0xb) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000280)={0x12712, 0x3, 0x5000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:54 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1371.140137] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1371.153022] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1371.209579] Interruptibility = 00000000 ActivityState = 00000000 [ 1371.246325] *** Host State *** [ 1371.256760] RIP = 0xffffffff812048fe RSP = 0xffff8881889cf390 [ 1371.262975] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1371.272482] FSBase=00007fc26188b700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1371.283218] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1371.296467] CR0=0000000080050033 CR3=00000001c686f000 CR4=00000000001426f0 [ 1371.306432] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1371.318390] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1371.324508] *** Control State *** [ 1371.327978] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1371.334763] EntryControls=0000d1ff ExitControls=002fefff 16:07:55 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x700]}) [ 1371.356906] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1371.365988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1371.377784] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1371.389057] reason=80000021 qualification=0000000000000000 [ 1371.395504] IDTVectoring: info=00000000 errcode=00000000 [ 1371.395511] TSC Offset = 0xfffffd1ff32a389e [ 1371.395522] EPT pointer = 0x00000001bc50c01e 16:07:55 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/net/pfkey\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000880)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000b00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000980)={0x108, r1, 0x900, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x428500000000000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3, 0x4}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xb7}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x10001}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3f}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team_slave_0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000840)='/proc/self/net/pfkey\x00', 0x100fff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r3 = semget$private(0x0, 0x0, 0x4) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000004c0)={{{@in6=@dev, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f0000000200)=0xe8) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r3, 0x0, 0x1, &(0x7f0000000780)={{0x10000, r4, r5, r6, r7, 0x40, 0x6}, 0x9, 0x7, 0xda}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r9, r10, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r11 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r11) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r10, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1371.498211] *** Guest State *** [ 1371.504020] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1371.513069] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1371.522192] CR3 = 0x0000000000000000 [ 1371.526094] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1371.532266] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:55 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:55 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xffffca88]}) [ 1371.548674] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1371.555547] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.563825] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.583608] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1371.597267] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.610824] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.624437] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.652217] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1371.660620] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.668793] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1371.676963] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1371.678840] *** Guest State *** [ 1371.685134] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1371.688383] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1371.688399] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1371.688405] CR3 = 0x0000000000000000 [ 1371.688413] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1371.688425] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1371.688441] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1371.688454] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.688476] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.688497] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.688514] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.688532] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.706092] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1371.720872] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.723891] Interruptibility = 00000000 ActivityState = 00000000 [ 1371.735646] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1371.738754] *** Host State *** [ 1371.748718] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1371.753402] RIP = 0xffffffff812048fe RSP = 0xffff8881ba3a7390 [ 1371.762210] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1371.768557] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1371.780630] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1371.784473] FSBase=00007fd89fa0d700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1371.803703] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1371.805728] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1371.815135] CR0=0000000080050033 CR3=00000001b95e5000 CR4=00000000001426f0 [ 1371.821143] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1371.823843] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1371.831046] Interruptibility = 00000000 ActivityState = 00000000 [ 1371.831052] *** Host State *** [ 1371.831065] RIP = 0xffffffff812048fe RSP = 0xffff888180c27390 [ 1371.831089] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1371.831103] FSBase=00007f6f3ad52700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1371.831115] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1371.831131] CR0=0000000080050033 CR3=00000001cd9fd000 CR4=00000000001426f0 [ 1371.831146] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1371.831160] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1371.831164] *** Control State *** [ 1371.831174] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1371.831182] EntryControls=0000d1ff ExitControls=002fefff [ 1371.831197] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1371.831206] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1371.831215] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1371.831223] reason=80000021 qualification=0000000000000000 [ 1371.831237] IDTVectoring: info=00000000 errcode=00000000 [ 1371.848991] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1371.867292] TSC Offset = 0xfffffd1f6284dc95 [ 1371.877173] *** Control State *** [ 1371.890313] EPT pointer = 0x00000001bf4c501e [ 1371.899666] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1371.910061] EntryControls=0000d1ff ExitControls=002fefff [ 1371.945764] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1371.970882] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1371.994967] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:55 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x9]}) 16:07:55 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r2 = getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r6 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r6) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r5, 0xae80, 0x0) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000580)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000728bd7000fddbdf250f0000003c00020008000b00010000000800040001000000080009007200000008000b000200000008ffed000200000008000bd1000a000000080005002488000008000600018000"], 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x10) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) fcntl$lock(r3, 0x0, &(0x7f0000000200)={0x2, 0x1, 0x100000000, 0xffffffffffffffff, r2}) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1372.061843] reason=80000021 qualification=0000000000000000 [ 1372.073318] IDTVectoring: info=00000000 errcode=00000000 [ 1372.084173] TSC Offset = 0xfffffd1f8e5e2612 [ 1372.093549] EPT pointer = 0x00000001b7e6c01e 16:07:55 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$KDENABIO(r0, 0x4b36) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:55 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:55 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/net/pfkey\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000880)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000b00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000980)={0x108, r1, 0x900, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x428500000000000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3, 0x4}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xb7}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x10001}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3f}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team_slave_0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000840)='/proc/self/net/pfkey\x00', 0x100fff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r3 = semget$private(0x0, 0x0, 0x4) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000004c0)={{{@in6=@dev, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f0000000200)=0xe8) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r3, 0x0, 0x1, &(0x7f0000000780)={{0x10000, r4, r5, r6, r7, 0x40, 0x6}, 0x9, 0x7, 0xda}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r9, r10, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r11 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r11) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r10, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:55 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x5000000]}) [ 1372.451547] *** Guest State *** [ 1372.455135] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1372.464737] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1372.473910] CR3 = 0x0000000000000000 [ 1372.477682] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1372.486487] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1372.502586] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1372.512992] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.524330] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.538240] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.560168] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.568311] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.576676] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.585345] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1372.605913] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.616796] *** Guest State *** [ 1372.620386] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1372.620413] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1372.620484] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1372.629453] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1372.648933] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1372.661168] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1372.663127] CR3 = 0x0000000000000000 [ 1372.681134] Interruptibility = 00000000 ActivityState = 00000000 [ 1372.687483] *** Host State *** [ 1372.687581] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1372.696994] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:56 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8864]}) [ 1372.697109] RIP = 0xffffffff812048fe RSP = 0xffff8881b732f390 [ 1372.703192] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1372.709898] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1372.722485] FSBase=00007f3537baa700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1372.722639] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.741116] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1372.742525] *** Guest State *** [ 1372.747144] CR0=0000000080050033 CR3=0000000184719000 CR4=00000000001426f0 [ 1372.750668] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1372.750741] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1372.758077] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.766843] CR3 = 0x0000000000000000 [ 1372.776029] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1372.795308] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.796184] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1372.803706] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.819449] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1372.825702] *** Control State *** [ 1372.829475] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1372.836267] EntryControls=0000d1ff ExitControls=002fefff [ 1372.842045] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1372.842129] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.849263] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1372.857258] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.871527] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1372.878306] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1372.878707] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1372.885035] reason=80000021 qualification=0000000000000000 [ 1372.892006] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1372.906251] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.906282] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.906348] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1372.914406] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.930578] IDTVectoring: info=00000000 errcode=00000000 [ 1372.944562] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1372.952856] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.952985] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.953056] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.953144] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1372.961100] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1372.961114] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1372.961124] Interruptibility = 00000000 ActivityState = 00000000 [ 1372.961129] *** Host State *** [ 1372.961146] RIP = 0xffffffff812048fe RSP = 0xffff88817b8ff390 [ 1372.961218] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1372.969403] TSC Offset = 0xfffffd1f00f15fbb [ 1372.984918] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1372.987079] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1372.999715] EPT pointer = 0x00000001b6fc301e [ 1373.006062] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1373.009629] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1373.023420] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1373.026651] CR0=0000000080050033 CR3=00000001be31c000 CR4=00000000001426f0 [ 1373.034643] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1373.050717] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1373.065063] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1373.081211] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1373.085685] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1373.094517] *** Control State *** [ 1373.101222] Interruptibility = 00000000 ActivityState = 00000000 [ 1373.110699] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1373.112276] *** Host State *** [ 1373.114599] EntryControls=0000d1ff ExitControls=002fefff [ 1373.114617] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1373.114705] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1373.136913] RIP = 0xffffffff812048fe RSP = 0xffff8881b7c1f390 [ 1373.150731] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1373.163380] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1373.170160] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1373.178187] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1373.179990] reason=80000021 qualification=0000000000000000 [ 1373.184348] CR0=0000000080050033 CR3=00000001cdaf9000 CR4=00000000001426e0 [ 1373.190513] IDTVectoring: info=00000000 errcode=00000000 [ 1373.190520] TSC Offset = 0xfffffd1ef4097b68 16:07:56 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8000000]}) [ 1373.190531] EPT pointer = 0x00000001bcf9301e [ 1373.212962] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1373.238995] *** Guest State *** [ 1373.242318] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1373.251448] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1373.257580] *** Control State *** [ 1373.261173] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1373.267933] EntryControls=0000d1ff ExitControls=002fefff [ 1373.275948] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1373.296329] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1373.303080] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1373.303090] CR3 = 0x0000000000000000 [ 1373.303099] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1373.303110] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1373.303127] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1373.303140] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1373.303159] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1373.303179] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:56 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(0x0, &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1373.319565] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1373.373430] reason=80000021 qualification=0000000000000000 [ 1373.384147] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1373.392722] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1373.401380] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 16:07:57 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1373.401395] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1373.417600] IDTVectoring: info=00000000 errcode=00000000 [ 1373.423112] TSC Offset = 0xfffffd1ef8be6108 [ 1373.427449] EPT pointer = 0x00000001c699501e [ 1373.434989] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1373.443406] IDTR: limit=0x00000000, base=0x0000000060000011 16:07:57 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:57 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8100]}) [ 1373.470146] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1373.478886] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1373.486557] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1373.502543] Interruptibility = 00000000 ActivityState = 00000000 [ 1373.509407] *** Host State *** [ 1373.512618] RIP = 0xffffffff812048fe RSP = 0xffff8881c114f390 [ 1373.518943] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1373.525526] FSBase=00007f3537b89700 GSBase=ffff8881dac00000 TRBase=fffffe0000003000 [ 1373.533805] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1373.542561] CR0=0000000080050033 CR3=0000000184719000 CR4=00000000001426f0 [ 1373.550235] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1373.556926] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1373.576479] *** Control State *** [ 1373.587215] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1373.608522] EntryControls=0000d1ff ExitControls=002fefff [ 1373.615232] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1373.669672] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1373.703764] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 16:07:57 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$nfc_llcp(r2, &(0x7f0000000400)={&(0x7f00000004c0)={0x27, 0x0, 0x1, 0x3, 0x100, 0x0, "791af29a17c71564af39121e77ecf112262dabd02616d24bc4635194ad61f2fdc01185a6f497f767f0f9a89f2607f72cf40c28de04a28b5d3cda18824db652", 0x12}, 0x60, &(0x7f0000000200)=[{&(0x7f0000000540)="d72559e11ce8d16c467863e8b51fa5f6c0d8e638eacf57617714a1f928c98269fd2aed56f69c7df2124105cd36e2ba480ee10c28e13e5c33424dd366d06b9f3b51c67fc2a76cab358ce015ed63292cfc7948609af2e270b7e91a0b39aeaf976489a38e380b71f9a75d71b25fa93d6980e27a7f1219c535f67c55c6393f8214c9e7b9b8e02328745da7c394f4627d74db0af2a88d4af7dc9376bfb499a95261b021bcc684b5a4762c931751c841a7b5e74f1f374cfa933280fb3cb1c9bdd1a041f68f43bbe56ddb79e601", 0xca}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="600000000000000010010000ff00000003704f3f631a2224b7229719d2000000"], 0x20, 0x20000000}, 0x2000c010) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000640)={0x1000000000010002, 0x0, 0xf00b, 0x2000, &(0x7f0000022000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1373.719783] reason=80000021 qualification=0000000000000000 [ 1373.732005] IDTVectoring: info=00000000 errcode=00000000 [ 1373.739616] TSC Offset = 0xfffffd1f00f15fbb [ 1373.746181] EPT pointer = 0x00000001b6fc301e 16:07:57 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/self/net/pfkey\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000880)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000b00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000980)={0x108, r1, 0x900, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x428500000000000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3, 0x4}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xb7}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x10001}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3f}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team_slave_0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000840)='/proc/self/net/pfkey\x00', 0x100fff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r3 = semget$private(0x0, 0x0, 0x4) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000004c0)={{{@in6=@dev, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f0000000200)=0xe8) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r3, 0x0, 0x1, &(0x7f0000000780)={{0x10000, r4, r5, r6, r7, 0x40, 0x6}, 0x9, 0x7, 0xda}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team0\x00'}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r9, r10, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r11 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r11) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r10, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:57 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(0x0, &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:57 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x14]}) 16:07:57 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:57 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1374.037474] *** Guest State *** [ 1374.041070] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1374.050060] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1374.059408] CR3 = 0x0000000000000000 [ 1374.063223] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1374.072328] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1374.075296] *** Guest State *** [ 1374.082223] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1374.088646] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1374.091185] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1374.091192] CR3 = 0x0000000000000000 [ 1374.091201] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1374.091212] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1374.091270] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1374.097988] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.106911] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.107021] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.128951] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.132523] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.140537] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.166958] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.172959] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.190277] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.203490] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.205927] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.216392] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.230533] GDTR: limit=0x00000002, base=0x0000000000000000 16:07:57 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xffffffffffffffff]}) [ 1374.233192] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1374.241794] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.252209] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.255181] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1374.276618] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1374.283082] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1374.289145] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1374.292985] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1374.302856] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1374.307330] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1374.321737] Interruptibility = 00000000 ActivityState = 00000000 [ 1374.328145] *** Host State *** [ 1374.335830] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1374.339573] RIP = 0xffffffff812048fe RSP = 0xffff8881d78a7390 [ 1374.358936] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1374.365603] Interruptibility = 00000000 ActivityState = 00000000 [ 1374.372664] *** Host State *** [ 1374.376150] FSBase=00007fc26188b700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 16:07:57 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(0x0, &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1374.376189] RIP = 0xffffffff812048fe RSP = 0xffff8881ba3a7390 [ 1374.376213] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1374.386354] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1374.394730] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1374.399679] CR0=0000000080050033 CR3=00000001d23a1000 CR4=00000000001426e0 [ 1374.404710] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1374.412560] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1374.419441] CR0=0000000080050033 CR3=00000001ccbb5000 CR4=00000000001426f0 [ 1374.425797] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1374.431358] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1374.431371] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1374.431376] *** Control State *** [ 1374.431387] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1374.431395] EntryControls=0000d1ff ExitControls=002fefff [ 1374.431409] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1374.431418] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1374.431429] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1374.431437] reason=80000021 qualification=0000000000000000 [ 1374.431445] IDTVectoring: info=00000000 errcode=00000000 [ 1374.431451] TSC Offset = 0xfffffd1e2bbd35b4 [ 1374.431461] EPT pointer = 0x00000001bbac001e [ 1374.488698] *** Control State *** [ 1374.501076] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 16:07:58 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x900000000000000]}) [ 1374.549544] EntryControls=0000d1ff ExitControls=002fefff [ 1374.555234] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1374.564961] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1374.571854] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1374.582173] reason=80000021 qualification=0000000000000000 [ 1374.593200] IDTVectoring: info=00000000 errcode=00000000 16:07:58 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1374.593244] TSC Offset = 0xfffffd1e2bbbd989 [ 1374.603963] EPT pointer = 0x00000001b3c9f01e 16:07:58 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x221, 0x2000000006, 0x4, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000200)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f0000000400)) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$VIDIOC_S_JPEGCOMP(r0, 0x408c563e, &(0x7f00000004c0)={0xffffffffffffc5ab, 0x9, 0x2d, "6c6e391f05e6757a753aacd87e9a42b1503004caa81d02cf5909b3c4086cb9bf5451631369d7521c3de7b5aa2aa6436b89879adb4a72934f0d43a6c6", 0x34, "a8bf3baf635a93a252808c5d9992d90b61f6dd43c4b4b34fb2bbae316580a9514eccd1285206fb357232fdda6111f774d8fceb79db6e6caaad91eca4", 0x20}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x2) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:58 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:58 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', 0x0, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) [ 1374.905663] *** Guest State *** [ 1374.909252] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1374.918179] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1374.918195] CR3 = 0x0000000000000000 [ 1374.940554] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1374.946717] RFLAGS=0x00000002 DR7 = 0x0000000000000400 16:07:58 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000000)=0x49c3f0c0, 0x4) setsockopt$sock_int(r6, 0x1, 0x2a, &(0x7f0000000040)=0x9, 0x4) sendmmsg(r5, &(0x7f000000d8c0)=[{}], 0x1, 0x0) recvfrom(r6, &(0x7f0000003540)=""/68, 0x44, 0x10062, &(0x7f0000003640)=@ax25={0x3, {"9c3711aa278fef"}}, 0x7071c9) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xb) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) rt_sigaction(0xe, &(0x7f00000002c0)={&(0x7f0000000200)="8f8870854a0b4966410f72e300c4c22da68602000000f2f240df2d69000000450f01964d000000c402d50202c48265bff9c4218f583336400faac4e24daa6900", {0x1}, 0x0, &(0x7f0000000280)="c48379608900000000f51839c4a279af639941af0ff6d33e3e66e243c462c1b7710964450faa0f0f91060001001c65460fed36"}, &(0x7f00000003c0)={&(0x7f0000000300)="66400f3a425c4a00e8c4a19574ed66660fae7475e4c4015de5ffc462293d11c4c2fd229af2ffffffc44231981c92366526430500000000c46261b800d28e6ad8f219", {}, 0x0, &(0x7f0000000380)="f34680490e0e46dc21c441e8562126400f1b6500dbe0410f0fa00008000094c4c1f853d50f01fcabc4217d5b01"}, 0x8, &(0x7f0000000400)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:58 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x88480000]}) [ 1374.953192] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1374.967125] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1374.969996] *** Guest State *** [ 1374.981049] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1374.990536] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1374.999910] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.007983] CR3 = 0x0000000000000000 [ 1375.007999] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1375.011876] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.025859] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.034452] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1375.040543] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1375.047287] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.056393] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.064679] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.064698] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.064718] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.064737] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.064755] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.072923] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.085301] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1375.099286] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1375.104969] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.113046] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.131674] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1375.148140] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1375.167137] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1375.175652] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1375.184377] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1375.193972] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1375.196594] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1375.200837] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1375.214992] *** Guest State *** [ 1375.215792] Interruptibility = 00000000 ActivityState = 00000000 [ 1375.219247] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 [ 1375.234508] Interruptibility = 00000000 ActivityState = 00000000 [ 1375.234595] *** Host State *** [ 1375.240870] RIP = 0xffffffff812048fe RSP = 0xffff8881b449f390 [ 1375.240897] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1375.244121] *** Host State *** [ 1375.250291] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1375.256657] RIP = 0xffffffff812048fe RSP = 0xffff8881c9e9f390 [ 1375.261374] FSBase=00007f6f3ad73700 GSBase=ffff8881dac00000 TRBase=fffffe0000033000 [ 1375.274918] CR3 = 0x0000000000000000 [ 1375.282622] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1375.282639] CR0=0000000080050033 CR3=00000001caf46000 CR4=00000000001426f0 [ 1375.282655] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1375.282669] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1375.282673] *** Control State *** [ 1375.282683] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1375.282692] EntryControls=0000d1ff ExitControls=002fefff [ 1375.282705] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1375.282715] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1375.282725] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1375.282733] reason=80000021 qualification=0000000000000000 [ 1375.282741] IDTVectoring: info=00000000 errcode=00000000 [ 1375.282747] TSC Offset = 0xfffffd1db65542c6 [ 1375.282762] EPT pointer = 0x00000001bbac001e [ 1375.286518] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 1375.300013] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1375.314187] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1375.323317] FSBase=00007f3537baa700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1375.328458] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1375.335443] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1375.342259] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.357548] CR0=0000000080050033 CR3=00000001cb4a9000 CR4=00000000001426e0 [ 1375.373804] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 1375.376684] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.403819] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1375.404833] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.410624] *** Control State *** [ 1375.425875] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1375.425884] EntryControls=0000d1ff ExitControls=002fefff [ 1375.425903] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1375.436169] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.455789] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.458602] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1375.476816] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.477783] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1375.477793] reason=80000021 qualification=0000000000000000 [ 1375.477805] IDTVectoring: info=00000000 errcode=00000000 [ 1375.486211] GDTR: limit=0x00000002, base=0x0000000000000000 [ 1375.523339] TSC Offset = 0xfffffd1db0dde2e9 [ 1375.544390] EPT pointer = 0x00000001d0dbc01e 16:07:59 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xf0ff7f]}) [ 1375.555542] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 1375.564550] IDTR: limit=0x00000000, base=0x0000000060000011 [ 1375.591968] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1375.600240] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1375.606782] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1375.614467] Interruptibility = 00000000 ActivityState = 00000000 [ 1375.628901] *** Host State *** [ 1375.632345] RIP = 0xffffffff812048fe RSP = 0xffff8881ba3a7390 [ 1375.639433] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1375.645973] FSBase=00007fd89fa0d700 GSBase=ffff8881dad00000 TRBase=fffffe0000033000 [ 1375.654970] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 1375.670754] *** Guest State *** [ 1375.679204] CR0=0000000080050033 CR3=00000001c18c2000 CR4=00000000001426e0 [ 1375.686250] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1375.686264] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1375.686270] *** Control State *** [ 1375.686279] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 1375.686288] EntryControls=0000d1ff ExitControls=002fefff [ 1375.686303] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1375.686312] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1375.686323] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1375.686331] reason=80000021 qualification=0000000000000000 [ 1375.686340] IDTVectoring: info=00000000 errcode=00000000 [ 1375.686347] TSC Offset = 0xfffffd1d99de1bb7 [ 1375.686356] EPT pointer = 0x00000001b6cea01e 16:07:59 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:07:59 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000000)=0x49c3f0c0, 0x4) setsockopt$sock_int(r6, 0x1, 0x2a, &(0x7f0000000040)=0x9, 0x4) sendmmsg(r5, &(0x7f000000d8c0)=[{}], 0x1, 0x0) recvfrom(r6, &(0x7f0000003540)=""/68, 0x44, 0x10062, &(0x7f0000003640)=@ax25={0x3, {"9c3711aa278fef"}}, 0x7071c9) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xb) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) rt_sigaction(0xe, &(0x7f00000002c0)={&(0x7f0000000200)="8f8870854a0b4966410f72e300c4c22da68602000000f2f240df2d69000000450f01964d000000c402d50202c48265bff9c4218f583336400faac4e24daa6900", {0x1}, 0x0, &(0x7f0000000280)="c48379608900000000f51839c4a279af639941af0ff6d33e3e66e243c462c1b7710964450faa0f0f91060001001c65460fed36"}, &(0x7f00000003c0)={&(0x7f0000000300)="66400f3a425c4a00e8c4a19574ed66660fae7475e4c4015de5ffc462293d11c4c2fd229af2ffffffc44231981c92366526430500000000c46261b800d28e6ad8f219", {}, 0x0, &(0x7f0000000380)="f34680490e0e46dc21c441e8562126400f1b6500dbe0410f0fa00008000094c4c1f853d50f01fcabc4217d5b01"}, 0x8, &(0x7f0000000400)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) [ 1375.735294] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7 16:07:59 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz'}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:07:59 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x80350000]}) [ 1375.811548] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 1375.820742] CR3 = 0x0000000000000000 [ 1375.826131] RSP = 0x0000000000000f80 RIP = 0x0000000000008000 [ 1375.832339] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1375.839641] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1375.856679] CS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1375.878440] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1375.959414] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 16:07:59 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000000)=0x49c3f0c0, 0x4) setsockopt$sock_int(r6, 0x1, 0x2a, &(0x7f0000000040)=0x9, 0x4) sendmmsg(r5, &(0x7f000000d8c0)=[{}], 0x1, 0x0) recvfrom(r6, &(0x7f0000003540)=""/68, 0x44, 0x10062, &(0x7f0000003640)=@ax25={0x3, {"9c3711aa278fef"}}, 0x7071c9) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xb) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) rt_sigaction(0xe, &(0x7f00000002c0)={&(0x7f0000000200)="8f8870854a0b4966410f72e300c4c22da68602000000f2f240df2d69000000450f01964d000000c402d50202c48265bff9c4218f583336400faac4e24daa6900", {0x1}, 0x0, &(0x7f0000000280)="c48379608900000000f51839c4a279af639941af0ff6d33e3e66e243c462c1b7710964450faa0f0f91060001001c65460fed36"}, &(0x7f00000003c0)={&(0x7f0000000300)="66400f3a425c4a00e8c4a19574ed66660fae7475e4c4015de5ffc462293d11c4c2fd229af2ffffffc44231981c92366526430500000000c46261b800d28e6ad8f219", {}, 0x0, &(0x7f0000000380)="f34680490e0e46dc21c441e8562126400f1b6500dbe0410f0fa00008000094c4c1f853d50f01fcabc4217d5b01"}, 0x8, &(0x7f0000000400)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:07:59 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xfeffffff]}) [ 1376.037331] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1376.072043] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1376.109588] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 1376.127829] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1376.139596] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1376.147732] IDTR: limit=0x00000000, base=0x0000000000000000 [ 1376.155878] TR: sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000 [ 1376.164060] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1376.170630] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1376.178201] Interruptibility = 00000008 ActivityState = 00000000 [ 1376.193074] *** Host State *** [ 1376.244827] RIP = 0xffffffff812048fe RSP = 0xffff8881b35bf390 [ 1376.365752] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1376.400049] FSBase=00007f3537b68700 GSBase=ffff8881dad00000 TRBase=fffffe0000003000 [ 1481.328334] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 1481.334612] rcu: (detected by 1, t=10502 jiffies, g=206729, q=180) [ 1481.341030] rcu: All QSes seen, last rcu_preempt kthread activity 10492 (4295085283-4295074791), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 1481.353679] syz-executor3 R running task 22656 2487 24918 0x00000000 [ 1481.360877] Call Trace: [ 1481.363475] [ 1481.365700] sched_show_task.cold.84+0x2b6/0x30a [ 1481.370465] ? can_nice.part.74+0x20/0x20 [ 1481.374627] ? vprintk_default+0x28/0x30 [ 1481.378690] ? vprintk_func+0x85/0x181 [ 1481.382577] ? vprintk_func+0x85/0x181 [ 1481.386475] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 1481.391229] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 1481.395989] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.401534] print_other_cpu_stall.cold.69+0x80e/0x8db [ 1481.406812] ? print_usage_bug+0xc0/0xc0 [ 1481.410881] ? rcu_qs+0x110/0x110 [ 1481.414347] ? __lock_acquire+0x62f/0x4c20 [ 1481.418580] ? __lock_acquire+0x62f/0x4c20 [ 1481.422826] ? graph_lock+0x270/0x270 [ 1481.426631] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.432171] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.437709] ? do_trace_rcu_torture_read+0x10/0x10 [ 1481.442646] ? __this_cpu_preempt_check+0x1c/0x20 [ 1481.447491] ? rcu_preempt_need_deferred_qs+0x71/0x190 [ 1481.452773] ? __lock_is_held+0xb5/0x140 [ 1481.456837] ? __rcu_read_lock+0x90/0x90 [ 1481.460897] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.466443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.471985] ? check_preemption_disabled+0x48/0x280 [ 1481.477004] rcu_check_callbacks+0xfd7/0x13f0 [ 1481.481505] ? rcutree_dead_cpu+0x10/0x10 [ 1481.485656] ? lock_downgrade+0x900/0x900 [ 1481.489807] ? lock_release+0x910/0xa00 [ 1481.493878] ? graph_lock+0x270/0x270 [ 1481.497695] ? graph_lock+0x270/0x270 [ 1481.501496] ? graph_lock+0x270/0x270 [ 1481.505302] ? graph_lock+0x270/0x270 [ 1481.509106] ? find_held_lock+0x36/0x1c0 [ 1481.513177] ? cpuacct_account_field+0x219/0x3d0 [ 1481.517937] ? graph_lock+0x270/0x270 [ 1481.521744] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1481.527281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.532823] ? check_preemption_disabled+0x48/0x280 [ 1481.537847] ? trace_hardirqs_off+0xb8/0x310 [ 1481.542432] ? __lock_is_held+0xb5/0x140 [ 1481.546498] ? trace_hardirqs_on+0x310/0x310 [ 1481.550916] ? check_preemption_disabled+0x48/0x280 [ 1481.555942] ? raise_softirq+0x199/0x420 [ 1481.560024] ? raise_softirq_irqoff+0x2e0/0x2e0 [ 1481.564696] ? account_system_index_time+0x333/0x5d0 [ 1481.569805] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.575344] ? check_preemption_disabled+0x48/0x280 [ 1481.580363] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1481.585954] ? hrtimer_run_queues+0x9a/0x400 [ 1481.590378] ? run_local_timers+0x19b/0x230 [ 1481.594699] ? timer_clear_idle+0x90/0x90 [ 1481.598849] ? irqtime_account_process_tick.isra.6+0x35b/0x490 [ 1481.604835] ? account_process_tick+0x282/0x350 [ 1481.609510] update_process_times+0x2d/0x70 [ 1481.613835] tick_sched_handle+0x9f/0x180 [ 1481.617989] tick_sched_timer+0x45/0x130 [ 1481.622052] __hrtimer_run_queues+0x41c/0x10d0 [ 1481.626641] ? tick_sched_do_timer+0x1a0/0x1a0 [ 1481.631231] ? hrtimer_start_range_ns+0xe00/0xe00 [ 1481.636086] ? pvclock_read_flags+0x160/0x160 [ 1481.640586] ? trace_hardirqs_on+0x310/0x310 [ 1481.645005] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1481.650026] ? ktime_get_update_offsets_now+0x3b3/0x540 [ 1481.655397] ? do_timer+0x50/0x50 [ 1481.658853] ? rwlock_bug.part.2+0x90/0x90 [ 1481.663093] ? trace_hardirqs_on+0x310/0x310 [ 1481.667501] ? rcu_softirq_qs+0x20/0x20 [ 1481.671488] hrtimer_interrupt+0x313/0x780 [ 1481.675787] smp_apic_timer_interrupt+0x1a1/0x760 [ 1481.680636] ? smp_call_function_single_interrupt+0x650/0x650 [ 1481.686520] ? interrupt_entry+0xb5/0xc0 [ 1481.690582] ? trace_hardirqs_off_caller+0xbb/0x310 [ 1481.695598] ? trace_hardirqs_off_caller+0xbb/0x310 [ 1481.700616] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1481.705460] ? trace_hardirqs_on_caller+0x310/0x310 [ 1481.710477] ? trace_hardirqs_on_caller+0x310/0x310 [ 1481.715490] ? task_prio+0x50/0x50 [ 1481.719031] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.724570] ? check_preemption_disabled+0x48/0x280 [ 1481.729596] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1481.734449] apic_timer_interrupt+0xf/0x20 [ 1481.738675] [ 1481.740912] RIP: 0010:_raw_spin_unlock_irqrestore+0xaf/0xd0 [ 1481.746623] Code: b0 40 72 89 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 28 48 83 3d 38 f5 8e 01 00 74 15 48 89 df 57 9d <0f> 1f 44 00 00 eb ad e8 8c 31 1d f9 eb bb 0f 0b 0f 0b e8 aa ab e0 [ 1481.765525] RSP: 0018:ffff888180e1f528 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13 [ 1481.773234] RAX: dffffc0000000000 RBX: 0000000000000282 RCX: 1ffff110399721d4 [ 1481.780503] RDX: 1ffffffff12e4816 RSI: 0000000000000000 RDI: 0000000000000282 [ 1481.787772] RBP: ffff888180e1f538 R08: ffff8881ccb90ea0 R09: 0000000000000006 [ 1481.795048] R10: 0000000000000000 R11: ffff8881ccb90600 R12: ffff8881d21472a0 [ 1481.802327] R13: ffff888180e1f660 R14: 0000000000000000 R15: 0000000000000282 [ 1481.809641] __skb_try_recv_datagram+0x236/0x5b0 [ 1481.814410] ? __skb_try_recv_from_queue+0xa00/0xa00 [ 1481.819520] ? graph_lock+0x270/0x270 [ 1481.823326] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 1481.828577] unix_dgram_recvmsg+0x2e4/0x1b10 [ 1481.833002] ? unix_poll+0x370/0x370 [ 1481.836715] ? lock_downgrade+0x900/0x900 [ 1481.840863] ? check_preemption_disabled+0x48/0x280 [ 1481.845898] ? kasan_check_read+0x11/0x20 [ 1481.850049] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 1481.855338] ? rcu_read_unlock_special+0x370/0x370 [ 1481.860290] ? __fget+0x4d1/0x740 [ 1481.863765] ? do_futex+0x249/0x26d0 [ 1481.867485] ? perf_trace_sched_process_exec+0x860/0x860 [ 1481.872946] ? graph_lock+0x270/0x270 [ 1481.876753] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1481.882298] ? debug_lockdep_rcu_enabled+0x77/0x90 [ 1481.887231] ? aa_sk_perm+0x22b/0x8e0 [ 1481.891033] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1481.895792] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1481.901250] ? aa_af_perm+0x5a0/0x5a0 [ 1481.905052] ? fget_raw+0x20/0x20 [ 1481.908517] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 1481.913450] ? apparmor_socket_recvmsg+0x29/0x30 [ 1481.918210] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1481.923752] ? security_socket_recvmsg+0x9c/0xc0 [ 1481.928508] ? unix_poll+0x370/0x370 [ 1481.932226] sock_recvmsg+0xd0/0x110 [ 1481.935942] __sys_recvfrom+0x311/0x5d0 [ 1481.939976] ? __ia32_sys_send+0x100/0x100 [ 1481.944213] ? lock_release+0xa00/0xa00 [ 1481.948189] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1481.952946] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 1481.957527] ? retint_kernel+0x2d/0x2d [ 1481.961419] ? trace_hardirqs_on_caller+0xc0/0x310 [ 1481.966356] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 1481.971816] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1481.976577] ? retint_kernel+0x2d/0x2d [ 1481.980477] ? __x64_sys_recvfrom+0x11/0x1a0 [ 1481.984893] __x64_sys_recvfrom+0xe1/0x1a0 [ 1481.989131] do_syscall_64+0x1b9/0x820 [ 1481.993018] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 1481.998382] ? syscall_return_slowpath+0x5e0/0x5e0 [ 1482.003317] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1482.008681] ? trace_hardirqs_on_caller+0x310/0x310 [ 1482.013702] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 1482.018726] ? prepare_exit_to_usermode+0x291/0x3b0 [ 1482.023750] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1482.028602] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1482.033794] RIP: 0033:0x457659 [ 1482.036992] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1482.056240] RSP: 002b:00007fd89fa0cc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 1482.063959] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457659 [ 1482.071226] RDX: 0000000000000044 RSI: 0000000020003540 RDI: 0000000000000009 [ 1482.078493] RBP: 000000000072bf00 R08: 0000000020003640 R09: 00000000007071c9 [ 1482.085763] R10: 0000000000010062 R11: 0000000000000246 R12: 00007fd89fa0d6d4 [ 1482.093028] R13: 00000000004c3a2a R14: 00000000004d5e00 R15: 00000000ffffffff [ 1482.100323] rcu: rcu_preempt kthread starved for 10492 jiffies! g206729 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 1482.110889] rcu: RCU grace-period kthread stack dump: [ 1482.116071] rcu_preempt R running task 22464 10 2 0x80000000 [ 1482.123265] Call Trace: [ 1482.125869] __schedule+0xa41/0x21e0 [ 1482.129678] ? __sched_text_start+0x8/0x8 [ 1482.133827] ? add_timer_on+0xa20/0xa20 [ 1482.137836] ? prepare_to_swait_event+0x3af/0x850 [ 1482.142686] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1482.147786] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1482.152895] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 1482.157482] ? trace_hardirqs_on+0xbd/0x310 [ 1482.161803] ? kasan_check_read+0x11/0x20 [ 1482.165956] ? prepare_to_swait_event+0x3af/0x850 [ 1482.170803] ? trace_hardirqs_off_caller+0x310/0x310 [ 1482.175906] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1482.181010] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 1482.185604] schedule+0xef/0x370 [ 1482.188974] ? prepare_to_swait_event+0x3af/0x850 [ 1482.193817] ? __schedule+0x21e0/0x21e0 [ 1482.197804] ? __init_swait_queue_head+0x150/0x150 [ 1482.202740] ? __lockdep_init_map+0x105/0x590 [ 1482.207504] ? lockdep_init_map+0x9/0x10 [ 1482.212111] schedule_timeout+0x140/0x260 [ 1482.216262] ? usleep_range+0x1a0/0x1a0 [ 1482.220244] ? __next_timer_interrupt+0x1a0/0x1a0 [ 1482.225100] rcu_gp_fqs_loop+0x762/0xa80 [ 1482.229174] ? rcu_gp_fqs_check_wake+0x170/0x170 [ 1482.233935] ? trace_hardirqs_off_caller+0x310/0x310 [ 1482.239040] ? perf_trace_sched_process_exec+0x860/0x860 [ 1482.244491] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1482.250040] ? rcu_gp_init+0x90b/0x1260 [ 1482.254024] ? dump_blkd_tasks.isra.49+0xe0/0xe0 [ 1482.258777] ? rcu_accelerate_cbs+0x562/0xae0 [ 1482.263294] ? graph_lock+0x270/0x270 [ 1482.267101] ? graph_lock+0x270/0x270 [ 1482.270910] ? __lock_is_held+0xb5/0x140 [ 1482.275418] ? __lock_is_held+0xb5/0x140 [ 1482.279481] ? graph_lock+0x270/0x270 [ 1482.283312] ? rcu_accelerate_cbs+0x562/0xae0 [ 1482.287821] ? find_held_lock+0x36/0x1c0 [ 1482.291896] ? rcu_gp_kthread+0x8d6/0xc70 [ 1482.296050] ? _raw_spin_unlock_irq+0x27/0x80 [ 1482.300545] ? _raw_spin_unlock_irq+0x27/0x80 [ 1482.305046] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 1482.309631] ? trace_hardirqs_on+0xbd/0x310 [ 1482.313955] ? kasan_check_read+0x11/0x20 [ 1482.318104] ? trace_hardirqs_off_caller+0x310/0x310 [ 1482.323210] ? perf_trace_sched_process_exec+0x860/0x860 [ 1482.328663] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1482.334205] rcu_gp_kthread+0x341/0xc70 [ 1482.338185] ? rcu_gp_init+0x1260/0x1260 [ 1482.342250] ? mark_held_locks+0x130/0x130 [ 1482.346495] ? __schedule+0x1321/0x21e0 [ 1482.350476] ? _raw_spin_unlock_irq+0x27/0x80 [ 1482.354973] ? _raw_spin_unlock_irq+0x27/0x80 [ 1482.359472] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 1482.364063] ? trace_hardirqs_on+0xbd/0x310 [ 1482.368390] ? kasan_check_read+0x11/0x20 [ 1482.372544] ? __schedule+0x1321/0x21e0 [ 1482.376523] ? trace_hardirqs_off_caller+0x310/0x310 [ 1482.381629] ? lock_pin_lock+0x350/0x350 [ 1482.385698] ? _raw_spin_unlock_irq+0x60/0x80 [ 1482.390192] ? __schedule+0x1321/0x21e0 [ 1482.394165] ? __update_load_avg_se+0x461/0xae0 [ 1482.398845] ? __sched_text_start+0x8/0x8 [ 1482.402994] ? __sched_text_start+0x8/0x8 [ 1482.407152] ? find_held_lock+0x36/0x1c0 [ 1482.411313] ? __kthread_parkme+0xce/0x1a0 [ 1482.415554] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1482.420658] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 1482.425761] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 1482.430341] ? trace_hardirqs_on+0xbd/0x310 [ 1482.434668] ? kasan_check_read+0x11/0x20 [ 1482.438837] ? __kthread_parkme+0xce/0x1a0 [ 1482.443072] ? trace_hardirqs_off_caller+0x310/0x310 [ 1482.448176] ? __schedule+0x21e0/0x21e0 [ 1482.452159] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 1482.457261] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1482.462797] ? __kthread_parkme+0xfb/0x1a0 [ 1482.467057] ? rcu_gp_init+0x1260/0x1260 [ 1482.471116] kthread+0x35a/0x440 [ 1482.474484] ? kthread_stop+0x900/0x900 [ 1482.478458] ret_from_fork+0x3a/0x50 [ 1483.895827] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1483.918665] CR0=0000000080050033 CR3=00000001cb4a9000 CR4=00000000001426e0 [ 1483.968402] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 1484.008408] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1484.014510] *** Control State *** [ 1484.017976] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 1484.049422] EntryControls=0000d1ff ExitControls=002fefff [ 1484.054925] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1484.098399] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1484.108280] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003 [ 1484.136407] reason=80000021 qualification=0000000000000000 [ 1484.143139] IDTVectoring: info=00000000 errcode=00000000 [ 1484.158399] TSC Offset = 0xfffffd1db0dde2e9 [ 1484.162767] EPT pointer = 0x00000001b7cb301e 16:09:48 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0xaaaaaaaaaaaab8f, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r4 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r4) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:09:48 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000000)=0x49c3f0c0, 0x4) setsockopt$sock_int(r6, 0x1, 0x2a, &(0x7f0000000040)=0x9, 0x4) sendmmsg(r5, &(0x7f000000d8c0)=[{}], 0x1, 0x0) recvfrom(r6, &(0x7f0000003540)=""/68, 0x44, 0x10062, &(0x7f0000003640)=@ax25={0x3, {"9c3711aa278fef"}}, 0x7071c9) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xb) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r7 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) rt_sigaction(0xe, &(0x7f00000002c0)={&(0x7f0000000200)="8f8870854a0b4966410f72e300c4c22da68602000000f2f240df2d69000000450f01964d000000c402d50202c48265bff9c4218f583336400faac4e24daa6900", {0x1}, 0x0, &(0x7f0000000280)="c48379608900000000f51839c4a279af639941af0ff6d33e3e66e243c462c1b7710964450faa0f0f91060001001c65460fed36"}, &(0x7f00000003c0)={&(0x7f0000000300)="66400f3a425c4a00e8c4a19574ed66660fae7475e4c4015de5ffc462293d11c4c2fd229af2ffffffc44231981c92366526430500000000c46261b800d28e6ad8f219", {}, 0x0, &(0x7f0000000380)="f34680490e0e46dc21c441e8562126400f1b6500dbe0410f0fa00008000094c4c1f853d50f01fcabc4217d5b01"}, 0x8, &(0x7f0000000400)) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r7) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) 16:09:48 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x10000000]}) 16:09:48 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:09:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz'}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:09:48 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) 16:09:48 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0xd]}) 16:09:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz'}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:09:48 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x6]}) 16:09:48 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7c2, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) getpgrp(0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000002c0)={0x9, 0x6, 0x0, 0x0, 0x0, [], [], [], 0x5, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0xfffffffffffffffd) r5 = request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, r5) write$FUSE_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0xffffffffffffff3d) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0) [ 1484.969211] device bridge_slave_1 left promiscuous mode [ 1484.974762] bridge0: port 2(bridge_slave_1) entered disabled state 16:09:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = syz_open_dev$dspn(0x0, 0x0, 0x0) getpgrp(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x86, 0x24, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil}) request_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/proc/self/net/pfkey\x00', 0xfffffffffffffffb) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000200)=0x8) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[]) 16:09:48 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, &(0x7f0000000040)={0x1, 0x1, [0x0, 0x0, 0x8848000000000000]}) [ 1485.079716] device bridge_slave_0 left promiscuous mode [ 1485.085684] bridge0: port 1(bridge_slave_0) entered disabled state [ 1485.269250] team0 (unregistering): Port device team_slave_1 removed [ 1485.296937] team0 (unregistering): Port device team_slave_0 removed [ 1485.311059] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 1485.364246] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 1485.498781] bond0 (unregistering): Released all slaves [ 1486.608724] IPVS: ftp: loaded support on port[0] = 21 [ 1487.002361] IPVS: ftp: loaded support on port[0] = 21 [ 1487.050658] IPVS: ftp: loaded support on port[0] = 21 [ 1488.335655] bridge0: port 1(bridge_slave_0) entered blocking state [ 1488.343521] bridge0: port 1(bridge_slave_0) entered disabled state [ 1488.351503] device bridge_slave_0 entered promiscuous mode [ 1488.530476] bridge0: port 2(bridge_slave_1) entered blocking state [ 1488.536942] bridge0: port 2(bridge_slave_1) entered disabled state [ 1488.544742] device bridge_slave_1 entered promiscuous mode [ 1488.706512] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 1488.739323] device bridge_slave_1 left promiscuous mode [ 1488.744954] bridge0: port 2(bridge_slave_1) entered disabled state [ 1488.809198] device bridge_slave_0 left promiscuous mode [ 1488.814855] bridge0: port 1(bridge_slave_0) entered disabled state [ 1488.879679] device bridge_slave_1 left promiscuous mode [ 1488.885139] bridge0: port 2(bridge_slave_1) entered disabled state [ 1488.949068] device bridge_slave_0 left promiscuous mode [ 1488.954535] bridge0: port 1(bridge_slave_0) entered disabled state [ 1491.033397] team0 (unregistering): Port device team_slave_1 removed [ 1491.043312] team0 (unregistering): Port device team_slave_0 removed [ 1491.053518] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 1491.122505] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 1491.197966] bond0 (unregistering): Released all slaves