r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0xaaaaaaaaaaaad11, 0x10, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:56:30 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x3, 0x0) write$input_event(r0, &(0x7f0000000040)={{0x0, 0x2710}, 0x1, 0x8, 0x200}, 0x18) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x400, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:56:30 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$update(0x2, r6, &(0x7f0000000180)="1603e9bdbe837959ffef68cc6d3c45dc187f62d507bed0154c624c9a042537968605601c385079620106ae92ed7452d688b4a98baeedf88e25215eea21e9561c4a726b48e22a44c5b74677d090a00551068f5dd40856c62a1a01e435796342f139632268ae067aaea906581b7ae4c232dc77a2faa3f404c5a54a8652fb671704806b11c7c344c1192879c8b4f46e8a791d338424a2c9ef4363c9855f13595c172eca28c0bacb14b30a5a693a10b4418a64c1f77f4d3eaa84c5c1c248", 0xbc) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 660.311186] *** Guest State *** [ 660.314847] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 660.323966] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 660.333001] CR3 = 0x0000000000004000 [ 660.336773] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 660.343552] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 660.350156] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 660.356480] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 660.362658] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 660.369401] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 660.377693] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 660.385920] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 660.394183] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 660.402373] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 660.410442] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 660.418758] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 660.426968] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 660.435216] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 660.443387] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 660.451426] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 660.458138] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 660.465788] Interruptibility = 00000000 ActivityState = 00000000 [ 660.472257] *** Host State *** [ 660.475528] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a9a5f378 [ 660.482003] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 660.488541] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 660.496601] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 660.502676] CR0=0000000080050033 CR3=00000000ac73f000 CR4=00000000001426f0 [ 660.509751] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 660.516706] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 660.522957] *** Control State *** [ 660.526468] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 660.533421] EntryControls=0000d1ff ExitControls=002fefff [ 660.538932] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 660.546098] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 660.553123] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:30 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(0xffffffffffffffff, 0xc028564e, &(0x7f0000000080)={0x2, 0x1, [0x26, 0x4, 0x7, 0x9, 0x949, 0x8000, 0x0, 0x10001]}) [ 660.559761] reason=80000021 qualification=0000000000000002 [ 660.566296] IDTVectoring: info=00000000 errcode=00000000 [ 660.571933] TSC Offset = 0xfffffe98f66ed4c1 [ 660.576308] EPT pointer = 0x00000000a9b4401e 09:56:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) io_cancel(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xf, 0xff, r0, &(0x7f0000000040)="5a8d43e9232f9c602ca9b2b658a777b6cee1c1ceb1fe982be4", 0x19, 0x8, 0x0, 0x1, 0xffffffffffffff9c}, &(0x7f00000000c0)) 09:56:31 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$update(0x2, r6, &(0x7f0000000180)="1603e9bdbe837959ffef68cc6d3c45dc187f62d507bed0154c624c9a042537968605601c385079620106ae92ed7452d688b4a98baeedf88e25215eea21e9561c4a726b48e22a44c5b74677d090a00551068f5dd40856c62a1a01e435796342f139632268ae067aaea906581b7ae4c232dc77a2faa3f404c5a54a8652fb671704806b11c7c344c1192879c8b4f46e8a791d338424a2c9ef4363c9855f13595c172eca28c0bacb14b30a5a693a10b4418a64c1f77f4d3eaa84c5c1c248", 0xbc) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 09:56:31 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(0xffffffffffffffff, 0xc028564e, &(0x7f0000000080)={0x2, 0x1, [0x26, 0x4, 0x7, 0x9, 0x949, 0x8000, 0x0, 0x10001]}) 09:56:31 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1b, &(0x7f0000000080)="0a1c8395d4420ad9ef2e382000") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:31 executing program 3: r0 = memfd_create(&(0x7f0000000040)="00000600000000000000", 0x40000000000004) io_setup(0x9, &(0x7f0000000880)=0x0) ioctl$VT_WAITACTIVE(r0, 0x5607) io_submit(r1, 0x1, &(0x7f0000003fc0)=[&(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f00000008c0)}]) io_setup(0x0, &(0x7f0000000000)) syz_open_procfs(0x0, &(0x7f0000000840)='attr/prev\x00') [ 661.491019] *** Guest State *** [ 661.494764] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 661.503977] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 661.513013] CR3 = 0x0000000000004000 [ 661.516781] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 661.523583] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 661.530237] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 661.536468] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 661.542665] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 661.549392] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 661.557679] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 661.565869] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 661.574104] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 661.582345] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 661.590386] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 661.598638] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 661.606994] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 661.615235] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 661.623422] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 661.631537] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 661.638215] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 661.645997] Interruptibility = 00000000 ActivityState = 00000000 [ 661.652458] *** Host State *** [ 661.655791] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a873f378 [ 661.662052] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 661.668534] FSBase=00007f62c5af2700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 661.676695] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 661.682887] CR0=0000000080050033 CR3=00000000ba0af000 CR4=00000000001426e0 09:56:31 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(0xffffffffffffffff, 0xc028564e, &(0x7f0000000080)={0x2, 0x1, [0x26, 0x4, 0x7, 0x9, 0x949, 0x8000, 0x0, 0x10001]}) [ 661.689965] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 661.696955] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 661.703253] *** Control State *** [ 661.706775] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 661.713695] EntryControls=0000d1ff ExitControls=002fefff [ 661.719228] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 661.726448] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 661.733335] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 661.739980] reason=80000021 qualification=0000000000000002 [ 661.746550] IDTVectoring: info=00000000 errcode=00000000 [ 661.752200] TSC Offset = 0xfffffe984c8ccb16 [ 661.756616] EPT pointer = 0x00000000abb6d01e 09:56:31 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x4, 0x20000) ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f0000000040)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:32 executing program 3: r0 = socket$inet6(0xa, 0x100800000000002, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) syz_genetlink_get_family_id$nbd(&(0x7f0000000000)='nbd\x00') r1 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/ipv6_route\x00') sendfile(r0, r1, 0x0, 0x88001) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x420100, 0x0) 09:56:32 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x40000, 0x0) getsockopt$inet_tcp_buf(r0, 0x6, 0x1f, &(0x7f0000000040)=""/101, &(0x7f00000000c0)=0x65) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$VIDIOC_OVERLAY(r0, 0x4004560e, &(0x7f0000000100)=0x100000001) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 09:56:32 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$update(0x2, r6, &(0x7f0000000180)="1603e9bdbe837959ffef68cc6d3c45dc187f62d507bed0154c624c9a042537968605601c385079620106ae92ed7452d688b4a98baeedf88e25215eea21e9561c4a726b48e22a44c5b74677d090a00551068f5dd40856c62a1a01e435796342f139632268ae067aaea906581b7ae4c232dc77a2faa3f404c5a54a8652fb671704806b11c7c344c1192879c8b4f46e8a791d338424a2c9ef4363c9855f13595c172eca28c0bacb14b30a5a693a10b4418a64c1f77f4d3eaa84c5c1c248", 0xbc) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:32 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, 0x0) 09:56:32 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:32 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000012000)={0x8, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0563044000000000c6928f4f407b8ff531b5eded5fdb33ecc34e83732e260dc2179c75afd9ebd23d0edcd79cc6405978818efaf44ce35032478e87f526b250"], 0x0, 0x0, 0x0}) close(r0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000008fd0)={0x8, 0x0, &(0x7f000000dff8)=[@release={0x400c630e}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f000000dfd0)={0x4, 0x0, &(0x7f0000000080)=[@enter_looper], 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x4) ioctl$TUNSETVNETLE(r2, 0x400454dc, &(0x7f0000000180)) lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f0000000100)='y\x00', 0x2, 0x0) dup(r1) [ 662.771456] *** Guest State *** [ 662.774970] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 662.784065] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 662.793077] CR3 = 0x0000000000004000 [ 662.796948] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 662.803709] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 662.810271] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 662.816601] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 662.822794] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 662.829577] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 662.837809] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 662.846021] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 662.854242] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 662.862429] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:56:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x4) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = dup(r2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x12, 0x0, 0xfffffe2b) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:32 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x268, 0xfffffffffffffffe, 0x0, 0x96) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x4e24, 0xe2, @mcast2, 0x10001}, {0xa, 0x4e21, 0x8, @mcast2}, 0x0, [0x9, 0x6, 0x100000001, 0x2, 0x7ff, 0xe9ae, 0x1]}, 0x5c) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 662.871005] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 662.879230] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 662.887401] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 662.895573] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 662.903877] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 662.912033] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 662.918497] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 662.926226] Interruptibility = 00000000 ActivityState = 00000000 [ 662.932641] *** Host State *** [ 662.935891] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a995f378 [ 662.942062] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 662.948747] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 662.956734] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 662.963057] CR0=0000000080050033 CR3=00000000a87e5000 CR4=00000000001426f0 [ 662.970207] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 662.977119] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 662.983385] *** Control State *** [ 662.986895] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 662.993758] EntryControls=0000d1ff ExitControls=002fefff [ 662.999397] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 663.006594] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 663.013469] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 663.020101] reason=80000021 qualification=0000000000000002 [ 663.026726] IDTVectoring: info=00000000 errcode=00000000 [ 663.032423] TSC Offset = 0xfffffe979ac2c317 [ 663.036797] EPT pointer = 0x00000000a991101e 09:56:33 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, 0x0) [ 663.127265] binder: 18927:18929 tried to acquire reference to desc 0, got 1 instead [ 663.163441] binder: 18927:18932 unknown command 0 [ 663.168354] binder: 18927:18932 ioctl c0306201 20008fd0 returned -22 09:56:33 executing program 3: recvmmsg(0xffffffffffffff9c, &(0x7f00000000c0)=[{{&(0x7f0000000040)=@hci, 0x80, &(0x7f0000001740)=[{&(0x7f0000000240)=""/156, 0x9c}, {&(0x7f0000000300)=""/144, 0x90}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/210, 0xd2}, {&(0x7f0000000580)=""/242, 0xf2}, {&(0x7f0000000680)=""/190, 0xbe}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x7, &(0x7f00000017c0)=""/141, 0x8d, 0x3}}], 0x1, 0x40, &(0x7f0000001880)={0x77359400}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000001940)={{{@in6, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@remote}}, &(0x7f0000001a40)=0xe8) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000001b00)='/dev/audio\x00', 0x100, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001a80)={0x3, 0x3, &(0x7f0000001b40)=@raw=[@map={0x18, 0x3, 0x1, 0x0, r1}, @jmp={0x5, 0x100000000, 0xf, 0x9, 0x8, 0xffffffffffffffef, 0x1}, @call={0x85, 0x0, 0x0, 0x36}, @generic={0xb27, 0x7, 0x400, 0xb82, 0x101}, @alu={0x0, 0xff, 0x0, 0x6, 0x7, 0x2, 0xffffffffffffffff}], &(0x7f0000001b80)="4550d4001f91eb2f57b73224433025039c3096b20c6b439348bf689c08608537d6223e63adc0624fbae2e109359dce6922324ccc13160b68cae6430697259dd52d1f73e16adc3592d02925dffae85e9cd2398c6c67c87fb5b12602f145b484be45912966e8b7e2f66069c56dd76c1dc112013c3a6b4de999cdcdc8855aee3437dcc87580cfbe546fbbfbc0eb56d8bbbea2904a7c73c2", 0x2, 0x387, 0x0, 0x41000, 0x0, [], r0}, 0x48) 09:56:33 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$update(0x2, r6, &(0x7f0000000180)="1603e9bdbe837959ffef68cc6d3c45dc187f62d507bed0154c624c9a042537968605601c385079620106ae92ed7452d688b4a98baeedf88e25215eea21e9561c4a726b48e22a44c5b74677d090a00551068f5dd40856c62a1a01e435796342f139632268ae067aaea906581b7ae4c232dc77a2faa3f404c5a54a8652fb671704806b11c7c344c1192879c8b4f46e8a791d338424a2c9ef4363c9855f13595c172eca28c0bacb14b30a5a693a10b4418a64c1f77f4d3eaa84c5c1c248", 0xbc) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:33 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, 0x0) 09:56:34 executing program 3: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000000)=[{&(0x7f00000005c0)=""/4096, 0x1000}], 0x1, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000580)='/dev/dsp\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0], 0x5, 0x5, 0x8, 0x2}) dup2(r1, r0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x488000, 0x0) 09:56:34 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) socket$inet6(0xa, 0xa, 0x9) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) modify_ldt$write(0x1, &(0x7f0000000080)={0x2, 0x20100800, 0xa2b9acf54ddbdaf1, 0xc5, 0x0, 0x0, 0x81, 0x134e, 0x3, 0x6}, 0x10) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000100), &(0x7f0000000180)=0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x1, 0x0, 0xfffffffffffffe75) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:34 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:34 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x1, [0x26, 0x4, 0x7, 0x9, 0x949, 0x8000, 0x0, 0x10001]}) 09:56:34 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$update(0x2, r6, &(0x7f0000000180)="1603e9bdbe837959ffef68cc6d3c45dc187f62d507bed0154c624c9a042537968605601c385079620106ae92ed7452d688b4a98baeedf88e25215eea21e9561c4a726b48e22a44c5b74677d090a00551068f5dd40856c62a1a01e435796342f139632268ae067aaea906581b7ae4c232dc77a2faa3f404c5a54a8652fb671704806b11c7c344c1192879c8b4f46e8a791d338424a2c9ef4363c9855f13595c172eca28c0bacb14b30a5a693a10b4418a64c1f77f4d3eaa84c5c1c248", 0xbc) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e24}, 0x10) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x4) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = dup(r2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x12, 0x0, 0xfffffe2b) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:35 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26, 0x4, 0x7, 0x9, 0x949, 0x8000, 0x0, 0x10001]}) 09:56:35 executing program 5: r0 = dup(0xffffffffffffff9c) getpeername$netlink(r0, &(0x7f0000000000), &(0x7f0000000040)=0xc) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:56:35 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@local, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@multicast2}}, &(0x7f0000000200)=0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@loopback, @in6=@ipv4, 0x4e24, 0x6, 0x4e23, 0x1, 0xa, 0x80, 0x80, 0x7f, r4, r5}, {0x78b, 0x2, 0x74, 0x5, 0x4, 0x1000, 0x1, 0x7}, {0x0, 0x8, 0x7fff, 0xb30}, 0x4d7, 0x6e6bb5, 0x1, 0x1, 0x3, 0x2}, {{@in6, 0x4d5, 0x2b}, 0xa, @in=@local, 0x3507, 0x2, 0x2, 0x9, 0x1, 0x1, 0xfa0}}, 0xe8) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 665.471319] *** Guest State *** [ 665.475054] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 665.484206] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 665.493259] CR3 = 0x0000000000004000 [ 665.497029] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 665.503736] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 665.510278] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 665.516500] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 665.522705] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 665.529446] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 665.537630] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 665.545833] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 665.554084] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 665.562319] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:56:35 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$update(0x2, r6, &(0x7f0000000180)="1603e9bdbe837959ffef68cc6d3c45dc187f62d507bed0154c624c9a042537968605601c385079620106ae92ed7452d688b4a98baeedf88e25215eea21e9561c4a726b48e22a44c5b74677d090a00551068f5dd40856c62a1a01e435796342f139632268ae067aaea906581b7ae4c232dc77a2faa3f404c5a54a8652fb671704806b11c7c344c1192879c8b4f46e8a791d338424a2c9ef4363c9855f13595c172eca28c0bacb14b30a5a693a10b4418a64c1f77f4d3eaa84c5c1c248", 0xbc) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 665.570373] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 665.578581] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 665.586786] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 665.595087] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 665.603375] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 665.611429] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 665.618117] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 665.625773] Interruptibility = 00000000 ActivityState = 00000000 [ 665.632233] *** Host State *** [ 665.635509] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a81df378 [ 665.641548] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 665.648210] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 665.656278] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 665.662372] CR0=0000000080050033 CR3=00000000a896b000 CR4=00000000001426e0 09:56:35 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x218a9106a2342ea, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f}}, 0xfffffe92) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @loopback}, r1}}, 0x30) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x20000, 0xa2) ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000280)={0x7, 0xfb, "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"}) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r1}}, 0x10) syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x82001) close(r0) [ 665.669443] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 665.676381] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 665.682654] *** Control State *** [ 665.686169] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 665.693079] EntryControls=0000d1ff ExitControls=002fefff [ 665.698602] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 665.705828] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 665.712714] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:35 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26, 0x4, 0x7, 0x9, 0x949, 0x8000]}) [ 665.719370] reason=80000021 qualification=0000000000000002 [ 665.725959] IDTVectoring: info=00000000 errcode=00000000 [ 665.731490] TSC Offset = 0xfffffe962e27a8f4 [ 665.736067] EPT pointer = 0x00000000a82c001e 09:56:36 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26, 0x4, 0x7, 0x9, 0x949]}) 09:56:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0585605, &(0x7f0000000240)={0x0, 0x0, {0x5}}) add_key(&(0x7f0000000100)='rxrpc\x00', &(0x7f0000000140)={'syz'}, &(0x7f0000000380), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000012000/0x18000)=nil, &(0x7f00000002c0)=[@text32={0x20, &(0x7f00000003c0)="66baf80cb858889b82ef66bafc0cb807000000ef360f01d1c4c2d10ace0f350fc758213e0f72e41665d8130f2395650fc758020f01df", 0x36}], 0x1, 0x0, &(0x7f0000000400)=[@dstype3={0x7, 0x9}], 0x3d7) ioctl$VIDIOC_ENUMINPUT(0xffffffffffffffff, 0xc050561a, &(0x7f0000000300)={0x0, "08d0c2a684b61bbd6e716a305cf4299e0042b65ab0bdfe3f1e991dd1899d6acc"}) mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fuseblk\x00', 0x0, &(0x7f00000003c0)=ANY=[]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:36 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x218a9106a2342ea, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f}}, 0xfffffe92) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @loopback}, r1}}, 0x30) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x20000, 0xa2) ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000280)={0x7, 0xfb, "3346236e5bfc7652c28fa89c665436da7d515ce7a654d297ba4be6673dc3acece70d2b09f917b08f85910ccc848bc85608201fb84ee9da7c4aa4f0b3e0b03296fd52df19b76df015613b56a641188c7bbc31d1f8d69e815fcf1b03441cd6b34d7b44cfbb453194f3de11467d1e189588365b92f12496a84444175461e9a8c99598facc72cce159a181e1dbf1697909c218387701f3f6b1eeb2e7c7364d463477d00d417640d9d6fb354d9b7f71e9f7270ed7b102d798cb2db05b992020ffe813e032cb6f2b5963ac12f32dfa3b77564e5e35927e87069c844712139ba8a4c4b19c22b1a07d9e94f2e454e8d8a2d5c12e867dea12b7eb2d320ae75d"}) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r1}}, 0x10) syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x82001) close(r0) 09:56:36 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xfff, 0x20000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0xfffffffffffffffa) ioctl$SG_GET_ACCESS_COUNT(r0, 0x2289, &(0x7f0000000040)) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:36 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26, 0x4, 0x7, 0x9]}) 09:56:36 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 666.654241] *** Guest State *** [ 666.657588] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 666.666789] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 666.675779] CR3 = 0x0000000000004000 [ 666.679559] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 666.686293] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 666.692954] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 666.698976] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 666.705227] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 666.712071] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 666.720155] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 666.728424] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 666.736646] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 666.744892] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 666.753054] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 666.761085] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 666.769304] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 666.777464] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 666.785777] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 666.793968] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 666.800462] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 666.808160] Interruptibility = 00000000 ActivityState = 00000000 [ 666.814551] *** Host State *** [ 666.817809] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a86df378 [ 666.824009] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 666.830488] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 666.838512] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 666.844569] CR0=0000000080050033 CR3=00000000a896b000 CR4=00000000001426f0 [ 666.851847] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 666.858569] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 666.865340] *** Control State *** [ 666.868849] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 666.875724] EntryControls=0000d1ff ExitControls=002fefff [ 666.881227] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 666.888365] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 666.895222] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 666.902072] reason=80000021 qualification=0000000000000002 [ 666.908470] IDTVectoring: info=00000000 errcode=00000000 [ 666.914200] TSC Offset = 0xfffffe95a5e7920d [ 666.918573] EPT pointer = 0x00000000a875301e 09:56:37 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008914, &(0x7f0000000040)="0a5c2d051ef8395c38ee6752a93793e77bd03283f98070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x9, 0x3, 0xcda, 0x7fffffff, 0x3f}) r4 = msgget$private(0x0, 0x14) msgctl$MSG_STAT(r4, 0xb, &(0x7f0000000380)=""/4096) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:37 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26, 0x4, 0x7]}) 09:56:37 executing program 3: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x7fc, 0x0) syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x7, 0x80) 09:56:37 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000400)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-generic\x00'}, 0x58) r1 = accept(r0, 0x0, &(0x7f0000000000)) sendmsg$alg(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="fc43", 0x2}], 0x1, &(0x7f0000003640)}, 0x0) 09:56:37 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e22, 0x3, @remote, 0x3ff}}, 0x1ff, 0xfffffffffffffff8, 0xffffffffffffff81, 0x6, 0x12}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f0000000140)={r5, @in={{0x2, 0x4e24, @remote}}, 0x47, 0x7fff}, &(0x7f0000000200)=0x90) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:37 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:37 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26, 0x4]}) 09:56:37 executing program 3: socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=""/4096, 0x1000}, 0x0) sendmsg(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000001000000010000000300000004000000"], 0x18}, 0x0) 09:56:37 executing program 4: r0 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x51, r0, 0x0) r1 = socket$inet6(0xa, 0x200000000000001, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000080)={'lo\x00', {0x2, 0x0, @multicast1}}) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000180)=0x40) setsockopt$inet_buf(r1, 0x0, 0x100000040, &(0x7f0000000040), 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)) 09:56:38 executing program 4: r0 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x51, r0, 0x0) r1 = socket$inet6(0xa, 0x200000000000001, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000080)={'lo\x00', {0x2, 0x0, @multicast1}}) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000180)=0x40) setsockopt$inet_buf(r1, 0x0, 0x100000040, &(0x7f0000000040), 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)) 09:56:38 executing program 5: socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fsync(r0) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x2, 0x2000}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x400, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x7, 0x10200) ioctl$KVM_SET_SIGNAL_MASK(r5, 0x4004ae8b, &(0x7f0000000380)=ANY=[@ANYBLOB="ed00000080a4216bc1e41ce603aabcc1255c515806cba8a59e5ecf97426f3dc21526ddb9898b9149a73ccb74e8902a8b478625105b49273e33ddd121130ccdcfa121cdd35dce97477849c825cc6ea07aea33a1b05da3cd0c38124e6b8e17f26a4e1d05f1af426c3d66b45fddb1a8eadc6e25525b7a70ef4b651687d43ef44c5b19ef91df861e20ef5b609ff46a3fb0b335512c0f65db404ca05aa14a89a22359c7e8c406497ba6cc4dc813a8d8cd879a0f1598fab8a7575b3bb40f6b106622f63f73fef6684f4fd3fb574cf649303c32869de0bb04a1770000000000000000000000"]) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r5, 0x84, 0x6c, &(0x7f0000000040)={0x0, 0x7, "6a9eb17d6f9f38"}, &(0x7f0000000080)=0xf) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f0000000100)={r6, 0x2e0a}, 0x8) r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) write$smack_current(r5, &(0x7f0000000180)='/dev/kvm\x00', 0x9) 09:56:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = memfd_create(&(0x7f0000000000)='md5sum]\x00', 0x4) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fdd000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x392) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:38 executing program 3: r0 = creat(&(0x7f000002bff8)='./file0\x00', 0x0) r1 = inotify_init1(0x0) fcntl$setstatus(r1, 0x4, 0x72109c5fef5d34d3) r2 = gettid() rt_sigprocmask(0x0, &(0x7f000003b000)={0xfffffffffffffffe}, 0x0, 0x8) fcntl$setownex(r1, 0xf, &(0x7f0000fa4000)={0x0, r2}) prlimit64(0x0, 0xb, &(0x7f000002fff0), 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x5, 0x4) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@multicast1, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast2}}, &(0x7f00000000c0)=0xe8) quotactl(0x400, &(0x7f0000000080)='./file0\x00', r5, &(0x7f00000002c0)="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") ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) inotify_add_watch(r1, &(0x7f0000ac5000)='./file0\x00', 0xa400295c) fcntl$notify(r1, 0xa, 0x8) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612) r6 = open(&(0x7f0000fa3000)='./file0\x00', 0x0, 0x0) dup2(r1, r6) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000040)={0x2, 0x1, 0x84, @empty, 'bridge0\x00'}) 09:56:38 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x26]}) 09:56:38 executing program 4: r0 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x51, r0, 0x0) r1 = socket$inet6(0xa, 0x200000000000001, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000080)={'lo\x00', {0x2, 0x0, @multicast1}}) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000180)=0x40) setsockopt$inet_buf(r1, 0x0, 0x100000040, &(0x7f0000000040), 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)) 09:56:38 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 668.898199] *** Guest State *** [ 668.901920] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 668.910813] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 668.920073] CR3 = 0x0000000000004000 [ 668.923984] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 668.930530] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 668.937266] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 668.943510] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 668.949556] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 668.956487] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 668.964638] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 668.972979] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 668.981018] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 668.989345] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 668.997762] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 669.005938] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 669.014106] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 669.022383] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 669.030428] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 669.038621] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 669.045261] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 669.053011] Interruptibility = 00000000 ActivityState = 00000000 [ 669.059314] *** Host State *** [ 669.062789] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a893f378 [ 669.068882] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 669.075643] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 669.083635] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 669.089586] CR0=0000000080050033 CR3=00000000a82a8000 CR4=00000000001426f0 [ 669.096840] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 669.103672] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 669.109771] *** Control State *** [ 669.113447] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 669.120186] EntryControls=0000d1ff ExitControls=002fefff [ 669.125885] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 669.132987] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 669.139702] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:39 executing program 4: r0 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x51, r0, 0x0) r1 = socket$inet6(0xa, 0x200000000000001, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000080)={'lo\x00', {0x2, 0x0, @multicast1}}) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000180)=0x40) setsockopt$inet_buf(r1, 0x0, 0x100000040, &(0x7f0000000040), 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)) 09:56:39 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.events\x00', 0x0, 0x0) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f00000003c0)={'team0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'team_slave_0\x00', r3}) getsockopt$packet_int(r2, 0x107, 0x1a, &(0x7f0000000040), &(0x7f0000000080)=0x4) memfd_create(&(0x7f0000000100)='/dev/sequencer\x00', 0x5) r4 = socket(0x40000000015, 0x5, 0x0) bind$inet(r4, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r4, &(0x7f0000000000), 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) recvfrom$unix(r4, &(0x7f00000006c0)=""/242, 0xf2, 0x2, &(0x7f00000007c0)=@file={0x0, './file0\x00'}, 0x705000) setsockopt$inet6_dccp_buf(r0, 0x21, 0xc2, &(0x7f0000000140)="c9db8309580bc2edaf6a18d8bad0e86c2a13e7f4ad39d187fc966e8cb31aca4010013a2e9c99f3c9228646f395092a83d1d8ae3a00ec2c16d745c824f1e706ac319ac3d9814275d4be4a372a2c902b3d", 0x50) [ 669.146572] reason=80000021 qualification=0000000000000002 [ 669.153070] IDTVectoring: info=00000000 errcode=00000000 [ 669.158593] TSC Offset = 0xfffffe9454d79046 [ 669.163182] EPT pointer = 0x00000000adbc001e 09:56:39 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r2) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:39 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:56:39 executing program 4: r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x4, 0x0) ioctl$VIDIOC_S_CROP(r0, 0x4014563c, &(0x7f0000000000)={0x1, {0x8000, 0xe45}}) 09:56:39 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:40 executing program 3: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0xa8201, 0x0) write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000180), 0x2) ioctl$VT_DISALLOCATE(r0, 0x5608) 09:56:40 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create(0x4611) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) r2 = epoll_create(0x4fe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r0, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) ioctl$VIDIOC_DQBUF(r4, 0xc0585611, &(0x7f0000000100)={0x10000, 0x2, 0x4, 0x200000, {r5, r6/1000+10000}, {0x3, 0x8, 0x9aa, 0x1000, 0x7fffffff, 0x8, "15bb2793"}, 0x3, 0x3, @userptr=0x2, 0x4}) prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c) write$P9_RSTAT(r4, &(0x7f0000000180)={0x81, 0x7d, 0x1, {0x0, 0x7a, 0x1, 0x9, {0x0, 0x1, 0x7}, 0x1000000, 0x7ff, 0x494, 0x40, 0x33, '-keyring$ppp1Oppp0\'([vmnet1+:lo+md5sum)self*user^-^', 0x2, '.]', 0xf, 'keyringuserself', 0x3, '^^]'}}, 0x81) ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000000)) fcntl$getown(r3, 0x9) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f000000dff4)) 09:56:40 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x100, 0x0) ioctl$KVM_ASSIGN_PCI_DEVICE(r0, 0x8040ae69, &(0x7f0000000040)={0x7, 0x7, 0xfffffffffffffffd, 0x2, 0x88d}) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:56:40 executing program 2 (fault-call:4 fault-nth:0): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:56:40 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) getpeername$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000040)=0x1c) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:40 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:40 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x1, 0x2) syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x1, 0x2) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0x400, 0x0) setxattr$trusted_overlay_opaque(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='trusted.overlay.opaque\x00', &(0x7f0000000380)='y\x00', 0x2, 0x3) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'team0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x2, 0x5, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xbaf6, 0x0, 0x0, 0x0, 0x1}, [@ldst={0x2, 0x1, 0x6, 0x1, 0x3, 0xffffffffffffffff, 0x18}, @alu={0x7, 0x1, 0x7, 0x4, 0x7, 0x80, 0x10}]}, &(0x7f0000000400)='syzkaller\x00', 0x7f, 0x47, &(0x7f0000000440)=""/71, 0x40f00, 0x1, [], r3, 0xb}, 0x48) setsockopt$RDS_FREE_MR(r2, 0x114, 0x3, &(0x7f00000002c0)={{0xf6e7, 0x8}, 0xc}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0xae28) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x3, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000140)={0x6, &(0x7f0000000100)=[{0x0}, {}, {}, {}, {}, {}]}) ioctl$DRM_IOCTL_DMA(r1, 0xc0406429, &(0x7f0000000280)={r6, 0x7, &(0x7f0000000180)=[0x4, 0x2, 0x5b08, 0x2a9a, 0x31a9, 0x1ff, 0xffffffffffffff80], &(0x7f00000001c0)=[0x9, 0x80], 0x31, 0xa, 0x9, &(0x7f0000000200)=[0x7, 0x400, 0xfffffffeffffffff, 0x4, 0x8001, 0x1f, 0x1, 0x7, 0x7f, 0x7], &(0x7f0000000240)=[0x8, 0x0, 0x9]}) ioctl$KVM_SET_NR_MMU_PAGES(r5, 0xae44, 0xd44) [ 670.558389] *** Guest State *** [ 670.562108] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 670.571154] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 670.580251] CR3 = 0x0000000000004000 [ 670.584186] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 670.590813] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 670.597576] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 670.603713] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 670.609748] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 670.616750] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 670.624917] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 670.633246] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 670.641312] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 670.649605] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 670.657755] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 670.665900] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 670.674045] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 670.682217] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 670.690260] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 670.698410] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 670.705002] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 670.712634] Interruptibility = 00000000 ActivityState = 00000000 [ 670.718922] *** Host State *** [ 670.722315] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a8c9f378 [ 670.728368] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 670.735013] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 670.743339] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 670.749308] CR0=0000000080050033 CR3=00000000a8d4a000 CR4=00000000001426f0 [ 670.756676] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 670.763583] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 670.769683] *** Control State *** [ 670.773356] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 670.780075] EntryControls=0000d1ff ExitControls=002fefff [ 670.785794] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 670.792911] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 670.799623] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:40 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x4001fc) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) [ 670.806445] reason=80000021 qualification=0000000000000002 [ 670.813212] IDTVectoring: info=00000000 errcode=00000000 [ 670.818728] TSC Offset = 0xfffffe9375a0475a [ 670.823314] EPT pointer = 0x00000000b337b01e 09:56:40 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) socketpair$inet_sctp(0x2, 0x0, 0x84, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getresuid(&(0x7f0000000040), &(0x7f0000000080)=0x0, &(0x7f00000000c0)) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000300)='/dev/null\x00', 0x208000, 0x0) ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f0000000340)=0x41) setsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000200)={{{@in6=@mcast2, @in=@multicast1, 0x4e22, 0x1, 0x4e22, 0xe4, 0xa, 0x80, 0x80, 0x3c, 0x0, r2}, {0x100000000, 0x7, 0x0, 0x0, 0xf8, 0x1, 0xffffffffffffffff, 0x200}, {0x0, 0xb9b, 0xc4, 0x3}, 0x7f, 0x6e6bb4, 0x0, 0x0, 0x3, 0x2}, {{@in=@local, 0x4d5, 0xff}, 0xa, @in6=@mcast2, 0x3500, 0x1, 0x0, 0x8001, 0x5, 0x7, 0x7}}, 0xe8) dup3(0xffffffffffffffff, r0, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(camellia-generic)\x00'}, 0x58) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000010000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000100)="d3abc7990d535c9e70bc111c8eff7f00", 0x10) getcwd(&(0x7f0000000380)=""/229, 0xe5) 09:56:41 executing program 3: syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0) socket$netlink(0x10, 0x3, 0x4) getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, 0x0, &(0x7f00000005c0)) sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) ftruncate(0xffffffffffffffff, 0xfffffffffffffffe) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x10, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x0, 0x0) clone(0x2102001ff7, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) keyctl$set_reqkey_keyring(0xe, 0x1) add_key(&(0x7f0000000880)="6b657972696e670036f9126c12054f5c0e18c6522573dd79f1a0a3a60957d6c729ad856cd8f0df9c04d18e57904b1c05209dee12f5ccc12d98a70037673436610faac88bcf9681918789c2ad473665984b17868d9c5e90813e9ec1f73fdebf5638f9c01f8821f1f78ebac984e3852ee10000000000000000000000", &(0x7f0000000840)={'syz'}, &(0x7f00000002c0), 0x1d3, 0xfffffffffffffffd) request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz'}, &(0x7f00000000c0)="d13ff3d776", 0x0) clone(0x0, &(0x7f0000000400)="feed46f7e43449b4ede22e2c4bf8b11fd4fd223e7569e0", 0x0, 0x0, &(0x7f0000000640)) getpeername$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x5ee1, 0x40000) setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000100)=0x1, 0x4) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000200)={0x3, 'ip_vti0\x00'}, 0x18) 09:56:41 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x800, 0x0) ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000100)={0x3ff}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000300)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f00000001c0)) 09:56:41 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x4, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000280)='net/udp\x00') ioctl$KVM_ASSIGN_SET_MSIX_NR(r2, 0x4008ae73, &(0x7f0000000000)={0x9}) ioctl$LOOP_SET_FD(r0, 0x4c00, r2) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) 09:56:41 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 671.597415] Unknown ioctl -1073195492 [ 671.658283] Unknown ioctl -1073195492 09:56:41 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:41 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0xfffffffffffffff9) syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x20, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f0000000080)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 09:56:42 executing program 4: r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000200)='/dev/video37\x00', 0x2, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000040)={0x2, @sdr}) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x40, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000140)={0x0, 0xb8f2}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000001c0)={r2, 0x1000, 0x1, [0x5]}, 0xa) 09:56:42 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x3) r1 = socket(0xa, 0x2, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000080)={'veth0\x00', {0x2, 0x4e21}}) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, &(0x7f0000000040), &(0x7f0000000780)=ANY=[@ANYBLOB="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"]}, 0x321) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000000)=0xfff, 0xfffffffffffffdf9) 09:56:42 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x1000000000400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000040)=0x0) r3 = getpgrp(0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000280)='/dev/audio\x00', 0x200000, 0x0) kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r1, &(0x7f00000001c0)={r4, r0}) [ 672.424214] kernel msg: ebtables bug: please report to author: Wrong len argument 09:56:42 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000040)='W', 0x1}]) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 672.572949] kernel msg: ebtables bug: please report to author: Wrong len argument 09:56:42 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xfffffffffffffdf9, 0x2000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x10000800400203) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_EMULATED_HOST(r0, 0x2203, &(0x7f00000000c0)) openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x10080, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) fchdir(r1) 09:56:42 executing program 1: socket$inet6(0xa, 0x4, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = request_key(&(0x7f0000000180)='ceph\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)='/dev/kvm\x00', 0xfffffffffffffffa) add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="1ed0a2288bf190177117a6ba71368c951dace9328c472c681c9a66e5440966c0ab886a4d6da1b63937f48af497eedb3e584002f1915d440e7276ccc311f61e6e81c88ba8ed5e56bfb9ba9379bb50fc75f40a10dd9ca51c1a55eff5c551a8c8349f6e5e358ab53e7a252f2499c584240e3ee364eaa6b5b2e8a9767cd0591257285670c9b38311a71c7e4c1e4dcaa120758908d4eb11632c198056edb37b54ef70dba5304af7cd921e87f6b317e798da4deca19f88373689425bc01f99f41ac18596321e6cc290558085b4ecda075316f8efcc65d1fa98cfa94977dd31e6c525e71c7a0eea5283537e9f6034e355", 0xed, r1) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socketpair$packet(0x11, 0x3, 0x300, &(0x7f00000002c0)) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4001) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:42 executing program 5: r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @remote, @dev}, &(0x7f0000000080)=0xc) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) close(r1) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000100)={r4, 0x0, 0x7, 0x3, 0x8}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:56:42 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_S_TUNER(r1, 0x4054561e, &(0x7f00000001c0)={0x8, "fb0a1e1c9a592a4c0cb7cdb5a108a4011a459cbef38e97316e0b0f364a6bfa21", 0x0, 0x20, 0xdfde, 0x1383, 0x12, 0x3, 0x3, 0x8}) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) ioctl$KVM_GET_TSC_KHZ(0xffffffffffffffff, 0xaea3) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x20100, 0x0) write$FUSE_STATFS(r2, &(0x7f0000000240)={0x60, 0x0, 0x3, {{0x6bbc, 0x8b5, 0x9, 0x8, 0x6, 0x800, 0x9, 0x1}}}, 0x60) 09:56:43 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x200000, 0x0) ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r1, 0xc0305616, &(0x7f00000000c0)={0x80000000, {0x2cb, 0x3}}) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={&(0x7f0000000000), 0xc, &(0x7f0000000680)={&(0x7f0000000100)=ANY=[@ANYBLOB="94c64857abc66b04739c8d6ceb498469a6f2dcad112725cf20c5c4bceeed2c76ec8cb88ae3f474dc7caa93fbe74ec450fda3b29734e164ba4f68a08b1ff4f2e57040e5f5816f0eb16228342bab748ee1c43c8ba81ea90287c97353d7dcbb8f581b082ce44ba6941c39836ff750c33f735379ebd3ef03cae8d0b25f7d05446447"], 0x1}}, 0x0) [ 673.308818] *** Guest State *** [ 673.312442] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 673.321348] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 673.330452] CR3 = 0x0000000000004000 [ 673.334415] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 673.341065] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 673.347841] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 673.354027] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 673.360060] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 673.366978] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 673.375210] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 673.383423] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 673.391459] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 673.399748] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 673.407968] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 673.416217] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 673.424436] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 673.432618] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 673.440672] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 673.448927] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:56:43 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000000100)=0x8004, 0x4) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x200, 0x0) sendto$inet6(r2, 0x0, 0x0, 0xfffffefffffffffe, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)="6c6f00eeff4000000000ffe300", 0x10) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$sock_int(r3, 0x1, 0x4000000000000002, &(0x7f00000000c0)=0x8, 0x4) bind$inet6(r3, &(0x7f0000ff1000)={0xa, 0x4e20}, 0x1c) sendto$inet6(r3, 0x0, 0x0, 0x20040000, &(0x7f0000f62fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) 09:56:43 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) io_submit(r1, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000040)='W', 0x1}]) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 673.455573] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 673.463316] Interruptibility = 00000000 ActivityState = 00000000 [ 673.469587] *** Host State *** [ 673.473084] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a8c9f378 [ 673.479195] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 673.485937] FSBase=00007f2795025700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 673.494019] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 673.499971] CR0=0000000080050033 CR3=00000000ab49b000 CR4=00000000001426e0 [ 673.507341] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 673.514270] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 673.520370] *** Control State *** [ 673.524121] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 673.530861] EntryControls=0000d1ff ExitControls=002fefff [ 673.536594] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 673.543720] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 673.550452] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:43 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x40, 0x0) ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f0000000200)={0x1, {0x2, 0x4e23, @local}, {0x2, 0x4e23, @loopback}, {0x2, 0x4e24, @multicast1}, 0x200, 0x36b2, 0x1fffe0000000, 0x8, 0xffffffff, &(0x7f00000001c0)='vcan0\x00', 0x9, 0x40, 0x5}) ioctl$SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000040)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000400)={{{@in, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000000500)=0xe8) ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000540)={@local, 0x3c, r3}) [ 673.557317] reason=80000021 qualification=0000000000000002 [ 673.563831] IDTVectoring: info=00000000 errcode=00000000 [ 673.569328] TSC Offset = 0xfffffe91fe36c810 [ 673.573899] EPT pointer = 0x00000000a7bbe01e 09:56:43 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000000)="00000000000000000000e3ff7f00", 0x10) lsetxattr$security_smack_transmute(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0x1) [ 673.727536] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 09:56:44 executing program 1: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=0x0) r1 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x81, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0x1, &(0x7f00000001c0)='\x00', 0xffffffffffffffff}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r0, r1, 0x0, 0x1, &(0x7f0000000180)='\x00', r2}, 0x30) socket$inet6(0xa, 0x0, 0x6) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x10000000004) ioctl$RNDCLEARPOOL(r4, 0x5206, &(0x7f0000000080)=0x4) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x80, 0x0) ioctl$sock_inet_tcp_SIOCOUTQNSD(r6, 0x894b, &(0x7f00000000c0)) ioctl$KDSKBMODE(r6, 0x4b45, &(0x7f0000000040)=0xb1) 09:56:44 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)) openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x113fffc, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 674.094355] *** Guest State *** [ 674.097893] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 674.107056] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 674.116151] CR3 = 0x0000000000004000 [ 674.119923] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 674.126685] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 674.133409] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 674.139444] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 674.145694] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 674.152579] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 674.160618] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 674.168852] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 674.177048] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 674.185329] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 674.193540] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 674.201833] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 674.209893] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 674.218191] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 674.226387] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 674.234608] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:56:44 executing program 4: r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@ipx, &(0x7f0000000080)=0x80, 0x80800) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1f}}}}, &(0x7f0000000180)=0x84) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=r1, &(0x7f0000000200)=0x4) [ 674.241068] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 674.248771] Interruptibility = 00000000 ActivityState = 00000000 [ 674.255198] *** Host State *** [ 674.258456] RIP = 0xffffffff812cfa68 RSP = 0xffff8880b0cbf378 [ 674.264681] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 674.271168] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 674.279271] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 674.285332] CR0=0000000080050033 CR3=00000000ab49b000 CR4=00000000001426f0 [ 674.292490] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 674.299211] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 674.305553] *** Control State *** [ 674.309072] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 674.315929] EntryControls=0000d1ff ExitControls=002fefff [ 674.321451] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 674.328633] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 674.335663] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 09:56:44 executing program 3: r0 = epoll_create1(0x0) r1 = syz_open_dev$sndseq(&(0x7f0000f8eff3)='/dev/snd/seq\x00', 0x0, 0x20401) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000380)={0x40000004}) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000080)={0xe}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r1, 0xc08c5335, &(0x7f00000000c0)={0x1, 0x1, 0xfffffffffffffe01, 'queue1\x00', 0x7}) [ 674.342480] reason=80000021 qualification=0000000000000002 [ 674.348867] IDTVectoring: info=00000000 errcode=00000000 [ 674.354570] TSC Offset = 0xfffffe91fe365613 [ 674.358953] EPT pointer = 0x00000000a7bbe01e 09:56:44 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x1f, &(0x7f00000000c0)=0xfffffffffffffffe, 0x414) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x80000001, 0x800) ioctl$UI_SET_PHYS(r1, 0x4008556c, &(0x7f0000000040)='syz1\x00') 09:56:44 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = socket$inet(0x2, 0x80b, 0x101) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$FS_IOC_FSGETXATTR(r4, 0x801c581f, &(0x7f0000000040)={0x7a, 0x4, 0x8, 0x6, 0x8}) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x24100, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000080)=0x8001) 09:56:44 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:56:44 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) io_submit(r2, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:45 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f000000dfd0)={0x4, 0x0, &(0x7f0000000080)=[@enter_looper], 0x0, 0x0, 0x0}) r2 = dup(r1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0x1) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000440)={0x5, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="dd00000003"], 0x0, 0x0, 0x0}) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) 09:56:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) remap_file_pages(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x461, 0x42000) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000b00)={"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"}) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000480)=0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0x1, 0x0, [{0x0, 0x3, 0x0, [], 0x1ff}]}}) 09:56:45 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) llistxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)=""/138, 0x8a) 09:56:45 executing program 3: r0 = syz_open_dev$video4linux(&(0x7f00000003c0)='/dev/v4l-subdev#\x00', 0x0, 0x0) io_setup(0x5, &(0x7f0000000000)=0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x14000, 0x0) io_cancel(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x3, r0, &(0x7f0000000040)="d9a47b91a8e9ca9b01a91af11f162647cf9f2928a5ce2e2342d77494a0342d6239a7e61d182bb4154fee734bf7c5f871dc00bfbe18874badbe7c1abb1d23717b738865dc894c8d3c80dd68091156a4b2f748f3677f99c2a44f612122195f373dc46504a66c05dd4a632b244dd7e2bd13c8dd9b96a25b20e79fe2a7937ca1269b106b0efeda35befdc76cea3e498eed46c3d85dc02fc02cbe8d4be3c0a9b918a0f2a7dc6546a8e2b68560a665e0d37d163d2fe7778099e1ec", 0xb8, 0x4, 0x0, 0x0, r2}, &(0x7f0000000180)) ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000001400)={0xf0f000, 0x0, "3d3eb9ee73710d44aaa69020b92b3413549707be7c2d09afdb7a2bca43abe321"}) io_pgetevents(r1, 0x9, 0x1, &(0x7f00000001c0)=[{}], 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x8}, 0x8}) 09:56:45 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x101000) write$P9_RMKNOD(r3, &(0x7f0000000080)={0x14, 0x13, 0x1, {0x0, 0x2}}, 0x14) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:45 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x200000000000000]}) 09:56:45 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 675.967969] *** Guest State *** [ 675.971358] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 675.980590] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 675.989658] CR3 = 0x0000000000004000 [ 675.993567] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 676.000597] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 676.007331] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 676.013825] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 676.019860] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 676.026822] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 676.035026] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 676.043323] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 676.051378] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 676.059706] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 676.067912] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 676.076261] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 676.084723] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 676.092961] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 676.101023] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 676.109251] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 676.115908] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 676.123662] Interruptibility = 00000000 ActivityState = 00000000 [ 676.129936] *** Host State *** [ 676.133394] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a8cff378 [ 676.139439] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 676.146142] FSBase=00007fbb5ed7c700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 676.154293] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 676.160252] CR0=0000000080050033 CR3=00000000a7b5e000 CR4=00000000001426e0 [ 676.167533] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 676.174378] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 676.180481] *** Control State *** [ 676.184165] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 676.190865] EntryControls=0000d1ff ExitControls=002fefff [ 676.196523] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 676.203817] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 676.210543] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:46 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x7, 0x12000) ioctl$KVM_SET_XCRS(r1, 0x4188aea7, &(0x7f0000000080)={0x6, 0x100000000, [{0x0, 0x0, 0x6}, {0x8a5, 0x0, 0x80}, {0x7fffffff, 0x0, 0x101}, {0x7, 0x0, 0x5}, {0x9, 0x0, 0x6}, {0x100, 0x0, 0x101}]}) r2 = socket$inet(0x2, 0x3, 0x6) r3 = socket(0xa, 0x1, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f00000001c0)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x4, &(0x7f0000000500)={'filter\x00', 0x4}, 0x68) [ 676.217414] reason=80000021 qualification=0000000000000002 [ 676.223941] IDTVectoring: info=00000000 errcode=00000000 [ 676.229445] TSC Offset = 0xfffffe908b6d4e43 [ 676.234097] EPT pointer = 0x00000000aa98a01e 09:56:46 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000140)=0x10d060000) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$KVM_S390_UCAS_MAP(r1, 0x4018ae50, &(0x7f0000000000)={0xe0f9, 0x1f, 0x5}) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) remap_file_pages(&(0x7f0000007000/0x2000)=nil, 0x2000, 0x0, 0x1000000000000bcf, 0x0) 09:56:46 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1000, 0x0) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000040)=0x3094a34d) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:46 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000340)='bdevvmnet1++\x00', 0x1) ioctl$DRM_IOCTL_MAP_BUFS(r2, 0xc0186419, &(0x7f00000002c0)={0x1, &(0x7f00000001c0)=""/85, &(0x7f0000000100)=[{0x1, 0x53, 0x200020, &(0x7f0000000240)=""/83}]}) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r2, 0x6612) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000300)=0x9, 0x4) 09:56:46 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:46 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqsrc(r2, 0x0, 0x2000000000000004, &(0x7f0000013ff4)={@local, @rand_addr}, 0xc) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000140)=ANY=[@ANYBLOB="6e617400000000000000000000000000000000020000000000000000000000006092e839e9bc57e8021b00000005000000d8000030020000d0030000d0030000d0030000d003000000000000000845007f000000000020"], 0x1) close(r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r0, r1, 0x0) 09:56:46 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000140)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x0, 0x400, 0xffffffffffffff37}) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x40000, 0x0) ioctl$DRM_IOCTL_SET_UNIQUE(r1, 0x40106410, &(0x7f0000000080)={0x1000, &(0x7f0000000180)="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"}) [ 677.040137] QAT: Invalid ioctl 09:56:47 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$RTC_RD_TIME(r2, 0x80247009, &(0x7f0000000100)) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:56:47 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) unshare(0x8020000) semget$private(0x0, 0x6, 0x0) semop(0x0, &(0x7f0000000100)=[{0x0, 0x0, 0x1800}], 0x1) r1 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_keyring_id(0x0, r1, 0x5) semctl$IPC_RMID(0x0, 0x0, 0x0) 09:56:47 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) io_setup(0xfc, &(0x7f0000000000)=0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) io_getevents(r3, 0x2, 0x9, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f00000001c0)={r4, r5+10000000}) 09:56:47 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:47 executing program 3: r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x2) readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=""/48, 0x30}], 0x1000000000000358) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1, 0x31, 0xffffffffffffffff, 0x0) write$P9_RSYMLINK(r0, &(0x7f0000000080)={0xc105f5d16751c7ab}, 0x14) 09:56:47 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x8, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x1, 0x10000) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = msgget$private(0x0, 0x448) msgctl$IPC_INFO(r3, 0x3, &(0x7f0000000440)=""/145) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x1, 0x40000) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000180)={0x0, 0x5d, "f7d0bda49d5be77e879940fa87abd0367729d0362c1acbb9e169746c23960c364a8f7dcd2a5c176aebaf9e3a0f64afee0e961dbf3eed6a295c2d0f08916d348a2ada2b92067f37540afec09dc1c2a8d42cc92118d656aebde53cf64bee"}, &(0x7f0000000080)=0x65) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000380)={r7, @in6={{0xa, 0x4e24, 0xbfb7, @local, 0x7ff}}}, 0x84) ioctl$LOOP_CHANGE_FD(r6, 0x4c06, r5) 09:56:47 executing program 2: pipe2$9p(&(0x7f0000000200), 0x800) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='rdma.current\x00', 0x0, 0x0) getsockopt$inet_tcp_int(r1, 0x6, 0x6, &(0x7f0000000100), &(0x7f00000001c0)=0xffffffffffffffbe) 09:56:47 executing program 4: r0 = syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000001300)=""/4096) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x84800) ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f0000000080)) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000100)={0x0, 0x4, 0x4, {0x1, @raw_data="56c99e07d0dfd619603e43dc208b67be3853d644d64546a7dd2ccab9c5bdd39e6ffde796c7961fdb33dce68ea31763b4d535d6fb5c5743bc1423f7d9ffd72f5485533f609fd5ee2f41b85d4579f087922608814dd07febab20d77a68c41491da49ce0907d70ae2e802b56c3ed4673fdc2a95a22949c53c1aacb38c3748d03c8971071b16a7d00f6d7593189f069f3e2615b24274ba12fe7ac4a9169e45310fd529ab31f2d5b18b6f38e92b7e1185b0dffb26dceb21f1f0ed64a3967093246893812676343abe4d96"}}) [ 677.976229] *** Guest State *** [ 677.979794] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 677.989064] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 677.998617] CR3 = 0x0000000000004000 [ 678.002581] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 678.009248] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 678.015979] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 678.022169] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 678.028197] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 678.035153] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 678.043355] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 678.051389] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 678.059664] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 678.067857] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 678.076090] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 678.084311] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 678.092582] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 678.100647] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 678.108912] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 678.117108] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 678.123752] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 678.131280] Interruptibility = 00000000 ActivityState = 00000000 [ 678.137719] *** Host State *** [ 678.140971] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a7bef378 [ 678.147199] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 678.153817] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 678.161796] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 678.167753] CR0=0000000080050033 CR3=00000000a856a000 CR4=00000000001426e0 [ 678.174999] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 678.181921] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 678.188018] *** Control State *** [ 678.191515] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 678.198384] EntryControls=0000d1ff ExitControls=002fefff [ 678.204025] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 678.211005] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 678.217858] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:48 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:48 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x400400, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000100), &(0x7f0000000200)=0xfffffffffffffdf8) setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f00000001c0)=0x40, 0x4) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) ioctl$TUNGETFILTER(r1, 0x801054db, &(0x7f0000000240)=""/210) [ 678.224633] reason=80000021 qualification=0000000000000002 [ 678.231018] IDTVectoring: info=00000000 errcode=00000000 [ 678.236673] TSC Offset = 0xfffffe8f75f7753d [ 678.241040] EPT pointer = 0x00000000a648601e 09:56:48 executing program 4: futex(0x0, 0x80, 0x0, 0x0, 0x0, 0x0) r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}) 09:56:48 executing program 3: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x804, 0x31, 0xffffffffffffffff, 0x0) r0 = socket(0x3, 0x80005, 0x10000002) getsockopt(r0, 0x200000000114, 0x2715, 0xffffffffffffffff, &(0x7f0000000000)=0x2a5) 09:56:48 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:48 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400202) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:56:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r2, 0x400c6615, &(0x7f0000000000)) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:49 executing program 4: r0 = memfd_create(&(0x7f0000000140)="2d42d54e49c56aba707070f00884a26d003a2900bb8dacac76617d6b6e6823cb290fc8c03a9c631064eea98b4363ad899c6bdec5e936dd55a93dcd4a78aa8f7eb93061a9b2044b98933f8851f7d61da1ce8b19eaefe3abb6a52434d6fe370fe7d924ce20ab4eaec9bdd36740e127730e90f2cd72b828", 0x0) pwrite64(r0, &(0x7f0000000280)="df121e5e7398e5232a200c20e4e7fe1a9201f2e34d81acd7cae0be4af8e0cf5f79dea6f4e35cfb0241ad30b3ca891bc6fd45060a3b2328ea566f03d6bf28eff4fd5202a4689f20ad155b1cd28cbeb956ae6341fdd186556f75188ac09cc92bea6750a6180fe1174d54a71d20650c3f09ed35d3f26f18abdcdb16eba56f5dc723", 0x80, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) setxattr$system_posix_acl(&(0x7f0000000340)='./file0\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="020000000000000000000000040000050000000010000000000000000000000000000000"], 0x24, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f00000000c0)={0x3, 0x3}) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = getegid() getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000480)={{{@in6=@ipv4={[], [], @remote}, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@remote}}, &(0x7f0000000300)=0xe8) mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='fuse\x00', 0x200000, &(0x7f0000000580)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r3}, 0x2c, {'group_id', 0x3d, r4}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x200}}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0x800}}], [{@smackfshat={'smackfshat', 0x3d, '#'}}, {@fowner_gt={'fowner>', r5}}, {@smackfshat={'smackfshat', 0x3d, 'system.posix_acl_access\x00'}}, {@smackfsdef={'smackfsdef', 0x3d, '$trusted(md5sum'}}, {@obj_type={'obj_type', 0x3d, "2d42d54e49c56aba707070f00884a26d003a2900bb8dacac76617d6b6e6823cb290fc8c03a9c631064eea98b4363ad899c6bdec5e936dd55a93dcd4a78aa8f7eb93061a9b2044b98933f8851f7d61da1ce8b19eaefe3abb6a52434d6fe370fe7d924ce20ab4eaec9bdd36740e127730e90f2cd72b828"}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'trusted-GPL'}}, {@fsmagic={'fsmagic', 0x3d, 0x3}}, {@fsmagic={'fsmagic', 0x3d, 0x101}}]}}) 09:56:49 executing program 3: setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='security.selinux\x00', &(0x7f0000000880)='system_u:object_r:apt_lock_t:s0\x00', 0x20, 0x3) r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000200)=@security={'security\x00', 0xe, 0x4, 0x600, 0x1c8, 0x1c8, 0x1c8, 0x2b8, 0x0, 0x530, 0x530, 0x530, 0x530, 0x530, 0x4, &(0x7f0000000100), {[{{@ipv6={@mcast1, @remote, [0xff, 0xff000000, 0xffffffff, 0xffffffff], [0xff, 0x0, 0xff000000, 0xffffff00], 'vcan0\x00', 'bond_slave_1\x00', {}, {}, 0xff, 0x3, 0x7, 0x2}, 0x0, 0x188, 0x1c8, 0x0, {}, [@common=@srh1={0x90, 'srh\x00', 0x1, {0x6, 0x7, 0x10000, 0x7f, 0xfffffffffffffff8, @mcast2, @loopback, @mcast2, [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], [0xffffff00, 0xffffffff, 0xffffffff, 0xff000000], [0x0, 0xffffffff, 0xff0000ff, 0xffffffff], 0x400, 0x1064}}, @common=@ah={0x30, 'ah\x00', 0x0, {0x4d2, 0x4d4, 0xc5e, 0xffffffff, 0x1}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x4, 0x4, 0x7}}}, {{@uncond, 0x0, 0xc8, 0xf0}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00'}}, {{@uncond, 0x0, 0x230, 0x278, 0x0, {}, [@common=@unspec=@cluster={0x30, 'cluster\x00', 0x0, {0x5, 0x3, 0x7}}, @common=@rt={0x138, 'rt\x00', 0x0, {0x5, 0x1, 0x5, 0x5, 0x30, 0x4, [@mcast1, @empty, @remote, @local, @local, @remote, @mcast1, @dev={0xfe, 0x80, [], 0x1e}, @local, @local, @loopback, @remote, @local, @mcast2, @local, @ipv4={[], [], @multicast1}], 0x4}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'veth0_to_bond\x00', 0xffffffffffffffc1}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x660) ioctl$int_in(r0, 0x80000080045017, 0x0) ioctl$ASHMEM_GET_NAME(r0, 0x81007702, &(0x7f0000000000)=""/199) 09:56:49 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socketpair(0x1d, 0x7, 0x4, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$tun(r3, &(0x7f0000000040)={@void, @void, @eth={@empty, @broadcast, [], {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0xc, @broadcast, @mcast1, @local, @remote}}}}}, 0x42) 09:56:49 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:49 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f00000001c0)={0x3, 0x1, [0x1000, 0xffffffffffffff80, 0x9, 0x1f, 0x5, 0x7007, 0xff, 0xe5e0]}) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x20040, 0x0) write$FUSE_GETXATTR(r2, &(0x7f0000000100)={0x18, 0x0, 0x7, {0x2}}, 0x18) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:56:49 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) socket$bt_rfcomm(0x1f, 0x3, 0x3) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) timer_settime(0x0, 0x0, 0x0, 0x0) clock_nanosleep(0x2, 0x0, &(0x7f00000001c0)={0x0, 0x989680}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl(r1, 0x8, &(0x7f0000000040)="9ae9d444f1f1a55556082c8e") setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000000), 0x4) clock_nanosleep(0x2, 0x0, &(0x7f0000000140)={0x0, 0x1c9c380}, &(0x7f0000000200)) clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x1c9c380}, 0x0) [ 679.657748] can: request_module (can-proto-4) failed. 09:56:49 executing program 3: r0 = epoll_create1(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0x3}) ioctl$VIDIOC_S_AUDIO(r1, 0x40345622, &(0x7f0000000080)={0x2, "27a45439b7719ffc8fe6a08bbd09a7c1669385f846a0117fbfef66ae56b4964d", 0x1}) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x1e, 0x0, 0x64}}) epoll_pwait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0) unlinkat(r1, &(0x7f0000000040)='./file0\x00', 0x200) [ 679.940151] can: request_module (can-proto-4) failed. [ 679.948551] *** Guest State *** [ 679.952060] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 679.960988] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 679.970174] CR3 = 0x0000000000004000 [ 679.974169] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 679.980742] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 679.987475] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 679.994381] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 680.000422] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 680.007380] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 680.015629] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.023865] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 680.032094] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.040180] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.048445] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.056740] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 680.064944] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 680.073121] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 680.081215] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 680.089480] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 680.096172] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 680.104312] Interruptibility = 00000000 ActivityState = 00000000 [ 680.110592] *** Host State *** [ 680.113966] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a584f378 [ 680.120011] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 680.126617] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 680.134589] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 680.140551] CR0=0000000080050033 CR3=00000000a8d2f000 CR4=00000000001426f0 [ 680.147757] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 680.154627] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 680.160736] *** Control State *** [ 680.164385] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 680.171099] EntryControls=0000d1ff ExitControls=002fefff [ 680.177083] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 680.184272] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 09:56:50 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:50 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f00000001c0)={0x7, 0x70, 0x7, 0x3f, 0x2, 0x5, 0x0, 0xfffffffffffffff9, 0x2, 0xa, 0x3, 0x1, 0x5, 0x1, 0xff, 0x1ff, 0x94, 0x9, 0x4, 0x7, 0x8, 0x6, 0x6, 0x6, 0x3, 0x8001, 0x0, 0x62c0, 0xffffffffffffff7f, 0x1, 0x7fff, 0x3ff, 0x0, 0x617f, 0xc5, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffa, 0x9}, 0x40a0, 0x3, 0x1ac4, 0x5, 0xff, 0x7fffffff, 0x10001}, r3, 0x2, r1, 0x1) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) timer_create(0x7, &(0x7f0000000100)={0x0, 0x3e, 0x3, @thr={&(0x7f0000000240)="2d7db733ebfee8c93c84ba08840f713c0055d8f52fa6c4299ebaa40148f86a817493d7e01d546674afc2d41ea67c285f91890e17cf0aa4ed9f86fb1878c63bc311f3df6b2eb190f144d24ec20c75fa269e39d8dbef24791b017c8eaf7482954d2a65af7d4afb4f2463090e4f2dc2407973", &(0x7f00000002c0)="4a034d5d7a45e2da62b3de739a298845c773ff2e9cda51493a2ea981056e0f975ba65629fc77840e1e84a9f1a17e6cf39c3e3ff6fcde7a09da8bdbff705f5fade2c36d05de76624aa812ca75b6caeece7947f1de9cdac7c75b205a3af17b4aa584"}}, &(0x7f0000000340)) [ 680.191003] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 680.197829] reason=80000021 qualification=0000000000000002 [ 680.204337] IDTVectoring: info=00000000 errcode=00000000 [ 680.209863] TSC Offset = 0xfffffe8e65ac6fcb [ 680.214428] EPT pointer = 0x00000000af58e01e 09:56:50 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = add_key(&(0x7f0000000080)='id_resolver\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f00000003c0)="19526316e268d026c972af59c4939386eaaa4060d2eccbd4dde399796b49d6b0383dfc824365bc2f24482f09bd623fd03cf97575acb6853fe22f26c52609b0194c083f6d6564cd660b707b79354f94ac432d162a2683ba60ed1b86f99df3d6dfc71c920f0961a8ed4b6a562647cc217e1069103d214d6339f3aefecd9c872da4f6fd26d9b0b0d2755fc19612c1d0422e9b1bf01888d066339f1546a216bae6d9dac029775b97ac88b0caea508520ad0b72752962e9a38a6ff7b7e326337c4754b0673bc5b70cac86edc914202425305c720df0ae74088238a0f856f41629a005c7314394f55b91b5", 0xe8, 0xffffffffffffffff) keyctl$update(0x2, r2, 0x0, 0x0) r3 = add_key(&(0x7f0000000100)='logon\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000180)="03f7cd0108c3c37d726d4ce9c2e423cb6f76aaf669d73aeaae57558a7bb9dc1e39d5755b46bbf9e682dc13ac80df91481c1b72e710e8ca1a7284283affbab26f461b902ee7cfa33b9616ceb5a4cd8e90a1749ab571391cf9956ea512fca094bd8d345cb4ad35a0e596c35aa4794591a26a0996250261c09f4f6af23298944c3633acc454ae5a19cf1594b6b4c35b559d038ca4a881c25aee7e6cef813e62ff480b4dae4a42528f39ae44e5683d152cc5d7718852c2", 0xb5, 0xfffffffffffffffa) keyctl$reject(0x13, 0x0, 0x222, 0x187, r3) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000380)={0x3, 0xffffffff9e65d2a9}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x2, 0x800) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000040)={0x0, 0x5}) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000002c0)={0x10000, 0x1, 0x2001, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:56:50 executing program 3: mkdir(&(0x7f0000027000)='./file0\x00', 0x0) mount(&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f000001c000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x0, &(0x7f000000a000)) open$dir(&(0x7f00000000c0)='./file0/bus\x00', 0x800000088040, 0x0) mount(&(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='./file0/bus\x00', &(0x7f0000000100)='gfs2meta\x00', 0x2000, &(0x7f0000000140)='fuse\x00') r0 = syz_open_dev$vcsn(&(0x7f0000001700)='/dev/vcs#\x00', 0x6, 0x40000) ioctl$sock_proto_private(r0, 0x89ed, &(0x7f0000001740)="062452c8ddc6d488f3af5f9c354c6be30065dceb9d720dcaece74fd09e8285a12bc55cf020745d608d409cae2ec919d427cda212f0dddd9441d267c03abd62a848fdf62cb7f5e4d138628bca1be662f37f36d0e29843d8b7fb940a552d6558505a908d4c3629c87f30a1a856f911243e97ea7e263b4923d7fe460d17e933cfae13ed6c90d73b12f06fe63842435b9f191b8599b7f30c92e3808345833c3d163740e3311291f2e7355a60c4844b4fc424e029c6bca66de4e2f7f6525dc8fa0dcb902e6e6de919217a630e9567f6c14ca23c1b04a8c18a80b62306f2c3dd129961885f8a25f4261ad51f302fc1c9f4282462a05ab2b125a8dd949beb38fa9137") [ 680.828429] *** Guest State *** [ 680.832076] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 680.840985] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 680.850041] CR3 = 0x0000000000004000 [ 680.853929] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 680.860475] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 680.867713] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 680.873929] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 680.879954] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 680.886883] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 680.895072] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.903582] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 680.911776] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.919810] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.928097] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 680.936385] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 680.944700] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 680.952850] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 680.960968] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 680.969313] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 680.976091] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 680.983850] Interruptibility = 00000000 ActivityState = 00000000 [ 680.990157] *** Host State *** [ 680.993613] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a6e8f378 [ 680.999831] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 681.006480] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 681.014466] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 681.020409] CR0=0000000080050033 CR3=00000000a5ad0000 CR4=00000000001426f0 [ 681.027709] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 681.034561] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 681.040650] *** Control State *** [ 681.044395] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 681.051117] EntryControls=0000d1ff ExitControls=002fefff [ 681.056896] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 681.064037] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 681.070760] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x501080, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:51 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:51 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x4f09, 0x1) mknodat(r0, &(0x7f00000000c0)='./file0\x00', 0x102, 0xa1) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000200)='fou\x00') sendmsg$FOU_CMD_ADD(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x20, r1, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x20}}, 0x4000040) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0xfffffffffffffffb) socketpair$unix(0x1, 0x6, 0x0, &(0x7f00000001c0)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(0xffffffffffffffff, 0xc028564e, &(0x7f0000000080)) [ 681.077559] reason=80000021 qualification=0000000000000002 [ 681.084070] IDTVectoring: info=00000000 errcode=00000000 [ 681.089630] TSC Offset = 0xfffffe8df2126683 [ 681.094246] EPT pointer = 0x00000000a64a001e 09:56:51 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x4, 0x80000) ioctl$VIDIOC_TRY_DECODER_CMD(r0, 0xc0485661, &(0x7f0000000040)={0x6, 0x2, @raw_data=[0x480, 0x9, 0x392360db, 0x100000000, 0x36ca, 0x2, 0xc6dd, 0x2, 0x9, 0x6, 0x5, 0x0, 0x1, 0x4, 0x100000001, 0x4]}) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x6, 0xf, 0x1, "7f09474b6d3bca6b01a6c2d48ffbf8f8f6619645c85c9924f6a7abc18a73cce3", 0x59565955}) ioctl$VIDIOC_DBG_G_CHIP_INFO(r0, 0xc0c85666, &(0x7f0000000100)={{0x3, @addr=0x4}, "20a25ada61c65497f2cf8ca8cc885745e50e4ab0a947630a66c5823f30153401"}) ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f0000000200)) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000280)='team\x00') getsockname$packet(r0, &(0x7f00000002c0)={0x11, 0x0, 0x0}, &(0x7f0000000300)=0x14) getsockname$packet(r0, &(0x7f0000000340)={0x11, 0x0, 0x0}, &(0x7f0000000380)=0x14) getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000440)={@loopback, @multicast2, 0x0}, &(0x7f0000000480)=0xc) getpeername$packet(r0, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000500)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000540)={'team0\x00', 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000640)={{{@in, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@dev}}, &(0x7f0000000740)=0xe8) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000001f40)={0x0, @multicast2}, &(0x7f0000001f80)=0xc) getsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000001fc0)={@loopback, 0x0}, &(0x7f0000002000)=0x14) recvmmsg(r0, &(0x7f0000008900)=[{{&(0x7f00000022c0)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f0000002680)=[{&(0x7f0000002340)=""/105, 0x69}, {&(0x7f00000023c0)=""/11, 0xb}, {&(0x7f0000002400)=""/103, 0x67}, {&(0x7f0000002480)=""/167, 0xa7}, {&(0x7f0000002540)=""/13, 0xd}, {&(0x7f0000002580)=""/188, 0xbc}, {&(0x7f0000002640)=""/43, 0x2b}], 0x7, &(0x7f0000002700)=""/95, 0x5f, 0x1}, 0x1}, {{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000002780)=""/197, 0xc5}, {&(0x7f0000002880)=""/149, 0x95}, {&(0x7f0000002940)=""/231, 0xe7}, {&(0x7f0000002a40)=""/69, 0x45}, {&(0x7f0000002ac0)=""/5, 0x5}, {&(0x7f0000002b00)=""/166, 0xa6}, {&(0x7f0000002bc0)=""/45, 0x2d}], 0x7, &(0x7f0000002c80)=""/137, 0x89, 0xffff}, 0x1ff}, {{&(0x7f0000002d40)=@un=@abs, 0x80, &(0x7f0000004100)=[{&(0x7f0000002dc0)=""/89, 0x59}, {&(0x7f0000002e40)=""/52, 0x34}, {&(0x7f0000002e80)=""/191, 0xbf}, {&(0x7f0000002f40)=""/163, 0xa3}, {&(0x7f0000003000)=""/4096, 0x1000}, {&(0x7f0000004000)=""/168, 0xa8}, {&(0x7f00000040c0)=""/32, 0x20}], 0x7, &(0x7f0000004180)=""/196, 0xc4, 0x4}, 0x8}, {{&(0x7f0000004280)=@nfc_llcp, 0x80, &(0x7f00000045c0)=[{&(0x7f0000004300)=""/119, 0x77}, {&(0x7f0000004380)=""/245, 0xf5}, {&(0x7f0000004480)=""/43, 0x2b}, {&(0x7f00000044c0)=""/122, 0x7a}, {&(0x7f0000004540)=""/97, 0x61}], 0x5, 0x0, 0x0, 0x7}, 0x8}, {{&(0x7f0000004640)=@generic, 0x80, &(0x7f00000049c0)=[{&(0x7f00000046c0)=""/197, 0xc5}, {&(0x7f00000047c0)=""/198, 0xc6}, {&(0x7f00000048c0)=""/228, 0xe4}], 0x3, &(0x7f0000004a00)=""/165, 0xa5, 0x1f}, 0xe32b}, {{&(0x7f0000004ac0)=@hci, 0x80, &(0x7f0000004c40)=[{&(0x7f0000004b40)=""/230, 0xe6}], 0x1, &(0x7f0000004c80)=""/217, 0xd9, 0x4}, 0xe0000000}, {{0x0, 0x0, &(0x7f0000006340)=[{&(0x7f0000004d80)=""/178, 0xb2}, {&(0x7f0000004e40)=""/139, 0x8b}, {&(0x7f0000004f00)=""/143, 0x8f}, {&(0x7f0000004fc0)=""/88, 0x58}, {&(0x7f0000005040)=""/196, 0xc4}, {&(0x7f0000005140)=""/156, 0x9c}, {&(0x7f0000005200)=""/4096, 0x1000}, {&(0x7f0000006200)=""/168, 0xa8}, {&(0x7f00000062c0)=""/69, 0x45}], 0x9, &(0x7f0000006400)=""/239, 0xef}, 0x400}, {{&(0x7f0000006500)=@nfc_llcp, 0x80, &(0x7f0000008840)=[{&(0x7f0000006580)=""/4096, 0x1000}, {&(0x7f0000007580)=""/15, 0xf}, {&(0x7f00000075c0)=""/75, 0x4b}, {&(0x7f0000007640)=""/179, 0xb3}, {&(0x7f0000007700)=""/157, 0x9d}, {&(0x7f00000077c0)=""/25, 0x19}, {&(0x7f0000007800)=""/38, 0x26}, {&(0x7f0000007840)=""/4096, 0x1000}], 0x8, &(0x7f00000088c0)=""/15, 0xf, 0x8}, 0x8}], 0x8, 0x40, &(0x7f0000008b00)) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000008b40)={0x0, @dev, @dev}, &(0x7f0000008b80)=0xc) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000008f80)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000008f40)={&(0x7f0000008bc0)={0x35c, r1, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [{{0x8, 0x1, r2}, {0xbc, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r3}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x1000000000000000}}, {0x8}}}]}}, {{0x8, 0x1, r4}, {0x44, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x8}}, {0x8}}}]}}, {{0x8, 0x1, r5}, {0x230, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r6}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x200}}, {0x8, 0x6, r7}}}, {0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x14, 0x4, [{0x0, 0x81, 0x5, 0x9}, {0x80, 0x3, 0xfff, 0x5725}]}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r9}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x9a6b}}, {0x8, 0x6, r11}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x80000000}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r12}}}]}}]}, 0x35c}, 0x1, 0x0, 0x0, 0x90}, 0x40000) accept4$inet6(r0, &(0x7f0000008fc0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000009000)=0x1c, 0x0) sendto$inet6(r0, &(0x7f0000009040)="155f867f851d5013431a7bbe32bb23339bb1600b7f1989af3ba11baa25c0169a1ea8e735c0fea229396fc3ce205d924e62ead1b11208d5fbeb8e85c8ad7ef2a9e28f4b836331ad019e7480d20eb6a15aa1f1015a2bdfb9809bdb9f93bcc0b6e936e25054f8cdc3b093136422ab190a7fc2e8b8270ede30f7ddd4793992922d19f69ee76dc2bc27e420bb575f698187873417c3d814c70abf4cf092c41cabbb1f499eb63c80f38fa0fb0698f20af31e4b229d86e28f492e5658db9d53daa33fa4d3c197593f29fa0279501d7d379275", 0xcf, 0x4000, 0x0, 0x0) r13 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000009140)='/dev/hwrng\x00', 0x4440, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r13, 0xc0205649, &(0x7f00000091c0)={0xbb0000, 0x93, 0x20, [], &(0x7f0000009180)={0x9a090a, 0x600000000, [], @value=0x7}}) write$RDMA_USER_CM_CMD_CREATE_ID(r13, &(0x7f0000009240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000009200)={0xffffffffffffffff}, 0x13f, 0x1007}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000009280)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e21, 0x2761, @remote, 0x723}, r14}}, 0x30) syz_open_dev$sndpcmp(&(0x7f00000092c0)='/dev/snd/pcmC#D#p\x00', 0x10000, 0x40800) r15 = syz_open_dev$dmmidi(&(0x7f0000009300)='/dev/dmmidi#\x00', 0x1, 0x22100) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000009340)={@mcast1, 0x49, r6}) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000009380)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r16, 0x1, 0x11, &(0x7f0000009480)={0x0}, &(0x7f00000094c0)=0xc) perf_event_open(&(0x7f0000009400)={0x1, 0x70, 0x1000, 0x100000000, 0x8, 0x80000000, 0x0, 0x5, 0x4008, 0xf, 0x75, 0x400, 0x101, 0x10000000000, 0xff, 0xffffffffffffff00, 0x2, 0x8e1, 0x5, 0x3701, 0x0, 0x5de, 0x7, 0x10001, 0x0, 0x7, 0x8000, 0x41, 0x81, 0x0, 0xfff, 0x4, 0x101, 0x5, 0x4352, 0x8, 0x5, 0x81, 0x0, 0x45d9, 0x1, @perf_bp={&(0x7f00000093c0), 0x8}, 0x80, 0x1f, 0x53, 0x4, 0x9, 0x80, 0x5}, r17, 0xa, r15, 0x0) 09:56:51 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0x40045566, &(0x7f0000000100)={&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d8fad55886f0935f53483bf9c234bc5758782dd5fcb75865583023e6e4974ff3"}}) r1 = dup(r0) ioctl$KDSETKEYCODE(r1, 0x4b4d, &(0x7f0000000040)={0x5, 0x8}) 09:56:51 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/autofs\x00', 0x2c8040, 0x0) ioctl$RTC_PIE_OFF(r2, 0x7006) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc4c85513, &(0x7f00000001c0)={{0x8, 0x3, 0x7, 0x8, 'syz0\x00', 0x3}, 0x1, [0x3ff, 0x6, 0x5, 0x400, 0x67d0, 0x5, 0x7ff, 0x80000000, 0x7d, 0xffffffffffffffe0, 0x3, 0x1000, 0x1, 0x9, 0x4, 0x78, 0x7, 0x40, 0xf45, 0x5, 0x10001, 0x924, 0x3f, 0x4, 0x1, 0x600000000000000, 0xe5e, 0xffffffff, 0x9, 0x0, 0x9, 0x80, 0xffff, 0x1000, 0x7, 0x9, 0x0, 0x100000000, 0x6, 0x4, 0x0, 0x81, 0x400, 0x6, 0x6, 0x6, 0x1, 0x40, 0x0, 0x8, 0x1, 0x8000, 0x4, 0x3a7, 0x7, 0xffffffff, 0x1, 0x5, 0xffffffffffffe910, 0x4, 0x8000, 0x80000001, 0x9, 0x8001, 0x0, 0x800, 0x2, 0xffffffffffffffff, 0x660, 0x200, 0x3, 0x8, 0x4, 0x6, 0x5, 0xc02, 0x1ff, 0x2, 0xd10, 0xfff, 0x55, 0xfffffffffffffe00, 0x6, 0x7, 0x8a, 0x9, 0x0, 0x3ff, 0xcc90, 0x30, 0xcb, 0x0, 0x2, 0xc765, 0x9, 0x80, 0x401, 0x1ff, 0x8c, 0x2000000000000, 0xfffffffffffffffd, 0x3, 0x1, 0x0, 0x1, 0x3, 0x10000, 0x7ff, 0x0, 0x3, 0x8763, 0x81, 0x0, 0x40, 0x0, 0x800, 0x3e, 0x1, 0x8000, 0x2, 0x20, 0xfffffffeffffffff, 0x6, 0x7, 0xc95f, 0x5, 0x80000000, 0x3], {0x77359400}}) ioctl$PPPIOCGFLAGS(r3, 0x8004745a, &(0x7f0000000100)) 09:56:51 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 681.678765] *** Guest State *** [ 681.682300] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 681.691201] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 681.700417] CR3 = 0x0000000000004000 [ 681.704361] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 681.710921] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 681.717718] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 681.723878] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 681.729938] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 681.736860] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 681.745026] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 681.753267] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 681.761323] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 681.769590] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 681.777764] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 681.786033] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 681.794204] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 681.802431] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 681.810467] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 681.818676] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:56:51 executing program 3: socket(0x12, 0x80005, 0x100) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000240)) pselect6(0x40, &(0x7f0000000280)={0x52}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000340), &(0x7f00000003c0)={&(0x7f0000000080), 0xffffff31}) [ 681.825285] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 681.832997] Interruptibility = 00000000 ActivityState = 00000000 [ 681.839270] *** Host State *** [ 681.843056] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a753f378 [ 681.849111] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 681.855774] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 681.863767] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 681.870204] CR0=0000000080050033 CR3=00000000af5de000 CR4=00000000001426f0 [ 681.877494] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 681.884339] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 681.890470] *** Control State *** [ 681.894167] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 681.900902] EntryControls=0000d1ff ExitControls=002fefff [ 681.906582] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 681.913739] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 681.920471] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:52 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x3, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fc, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10) times(&(0x7f0000000000)) sendto$inet(r0, &(0x7f00000005c0)="1a8c443d3a568c81cc096aa87ddab0f1b182da383fd71795f41053261e63b0b9f1283f7431b6146106716c21b43625f9194bf4b6a5dba53c46b82862a2f804121cda7e6be8fd507bb1545de629746d878f10be8036e98a270c42d6458f97b342303464e94ccb6d6f4f81941e3f3fa371596cdf17e160c992140c9dc81362f019f017", 0x82, 0x0, 0x0, 0x0) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/226, 0xe2}], 0x1) recvfrom(r0, &(0x7f0000000380)=""/239, 0xff4e, 0x0, 0x0, 0x307) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='veno\x00', 0x1c9) close(r0) [ 681.927230] reason=80000021 qualification=0000000000000002 [ 681.933840] IDTVectoring: info=00000000 errcode=00000000 [ 681.933864] TSC Offset = 0xfffffe8d77bbdcbb [ 681.933889] EPT pointer = 0x00000000a5a8f01e 09:56:52 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x2, 0x181000) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000080), 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f00005fafd2)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) 09:56:52 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vga_arbiter\x00', 0x40, 0x0) r3 = shmat(0x0, &(0x7f0000ffb000/0x2000)=nil, 0x1000) shmdt(r3) ioctl$LOOP_CLR_FD(r2, 0x4c01) r4 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000040), 0x10, 0x80800) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000001c0)=0x0) syz_open_procfs$namespace(r5, &(0x7f0000000200)='ns/net\x00') poll(&(0x7f0000000100)=[{r0, 0x4}, {r4}, {r1, 0x2000}, {r4, 0x400}, {r1}, {r0, 0x240}, {r0, 0x4408}, {r1, 0x10}], 0x8, 0x7) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000180)={0x1, 0x1, [0x5, 0x80000000, 0x5, 0x40, 0x6, 0x2, 0x9c, 0x7]}) 09:56:52 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = shmget(0x1, 0x3000, 0x54000000, &(0x7f0000fee000/0x3000)=nil) shmctl$SHM_LOCK(r1, 0xb) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xffffffffffffffff) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xb50ee05d3d6c4e09, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000000)="c4c3516c0e01f30f38f6cf2e660f3823c10f01b720da000066baf80cb82932288aef66bafc0cecf32680e9b666c04cc100000f32c7442400bdffffffc744240200800000c7442406000000000f011c24b88000c0fe0f23d80f21f835000000f00f23f8", 0x63}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 682.516019] *** Guest State *** [ 682.519524] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 682.528686] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 682.537694] CR3 = 0x0000000000004000 [ 682.541465] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 682.548243] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 682.554913] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 682.560935] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 682.567188] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 682.574048] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 682.582331] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 682.590398] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 682.598621] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 682.606784] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 682.614993] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 682.623177] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 682.631219] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 682.639406] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 682.647603] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 682.655792] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 682.662409] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 682.669910] Interruptibility = 00000000 ActivityState = 00000000 [ 682.676435] *** Host State *** [ 682.679686] RIP = 0xffffffff812cfa68 RSP = 0xffff8880af68f378 [ 682.685930] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 682.692524] FSBase=00007f2795025700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 682.700422] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 682.706566] CR0=0000000080050033 CR3=00000000af5de000 CR4=00000000001426f0 [ 682.713762] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 682.720479] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 682.726744] *** Control State *** [ 682.730274] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 682.737224] EntryControls=0000d1ff ExitControls=002fefff [ 682.742860] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 682.749847] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 682.756754] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 682.763549] reason=80000021 qualification=0000000000000002 [ 682.769949] IDTVectoring: info=00000000 errcode=00000000 [ 682.775626] TSC Offset = 0xfffffe8d037bd8f8 [ 682.779989] EPT pointer = 0x00000000af59501e 09:56:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080), &(0x7f0000000100)=0x4) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x100000010801, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) mkdir(&(0x7f0000000000)='.\x00', 0x4) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:53 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:53 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x10000) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x100, 0x2) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:56:53 executing program 4: socketpair(0x11, 0x6, 0x7ff, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$RTC_IRQP_READ(r1, 0x8008700b, &(0x7f0000000100)) r2 = socket$inet6(0xa, 0x3, 0xdd) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0xfffffffffffffffe}, 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1a}}}, [0x7344, 0xba, 0xfffffffffffffffd, 0x0, 0x2, 0x6, 0x5f2f, 0xffffffffffff395e, 0x1f, 0x40, 0x8, 0x80000000, 0x894, 0x1000, 0x9]}, &(0x7f0000000240)=0x100) getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000280)=@assoc_id=r3, &(0x7f00000002c0)=0x4) getsockopt$sock_cred(r2, 0x1, 0x19, &(0x7f0000000000), &(0x7f00000000c0)=0x3b4) 09:56:53 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x7) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) connect$unix(r1, &(0x7f0000000980)=@abs, 0x6e) bind$inet(r1, &(0x7f0000738ff0)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) setsockopt$inet_tcp_int(r1, 0x6, 0xa, &(0x7f0000000040)=0xffffffffffffffff, 0x4) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000700)={0x0, 0x40000007fff, 0x80000001}, 0x14) shutdown(r1, 0x1) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000000), &(0x7f0000000080)=0x4) 09:56:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000000)={0x4, [0x5, 0x1ff, 0x2, 0x3]}, &(0x7f0000000040)=0xc) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:53 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) accept$packet(0xffffffffffffff9c, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000040)=0x14) connect$can_bcm(r0, &(0x7f0000000080)={0x1d, r4}, 0x10) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000140)=[@in6={0xa, 0x4e24, 0x1, @mcast2, 0x1ff00}, @in6={0xa, 0x4e21, 0x4, @local, 0x1010}], 0x38) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) setsockopt$RDS_FREE_MR(r5, 0x114, 0x3, &(0x7f0000000100)={{0x707}, 0x61}, 0x10) 09:56:53 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x10000, 0x0) ioctl$RTC_PIE_OFF(r2, 0x7006) 09:56:53 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:53 executing program 3: r0 = syz_open_dev$video(&(0x7f0000000100)='/dev/video#\x00', 0xffffffff, 0x2) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000040)={0x0, 0x1, 0x0, [], &(0x7f0000000000)={0x980914, 0x0, [], @p_u8=&(0x7f0000000080)}}) 09:56:53 executing program 4: r0 = gettid() r1 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000680)=0x21000000008004) read(r1, &(0x7f0000000000)=""/143, 0xfffffe5e) dup3(r1, r2, 0xffffffffffffffff) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r0, 0x1004000000016) 09:56:54 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:54 executing program 3: perf_event_open(&(0x7f0000000240)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000004c0)) ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000000c0)) ioctl$DRM_IOCTL_GET_MAGIC(0xffffffffffffffff, 0x80046402, &(0x7f0000005200)) r3 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x8000) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000004f80), &(0x7f0000004fc0)=0xc) sendmsg$netlink(0xffffffffffffffff, &(0x7f00000051c0)={&(0x7f0000000080)=@proc={0x10, 0x0, 0x25dfdbfe}, 0xc, &(0x7f0000000400)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="100000000000000000000000fbdbdf25284a0aa28a8f"], 0x10}], 0x1, &(0x7f00000050c0)}, 0x4) fchmod(r1, 0x20) 09:56:54 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) dup3(r2, r0, 0x80000) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) 09:56:54 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/netfilter\x00') ioctl$UI_END_FF_ERASE(r4, 0x400c55cb, &(0x7f00000001c0)={0xe, 0x8000, 0x2f9}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000080)={0x0, 0x2b, "1c10d928ab339949da54b9025a76fe48058663971f2a6eec559c7f833c856155ee798ba334a27024f2fbe1"}, &(0x7f00000000c0)=0x33) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000100)={r5, 0x1}, &(0x7f0000000140)=0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x422100, 0x0) ioctl$DRM_IOCTL_RM_MAP(r6, 0x4028641b, &(0x7f0000000040)={&(0x7f0000ff9000/0x2000)=nil, 0x80000000, 0x0, 0x4, &(0x7f0000fe9000/0x2000)=nil, 0x9}) 09:56:54 executing program 0: r0 = socket$inet6(0xa, 0x0, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 684.924577] *** Guest State *** [ 684.927956] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 684.937251] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 684.946324] CR3 = 0x0000000000004000 [ 684.950105] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 684.956901] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 684.963566] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 684.969591] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 684.975842] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 684.982747] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 684.990790] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 684.999246] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 685.007428] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 685.015687] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 685.023875] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 685.032102] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 685.040185] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 685.048415] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 685.056640] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 685.064933] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 685.071417] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 685.079118] Interruptibility = 00000000 ActivityState = 00000000 [ 685.085594] *** Host State *** [ 685.088839] RIP = 0xffffffff812cfa68 RSP = 0xffff8880af68f378 [ 685.095149] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 685.101837] FSBase=00007f2794fc2700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 685.109689] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 685.115835] CR0=0000000080050033 CR3=00000000a59ca000 CR4=00000000001426f0 [ 685.123023] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 685.129759] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 685.136025] *** Control State *** [ 685.139530] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 685.146357] EntryControls=0000d1ff ExitControls=002fefff [ 685.151992] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 685.158974] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 685.165813] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 685.172577] reason=80000021 qualification=0000000000000002 [ 685.178946] IDTVectoring: info=00000000 errcode=00000000 [ 685.184573] TSC Offset = 0xfffffe8be88f8351 [ 685.188939] EPT pointer = 0x00000000a595d01e 09:56:55 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x0) socket$kcm(0x29, 0x2, 0x0) recvmsg$kcm(r0, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x3a) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="230000001e0081aee4050c00000f00fe078bc36f1600000063dac37b7403242189c609", 0x23}], 0x1}, 0x0) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000080)) 09:56:55 executing program 4: r0 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x40101) write$sndseq(r0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r0}], 0x1, 0x0, 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000000c0)={0x0, 0x2, 0x400, 0xbf0}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f000023efa8)={0x80, 0x10000000000007c}) finit_module(r0, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) [ 685.260898] *** Guest State *** [ 685.264571] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 685.273649] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 685.282660] CR3 = 0x0000000000004000 [ 685.286430] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 685.293110] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 685.299803] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 685.305956] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 685.312116] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 685.318861] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 685.327025] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 685.335199] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 685.343363] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 685.351397] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:56:55 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x101000, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r2, 0xc0405519, &(0x7f00000001c0)={0x5, 0x7, 0x1000, 0x8000, 'syz1\x00', 0x400}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, 0x0}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r3, 0x0, 0xffffffffffffffff, 0x0) r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r4, 0xc028564e, &(0x7f0000000080)) [ 685.359569] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 685.367712] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 685.375882] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 685.384026] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 685.392234] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 685.400264] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 685.406849] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 685.414477] Interruptibility = 00000000 ActivityState = 00000000 [ 685.420758] *** Host State *** [ 685.424115] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a50cf378 [ 685.430194] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 685.436818] FSBase=00007fbb5ed19700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 685.444804] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 685.450751] CR0=0000000080050033 CR3=00000000af5f4000 CR4=00000000001426f0 [ 685.457945] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 685.464775] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 685.470881] *** Control State *** [ 685.474504] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 685.481217] EntryControls=0000d1ff ExitControls=002fefff [ 685.486871] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 685.493988] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 685.500705] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 685.507481] reason=80000021 qualification=0000000000000002 [ 685.513978] IDTVectoring: info=00000000 errcode=00000000 [ 685.519493] TSC Offset = 0xfffffe8b968394f7 [ 685.523975] EPT pointer = 0x00000000a592f01e [ 685.605348] netlink: 3 bytes leftover after parsing attributes in process `syz-executor3'. [ 685.652472] netlink: 3 bytes leftover after parsing attributes in process `syz-executor3'. [ 685.754455] netlink: 3 bytes leftover after parsing attributes in process `syz-executor3'. [ 685.770048] netlink: 3 bytes leftover after parsing attributes in process `syz-executor3'. 09:56:55 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 09:56:55 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 685.897793] *** Guest State *** [ 685.901266] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 685.910725] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 685.919761] CR3 = 0x0000000000004000 [ 685.923736] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 685.930385] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 685.937146] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 685.943319] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 685.949368] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 685.956367] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 685.964571] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 685.972943] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 685.980983] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 685.989274] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 685.997474] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 686.005739] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 686.013940] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 686.022161] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 686.030208] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 686.038451] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 686.045068] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 686.052795] Interruptibility = 00000000 ActivityState = 00000000 [ 686.059074] *** Host State *** [ 686.062529] RIP = 0xffffffff812cfa68 RSP = 0xffff8880b0f0f378 [ 686.068608] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 686.075411] FSBase=00007fbb5ed5b700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 686.083411] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 686.089357] CR0=0000000080050033 CR3=00000000af5f4000 CR4=00000000001426e0 [ 686.096657] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 686.103526] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 686.109628] *** Control State *** [ 686.113421] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 686.120189] EntryControls=0000d1ff ExitControls=002fefff [ 686.125933] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 686.133081] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 686.139805] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:56:56 executing program 3: getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000080)={0x0, 0x51, "70a351a26603456500c39f79fdb744971c193db33cf99901c95796df04adbd2236a9740bb59e61777db5988e2803062750756b0ef75bc08dc42ab219ace6d1fb8a4052e0770092a14694f362d271456770"}, 0x0) r0 = syz_open_dev$video(&(0x7f0000000380)='/dev/video#\x00', 0x27ffbffdf, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fd) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f00000004c0)={0x3, @win={{}, 0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x7}}, 0x64, 0x0}}) [ 686.146707] reason=80000021 qualification=0000000000000002 [ 686.153264] IDTVectoring: info=00000000 errcode=00000000 [ 686.158767] TSC Offset = 0xfffffe8b96833240 [ 686.163404] EPT pointer = 0x00000000a592f01e 09:56:56 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f00000001c0)) r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x84000) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:56:56 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:56 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:56 executing program 5: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x18000, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000380)=""/193, 0x200000, 0x1800, 0x6}, 0x18) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe1000/0x18000)=nil, 0x0, 0x0, 0x2, 0x0, 0x133) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$NBD_SET_BLKSIZE(r0, 0xab01, 0x6) 09:56:56 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = semget(0x0, 0x2, 0x100) semctl$GETALL(r3, 0x0, 0xd, &(0x7f0000000000)=""/179) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0) 09:56:56 executing program 3: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x47, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x40) ioctl$RTC_IRQP_READ(r0, 0x8008700b, &(0x7f00000000c0)) nanosleep(&(0x7f0000000000), &(0x7f0000000040)) readlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=""/125, 0xfffffffffffffda0) 09:56:57 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400202) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 687.350229] *** Guest State *** [ 687.353922] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 687.363124] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 687.372168] CR3 = 0x0000000000004000 [ 687.375933] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 687.382592] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 687.389139] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 687.395427] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 687.401471] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 687.408332] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 687.416493] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 687.424646] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 687.432789] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 687.440820] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:56:57 executing program 3: r0 = semget$private(0x0, 0x40000000c, 0x0) semop(r0, &(0x7f0000000040)=[{0x0, 0x80000001}, {0x0, 0xfffffffffffffffc}], 0x2) semop(r0, &(0x7f0000000000)=[{0x0, 0xfff}], 0x1) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x6, 0x20000) ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f00000000c0)) 09:56:57 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000006000)='/dev/snd/controlC#\x00', 0x0, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x9, 0x10880) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000080)=""/131) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x501000, 0x0) bind$vsock_dgram(r1, &(0x7f00000001c0)={0x28, 0x0, 0x2711, @reserved}, 0x10) getsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 687.448996] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 687.457241] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 687.465433] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 687.473578] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 687.481752] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 687.489769] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:56:57 executing program 5: r0 = socket$inet6(0xa, 0x806, 0x7) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x8000, 0x0) mmap$perf(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x5, 0x81011, r4, 0x0) [ 687.496482] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 687.504167] Interruptibility = 00000000 ActivityState = 00000000 [ 687.510437] *** Host State *** [ 687.513862] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a518f378 [ 687.519920] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 687.526514] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 687.534498] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 687.540458] CR0=0000000080050033 CR3=00000000a5b3f000 CR4=00000000001426f0 09:56:57 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 687.547690] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 687.554574] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 687.560670] *** Control State *** [ 687.564348] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 687.571087] EntryControls=0000d1ff ExitControls=002fefff [ 687.576766] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 687.583864] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 687.590580] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 687.597349] reason=80000021 qualification=0000000000000002 [ 687.603848] IDTVectoring: info=00000000 errcode=00000000 [ 687.609353] TSC Offset = 0xfffffe8a74ae7d67 [ 687.613850] EPT pointer = 0x00000000a689f01e 09:56:57 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_G_JPEGCOMP(r1, 0x808c563d, &(0x7f00000001c0)) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 687.997575] *** Guest State *** [ 688.000945] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 688.010083] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 688.019332] CR3 = 0x0000000000004000 [ 688.023350] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 688.029912] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 688.036581] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 688.042729] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 688.048756] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 688.055639] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 688.063830] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 688.071998] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 688.080029] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 688.088210] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:56:58 executing program 3: r0 = socket$inet(0x10, 0x3, 0xc) accept(r0, &(0x7f0000000000)=@nfc_llcp, &(0x7f0000000080)=0x80) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2400000008061f001cfffd946fa2830020200a000900010006e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0) [ 688.096375] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 688.104581] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 688.112757] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 688.120786] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 688.128941] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 688.137121] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 688.143791] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 688.151287] Interruptibility = 00000000 ActivityState = 00000000 [ 688.157766] *** Host State *** [ 688.161031] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a53cf378 [ 688.167245] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 688.173841] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 688.181809] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 688.187746] CR0=0000000080050033 CR3=00000000af605000 CR4=00000000001426f0 09:56:58 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xfffffffffffffffd, 0x40) ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r1, 0xc02c564a, &(0x7f0000000080)={0x100, 0x33424752}) [ 688.194965] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 688.201801] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 688.207911] *** Control State *** [ 688.211413] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 688.218294] EntryControls=0000d1ff ExitControls=002fefff [ 688.223917] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 688.230893] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 688.237744] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 688.244496] reason=80000021 qualification=0000000000000002 [ 688.250891] IDTVectoring: info=00000000 errcode=00000000 [ 688.256517] TSC Offset = 0xfffffe8a1fb9e38b [ 688.260891] EPT pointer = 0x00000000a4a6501e [ 688.394020] validate_nla: 4 callbacks suppressed [ 688.394047] netlink: 'syz-executor3': attribute type 1 has an invalid length. [ 688.406920] netlink: 4 bytes leftover after parsing attributes in process `syz-executor3'. [ 688.415582] netlink: 'syz-executor3': attribute type 1 has an invalid length. [ 688.423139] netlink: 4 bytes leftover after parsing attributes in process `syz-executor3'. [ 688.461025] netlink: 'syz-executor3': attribute type 1 has an invalid length. [ 688.468555] netlink: 4 bytes leftover after parsing attributes in process `syz-executor3'. [ 688.477300] netlink: 'syz-executor3': attribute type 1 has an invalid length. [ 688.484833] netlink: 4 bytes leftover after parsing attributes in process `syz-executor3'. 09:56:58 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000040)={0xffff, 0x0, 0x7, 'queue1\x00', 0x40000000918}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:56:58 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:58 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) ppoll(&(0x7f0000000040)=[{r0}, {r0, 0x2000}, {r1, 0x1}], 0x3, &(0x7f00000001c0)={r2, r3+10000000}, &(0x7f0000000200)={0x48b}, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r4, 0xc028564e, &(0x7f0000000080)) 09:56:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000240)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) recvmmsg(0xffffffffffffffff, &(0x7f0000003b80)=[{{&(0x7f0000000980)=@pppoe={0x18, 0x0, {0x0, @random}}, 0x80, &(0x7f0000001f40)=[{&(0x7f0000001f00)=""/14, 0xe}], 0x1, &(0x7f0000002000)=""/217, 0xd9}}], 0x1, 0x0, &(0x7f0000002840)={0x0, 0x1c9c380}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x10000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)) ioctl$PPPIOCGCHAN(r1, 0x80047437, &(0x7f0000000140)) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100]}) ioctl$KVM_NMI(r2, 0xae9a) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:56:59 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f00000002c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ab9b3f8683ecf89dee901d2da75c01f0200f58d26d7a071fb35331ce39c5aeeff5083cf07dd46455c914d4aff1e7cf7ed57c0c2056f5ca9fcf03cbf82bd13534737339245d3c70641be6281d7e1b4b7099114c571872298dd7f2120e2b6fa2a2e2a2c9c6e0034750b7961fa2c1584c0b5a500ae0ac39bc76a78d9158266759f766a3e8c84c09cf3ad8882947ffa1fb4c050727beb12c57e06ff590000000000000000000000000000008924578ad49ea1144c7448d640aa88a66a71b77d73a924ff027fdcb550161653d4cb57088385248286f5be9d8766c70c29e6f5063dfe74a1b0b52079159048210b4d271ac94c889b063ca34a09579af03631f128e6dd2c966daecd7c6f7e0f4ebcaf80250cfab07184838078c71d809d06dc0bac75db814525d1d1acaf4cb6f4890f397382ae636697f688094e38db5c22770f53076c630df9bb4c149189ffa975f52087311c5baafc11c90bdc25fc803b71153ddc3995b2df49cdd784bc5bea40861070dadb395e85c93cdfa08e") mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0xfffffffffffffffc, 0x12, r0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e24, @multicast2}, @in={0x2, 0x4e23, @rand_addr=0x101}, @in={0x2, 0x4e22, @rand_addr=0xb6}], 0x30) io_cancel(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x16d}, 0x0) [ 689.068843] *** Guest State *** [ 689.072563] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 689.081764] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 689.090651] CR3 = 0x0000000000004000 [ 689.094573] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 689.101209] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 689.107869] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 689.114071] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 689.120111] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 689.126977] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 689.135177] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 689.143361] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 689.151392] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 689.159602] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 689.167747] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 689.175877] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 689.184052] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 689.192252] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 689.200312] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 689.208445] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:56:59 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x8, 0x101001) ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f0000000080)) prctl$PR_SVE_SET_VL(0x32, 0x3c31b) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r1, 0x4010aeab, &(0x7f0000000100)={0xe8, 0x1000}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$TUNGETFILTER(r1, 0x801054db, &(0x7f0000000380)=""/198) r4 = openat$cgroup_ro(r0, &(0x7f0000000000)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000180)={0xa8c, 0x3, 0x2, "674582411e87710d683ae3193153c355f5d6e6e755a0635fb05c4b2c755d6dc3", 0x76777f5e}) ioctl$DRM_IOCTL_AGP_ACQUIRE(r4, 0x6430) ioctl$NBD_SET_TIMEOUT(r4, 0xab09, 0x8) ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f00000001c0)=0x20) [ 689.215069] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 689.222693] Interruptibility = 00000000 ActivityState = 00000000 [ 689.228955] *** Host State *** [ 689.232353] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a538f378 [ 689.238397] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 689.245038] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 689.253034] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 689.258973] CR0=0000000080050033 CR3=00000000a680c000 CR4=00000000001426f0 [ 689.266201] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 689.273049] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 689.279163] *** Control State *** [ 689.282796] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 689.289511] EntryControls=0000d1ff ExitControls=002fefff [ 689.295159] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 689.302276] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 689.308989] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 689.315705] reason=80000021 qualification=0000000000000002 [ 689.322169] IDTVectoring: info=00000000 errcode=00000000 [ 689.327658] TSC Offset = 0xfffffe89896e05d6 [ 689.332165] EPT pointer = 0x00000000a755301e 09:56:59 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:56:59 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x6, 0x1) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0xc9f, 0x3f, 0x8, 0x5, 0xd5d2, 0x9, 0x81, 0x100000000, 0x1, 0x1, 0x5, 0xfffffffffffffff8, 0x9, 0x7, 0xda6, 0x1], 0x0, 0x40040}) 09:56:59 executing program 3: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x619, 0x101000) ioctl$SG_SET_KEEP_ORPHAN(r0, 0x2287, &(0x7f0000000040)=0x49) perf_event_open(&(0x7f0000000400)={0x8, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 09:56:59 executing program 4: r0 = socket$inet_sctp(0x2, 0x4, 0x84) perf_event_open(&(0x7f0000000240)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x4000000005, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000002ec0), &(0x7f0000002f00)=0x10) r2 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x4ec, 0x200001) ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000080)=0x6) 09:57:00 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00') bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x0, 0x8634, 0x7, 0x7, 0x8, r1, 0x5}, 0x2c) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:00 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) socketpair(0x3, 0x8000a, 0x7f, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet6_mreq(r4, 0x29, 0x14, &(0x7f0000000100)={@loopback}, &(0x7f0000000180)=0x14) getsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f0000000040)=0x9, &(0x7f0000000080)=0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:00 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_pts(0xffffffffffffffff, 0x20000) ioctl$PIO_FONTRESET(r1, 0x4b6d, 0x0) ioctl$PIO_FONTRESET(r1, 0x4b6d, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VT_SETMODE(r1, 0x5602, &(0x7f0000000100)={0x1d, 0x101, 0x706, 0x4, 0x2}) ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) 09:57:00 executing program 3: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000640)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000c40)=ANY=[]) r1 = eventfd2(0x0, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000100)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000580)={0x1, 0x0, &(0x7f00000007c0)=""/213, &(0x7f0000000140)=""/118, &(0x7f00000004c0)=""/165}) poll(&(0x7f00000003c0)=[{r1}], 0x1, 0x9adf) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x0, 0x0) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x23, &(0x7f0000000200)={@loopback, @multicast1, 0x0}, &(0x7f0000000240)=0xc) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000300)={'team0\x00', r3}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, &(0x7f0000000080)=""/115, &(0x7f0000000400)=""/156, &(0x7f0000000940)=""/185}) r4 = syz_open_dev$cec(&(0x7f0000000280)='/dev/cec#\x00', 0x2, 0x2) setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f00000002c0)=0x4000, 0x4) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000040)=0xfffffffffffffffc) 09:57:00 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:00 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r1 = accept$alg(r0, 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) creat(&(0x7f00000000c0)='./file0\x00', 0x20) sendmmsg$alg(r1, &(0x7f0000005d00)=[{0x0, 0x0, &(0x7f0000000700), 0x0, &(0x7f0000000780)}], 0x1, 0x0) [ 690.683992] *** Guest State *** [ 690.687468] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 690.696634] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 690.705809] CR3 = 0x0000000000004000 [ 690.709596] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 690.716273] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 690.722961] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 690.728999] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 690.735190] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 690.742033] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 690.750071] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 690.758288] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 690.766440] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 690.774613] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 690.782788] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 690.790840] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 690.799061] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 690.807226] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 690.815466] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 690.823635] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:00 executing program 2: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x24001, 0x0) accept$unix(r0, &(0x7f00000002c0)=@abs, &(0x7f0000000000)=0x6e) getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000340)={0x0, 0xcfa3, 0x6, 0x6, 0x3, 0x400, 0x100, 0xffffffff, {0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x1, 0x100000001, 0x9, 0x9, 0x80}}, &(0x7f0000000280)=0xb0) eventfd2(0x6, 0x0) statx(r1, &(0x7f0000000480)='./file0\x00', 0x1000, 0x440, &(0x7f00000004c0)) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000400)={r2, 0x5, 0x30, 0x1, 0x9}, &(0x7f0000000440)=0x18) write$FUSE_INIT(r1, &(0x7f00000001c0)={0x50, 0x0, 0x1, {0x7, 0x1c, 0x10001, 0x4010, 0x8, 0x852, 0x7, 0xffffffffffff4f82}}, 0x50) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) mkdirat$cgroup(r1, &(0x7f0000000100)='syz1\x00', 0x1ff) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) [ 690.830096] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 690.837847] Interruptibility = 00000000 ActivityState = 00000000 [ 690.844304] *** Host State *** [ 690.847571] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a538f378 [ 690.853788] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 690.860288] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 690.868801] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 690.874869] CR0=0000000080050033 CR3=00000000b0e5d000 CR4=00000000001426f0 [ 690.882068] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 690.888800] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 690.895101] *** Control State *** [ 690.898642] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 690.905545] EntryControls=0000d1ff ExitControls=002fefff [ 690.911058] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 690.918222] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 690.925017] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 690.931761] reason=80000021 qualification=0000000000000002 [ 690.938121] IDTVectoring: info=00000000 errcode=00000000 [ 690.943740] TSC Offset = 0xfffffe88b6ec20e4 [ 690.948110] EPT pointer = 0x00000000a4b8a01e 09:57:01 executing program 1: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x28000, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0x7dd2264ae0bb8092, &(0x7f0000000100)="16dfe761f4960d29bf8fba293b7b47081abb9130fc0c5a44af02805b657d4251658d7224d09872a7a5655c28bd3dc735bb0252b5e0bbc2dc739efbd1efc993d2bc3e936e98c238a618dd967b58695049d2cb1af7f14d328680be902ea294f9e40426544eb572f21056bce458de28d7cfe689f538fbef511d1f", 0x79) socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x101040, 0x0) getsockopt$packet_int(r4, 0x107, 0x9, &(0x7f0000000040), &(0x7f0000000080)=0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:01 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000080)={0x0, @speck128, 0x2, "06135d2223198c1c"}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$sock_inet_SIOCGARP(r3, 0x8954, &(0x7f00000001c0)={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x21}}, {0x9, @random="2d9ad5c4dfc5"}, 0x42, {0x2, 0x4e20}, 'veth1_to_bridge\x00'}) r4 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x800) ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000180)={0x3, 0xffffffffffffff9c}) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:01 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x0, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:01 executing program 2: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000000080)) 09:57:01 executing program 3: socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) recvmsg$kcm(r0, &(0x7f0000002e80)={&(0x7f0000002b40)=@hci, 0x80, &(0x7f0000002dc0)=[{&(0x7f0000002d40)=""/124, 0x7c}], 0x1, &(0x7f0000002e00)=""/79, 0x4f}, 0x0) sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x28a, &(0x7f0000000000)}, 0x0) close(r0) ioctl$TCXONC(r1, 0x540a, 0x0) 09:57:02 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x404581, 0x0) ioctl$KVM_SET_CPUID(r1, 0x4008ae8a, &(0x7f0000000040)={0x3, 0x0, [{0x80000019, 0x9, 0x8001, 0x3, 0x9}, {0xc000001b, 0x9, 0x9, 0xd64f, 0x3ff}, {0x0, 0x4, 0x93, 0x6}]}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:02 executing program 4: ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000280)="025c") setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f000089b000), 0x4) syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5335, &(0x7f0000000180)={0x33, 0x400, 0x8000, 'queue1\x00', 0x8000}) unshare(0x40000000) r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = memfd_create(&(0x7f0000000040)="e12800", 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080)=r1, 0x4) fcntl$getown(0xffffffffffffffff, 0x9) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3}, 0xc) setsockopt$inet6_MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000100)={{0xa, 0x4e20, 0x0, @ipv4={[], [], @remote}, 0x6f}, {0xa, 0x0, 0x101, @mcast2}, 0x0, [0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1]}, 0x5c) 09:57:02 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000), &(0x7f0000000040)=0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = dup3(r1, r3, 0x80000) ioctl$TIOCSCTTY(r4, 0x540e, 0x67a3cc5a) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = getpid() sched_getattr(r5, &(0x7f0000000080), 0x30, 0x0) [ 692.275383] IPVS: ftp: loaded support on port[0] = 21 09:57:02 executing program 3: r0 = msgget$private(0x0, 0x0) msgrcv(r0, &(0x7f0000000080)={0x0, ""/193}, 0xc9, 0x3, 0x2000) msgrcv(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="0000000000000000400000000000000000d9133b2be432ca45fe77daee50d913d4e5cd0500000000000000346212b9e89c7c764f1fab13ba0e5a299316a4b96e6eb42a73b60cd7"], 0x11, 0x942da59bd1491bba, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f0000000180)={0x0, 0x80000, 0xffffffffffffffff}) fstatfs(r1, &(0x7f0000000880)=""/176) msgsnd(r0, &(0x7f0000000040)={0x2}, 0x8, 0x0) socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000280)={0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'vcan0\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000300)={{{@in=@rand_addr, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000400)=0xe8) setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000440)={{{@in=@loopback, @in6=@mcast2, 0x4e22, 0x5, 0x4e22, 0x8001, 0xa, 0x20, 0x20, 0x0, r3, r4}, {0x5, 0xfffffffffffff65b, 0x4, 0xffffffff, 0x5, 0x8, 0x100000001, 0x2}, {0x1, 0x21, 0x7fff, 0x6fc6}, 0x101, 0x0, 0x1, 0x1, 0x0, 0x2}, {{@in=@loopback, 0x4d5, 0x2b}, 0xa, @in=@loopback, 0x0, 0x4, 0x1, 0x517c, 0x400, 0x9, 0x8}}, 0xe8) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$PIO_UNIMAP(r5, 0x4b67, &(0x7f0000000600)={0x4, &(0x7f00000005c0)=[{0x66e6, 0x1}, {0x0, 0x8}, {0xb197, 0x1ff}, {0x1, 0x40}]}) 09:57:02 executing program 2: r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video1\x00', 0x2, 0x0) ioctl$VIDIOC_S_CROP(r0, 0x4014563c, &(0x7f0000000100)={0x5, {0x9, 0x100, 0xf7f3, 0x7fffffff}}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x200a00, 0x0) r3 = getpgid(0xffffffffffffffff) write$FUSE_LK(r2, &(0x7f0000000240)={0x28, 0x0, 0x4, {{0xaca3, 0x1, 0x2, r3}}}, 0x28) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f00000001c0)='ip6gretap0\x00') ioctl$VIDIOC_TRY_ENCODER_CMD(r4, 0xc028564e, &(0x7f0000000080)) [ 692.686722] IPVS: ftp: loaded support on port[0] = 21 09:57:02 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x0, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:03 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:03 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) read(r1, &(0x7f00000001c0)=""/211, 0xd3) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:03 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_DEBUGREGS(r3, 0x8080aea1, &(0x7f0000000180)) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x7e) set_mempolicy(0x8000, &(0x7f0000000200)=0x4, 0x9) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz1\x00', 0x1ff) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r4, 0xc0505510, &(0x7f0000000040)={0x6, 0x7, 0x2, 0x101, &(0x7f0000000380)=[{}, {}, {}, {}, {}, {}, {}]}) 09:57:03 executing program 4: r0 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x0) ioctl$ASHMEM_GET_PIN_STATUS(r0, 0x7709, 0x0) syz_emit_ethernet(0x66, &(0x7f0000003100)={@link_local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "99143d", 0x30, 0xb9, 0x0, @empty, @dev, {[], @icmpv6=@dest_unreach={0x1, 0x0, 0x0, 0x0, [], {0x0, 0x6, "5f8ca7", 0x0, 0x0, 0x0, @mcast1, @mcast2}}}}}}}, 0x0) 09:57:03 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 693.769768] *** Guest State *** [ 693.773443] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 693.782650] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 693.791538] CR3 = 0x0000000000004000 [ 693.795459] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 693.802187] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 693.808729] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 693.814896] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 693.820956] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 693.827839] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 693.836107] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 693.844386] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 693.852648] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 693.860745] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 693.869217] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 693.877390] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 693.885692] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 693.893878] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 693.902062] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 693.910088] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 693.916726] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 693.924379] Interruptibility = 00000000 ActivityState = 00000000 [ 693.930650] *** Host State *** [ 693.934111] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a514f378 [ 693.940166] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 693.946815] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 693.954887] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 693.960871] CR0=0000000080050033 CR3=00000000b0f11000 CR4=00000000001426e0 [ 693.968178] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 693.975028] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 693.981123] *** Control State *** [ 693.984769] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 693.991486] EntryControls=0000d1ff ExitControls=002fefff [ 693.997704] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 694.004832] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 694.011831] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:04 executing program 2: setxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='trusted.overlay.upper\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="00fbd50400d94709038e906b8baf1363312f3c5b658f2abe0032e9d4093b6c47656845c32c4c15dffeb1630bcf42d5e6baba68bf5c78817114d85e6d4321373d87a82abe2644647360e3f2615cd29316d38dd9f80de336566d38d35a0a3dbfd4889a9d686d85a4c819b255297e62bcbf6b714774d573c148f48980b56ddc41e83dea2b890b200c54ac9e2907096966e32e45040d8b16c7dec15a8b22d9cfe1c5938802a16ae72aa8352720d7fd6ff94f1be20a0b92cceacd8c72406fc3a2dcacaeb42d2255ec5f39d550f28ea61df53ac0bba0ba31"], 0xd5, 0x3) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x2, &(0x7f00000002c0)='&\x00'}, 0x30) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000340)='/dev/dmmidi#\x00', 0x7, 0x10000) accept4$packet(0xffffffffffffff9c, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000440)=0x14, 0x80800) sendto$packet(r2, &(0x7f0000000380)="03d18dbe2d971dcf2159b363a8db2092d2f1804f7ccf37bba7a5631a1f819640c594c96d63d406f55aac4df819685a55f3d8b40f6e5c094fa06f0beb03b4e6f9826206baceacf84eb8b0140a9ddc93d38c09db5f3d752fc39a49c67d6186", 0x5e, 0x20000080, &(0x7f0000000480)={0x11, 0x17, r3, 0x1, 0x6, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:04 executing program 3: r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000140)) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000100)={0x43, 0x7f, @value=0x40}) flock(r1, 0x2) 09:57:04 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x401) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 694.018482] reason=80000021 qualification=0000000000000002 [ 694.024984] IDTVectoring: info=00000000 errcode=00000000 [ 694.030511] TSC Offset = 0xfffffe8702dd33b5 [ 694.035055] EPT pointer = 0x00000000a402e01e 09:57:04 executing program 4: r0 = epoll_create1(0x0) pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000180)=""/216) r2 = syz_open_dev$sndseq(&(0x7f0000f8eff3)='/dev/snd/seq\x00', 0x0, 0x20401) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000380)) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r2, &(0x7f0000000080)={0x8000000e}) r3 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x8000, 0x22100) ioctl$VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f00000000c0)={0xa0, 0xf, 0x3, "726aa6242f1d251541871b16c6d6da2be8d13508c269cc0235acf25a53179ac7", 0x77725f57}) epoll_pwait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0, &(0x7f0000000100), 0x8) 09:57:04 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@nat={'nat\x00', 0x19, 0x2, 0x238, [0x20000280, 0x0, 0x0, 0x200003b0, 0x200003e0], 0x0, &(0x7f0000000000), &(0x7f0000000280)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0xb, 0x0, 0x0, 'e_0\x00', 'sit0\x00', 'ip6gretap0\x00', 'ipddp0\x00', @broadcast, [], @dev, [], 0xd0, 0xd0, 0x100, [@arp={'arp\x00', 0x38, {{0x0, 0x0, 0x0, @local, 0x0, @empty, 0x0, @local}}}]}}, @common=@AUDIT={'AUDIT\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x1, [{{{0x5, 0x0, 0x0, 'rose0\x00', "200000fa0000001300", 'veth0_to_bridge\x00', 'vlan0\x00', @broadcast, [], @link_local, [], 0x70, 0x70, 0xa8}}, @arpreply={'arpreply\x00', 0x10}}]}]}, 0x2b0) utime(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x6, 0x6}) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x20) 09:57:04 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 694.722395] *** Guest State *** [ 694.725945] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 694.735316] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 694.744336] CR3 = 0x0000000000004000 [ 694.748102] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 694.754882] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 694.761428] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 694.767646] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 694.773834] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 694.780564] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 694.788848] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 694.797041] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 694.805273] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 694.813466] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 694.821500] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 694.829732] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 694.837961] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 694.846166] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 694.854321] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 694.862582] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:04 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000100)=0xc) tkill(r2, 0x17) [ 694.869533] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 694.877243] Interruptibility = 00000000 ActivityState = 00000000 [ 694.883669] *** Host State *** [ 694.886934] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a52bf378 [ 694.893200] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 694.899688] FSBase=00007f2794fc2700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 694.907680] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 694.913773] CR0=0000000080050033 CR3=00000000b0f11000 CR4=00000000001426f0 [ 694.920855] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 694.927711] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 694.934015] *** Control State *** [ 694.937522] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 694.944424] EntryControls=0000d1ff ExitControls=002fefff [ 694.949937] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 694.957138] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 694.963996] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 09:57:05 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x802, 0x0) getsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040), &(0x7f00000000c0)=0x8) fadvise64(r0, 0x0, 0x9, 0x4) [ 694.970630] reason=80000021 qualification=0000000000000002 [ 694.977267] IDTVectoring: info=00000000 errcode=00000000 [ 694.982900] TSC Offset = 0xfffffe8702dcc1d9 [ 694.987275] EPT pointer = 0x00000000a402e01e 09:57:05 executing program 3: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) write$binfmt_elf32(r0, &(0x7f0000000180)=ANY=[], 0x806a88e) readlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/175, 0xaf) mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000002, 0x1013, r0, 0x0) ioctl$int_in(r0, 0x800000800c5012, &(0x7f00000004c0)) 09:57:05 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x61b, 0x30}, &(0x7f0000000040)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={r3, 0x2c, &(0x7f0000000080)=[@in={0x2, 0x4e24, @multicast1}, @in6={0xa, 0x4e20, 0x3, @loopback, 0xffff}]}, &(0x7f0000000180)=0x10) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:05 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x103ff, 0x2, 0xf000, 0x1000, &(0x7f0000fed000/0x1000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) io_setup(0x5, &(0x7f0000000000)=0x0) io_destroy(r3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x0) write$P9_RFSYNC(r4, &(0x7f00000000c0)={0x7, 0x33, 0x2}, 0x7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:05 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x800, 0x0) getsockopt$inet_udp_int(r2, 0x11, 0x0, &(0x7f0000000200), &(0x7f0000000240)=0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000616ff8)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x45, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) bind$unix(r4, &(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$int_in(r0, 0x5452, &(0x7f00005ebff8)=0x3f) recvmsg(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r5, 0x4020565b, &(0x7f00000000c0)={0x2, 0xfffffffffffffeff, 0x2}) r6 = dup2(r0, r1) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r5, 0x84, 0x21, &(0x7f0000000140), 0x4) ioctl$KDGETLED(r6, 0x4b31, &(0x7f0000000040)) 09:57:05 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:05 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x8141, 0x0) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f00000000c0)=0x7d0, 0x4) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f00000001c0)={0x5ba4, 0xb, 0x4, 0x80000, {0x77359400}, {0x5, 0x0, 0x4, 0xfffffffffffffbff, 0x9, 0x7, "fba606bb"}, 0xffffffff, 0x3, @fd, 0x4}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) [ 696.102937] *** Guest State *** [ 696.106313] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 696.115617] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 696.124735] CR3 = 0x0000000000004000 [ 696.128507] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 696.135212] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 696.141915] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 696.147933] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 696.154144] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 696.160883] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 696.169092] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.177310] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 696.185496] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.193689] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:57:06 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x2, 0x2) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000100), &(0x7f00000001c0)=0x4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e23, @broadcast}}, 0xd5ab, 0x6}, &(0x7f00000002c0)=0x90) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000300)={r3, 0x2, 0x5, [0x1000, 0x3, 0x3, 0x2, 0x7]}, 0x12) [ 696.202196] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.210227] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 696.218423] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 696.226668] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 696.234885] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 696.243120] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 696.246097] *** Guest State *** [ 696.249604] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 696.249636] Interruptibility = 00000000 ActivityState = 00000000 [ 696.249663] *** Host State *** [ 696.249698] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a4c3f378 [ 696.249751] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 696.249789] FSBase=00007fbb5ed7c700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 696.249824] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 696.249861] CR0=0000000080050033 CR3=00000000b0f11000 CR4=00000000001426e0 [ 696.249917] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 696.253381] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 696.253425] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 696.260915] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 696.267255] CR3 = 0x0000000000004000 [ 696.270456] *** Control State *** [ 696.276645] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 696.283108] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 696.283154] EntryControls=0000d1ff ExitControls=002fefff [ 696.290969] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 696.297030] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 696.304251] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 696.310932] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 696.319909] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 696.328862] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 696.328897] reason=80000021 qualification=0000000000000002 [ 696.335108] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 696.338820] IDTVectoring: info=00000000 errcode=00000000 [ 696.342457] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 696.348946] TSC Offset = 0xfffffe85ce2d1036 [ 696.355786] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.361217] EPT pointer = 0x00000000a472701e [ 696.367871] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 696.452589] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.460633] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.468793] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 696.476953] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 696.485112] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 696.493295] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 696.501329] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 696.509480] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 696.516073] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 696.523770] Interruptibility = 00000000 ActivityState = 00000000 [ 696.530041] *** Host State *** [ 696.533624] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a4dff378 [ 696.539662] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 696.546341] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 696.554318] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 696.560269] CR0=0000000080050033 CR3=00000000a4140000 CR4=00000000001426f0 [ 696.567552] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 696.574406] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 696.580510] *** Control State *** [ 696.584490] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 696.591221] EntryControls=0000d1ff ExitControls=002fefff [ 696.596911] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 696.604037] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 696.610765] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 696.617570] reason=80000021 qualification=0000000000000002 [ 696.624054] IDTVectoring: info=00000000 errcode=00000000 [ 696.629552] TSC Offset = 0xfffffe85ca19ba34 [ 696.634167] EPT pointer = 0x00000000a37e601e 09:57:06 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:06 executing program 4: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x85b, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x400000000001, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x101fd, 0x40) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@remote, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@broadcast}}, &(0x7f00000003c0)=0xe8) getgroups(0x8, &(0x7f0000000480)=[0x0, 0x0, 0xee01, 0xffffffffffffffff, 0xee01, 0xee01, 0xee01, 0xee01]) getgroups(0x1b3, &(0x7f0000000400)=[0xee00, 0xee00, r6, 0xee01, 0xee00]) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x100000c, 0x104010, r1, 0x0) fchownat(r4, &(0x7f0000000140)='./bus\x00', r5, r7, 0x400) write$binfmt_aout(r2, &(0x7f00000015c0)=ANY=[@ANYBLOB="080122ff5d0200000e01000006000000690000000300000000000000000000008025b1787ebb653cca6e49b86d88e3ef9431a4a41cd6c337777765f2754afa934d3fab26f84b723e17d90b40fa85ec89f08f2ee3a00271f8c9ca15a15739d19ac329239c97fe18ad2718a1422d5820b79d5d986c7e73c26a6397ff1ebbcb2d81e84438b4e8a46e29dd14bba9990ed255c987218337a93a853027fa58da90e403cfa4ec63b4e3211af3d8b4a74fe4d8fe35033f5dc8de4beb5e0b15010000000000000100dd15ac9e0e11d800e38d3795bc704c9c41fedb153e8c222fc20fe06c962fb7e3bd81160a6310d0e5eaac2cdb274afa017772473f286fcf7fd600334329c941e56bf9c7776908133ac5f1d6545c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000be2c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b65f2ef5000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009e9cc6ed2d903d0e6f4c61874a14000000000000000000007674354bb1f7af4b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fdffffffffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000006db9b9cdefe90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000043a811da46eb199d5b0d7ac11f06d68cf07843ac546f419cff27623b6f65e0eebfb4427066741b065d13cf9146c5f12363137b0b24a2aeaf25b1ba07c5d847c4a24d1dd484e939ca0d295f1e40a1d1510f7eaee1c903f6e3b3740e59ef217253a02304285e7070811e9bf679f14924b7c5aef92af342d6a8cd25a1a2b926ab3e112b4318e818aff15cb8d02bb052d1e44130e5249e99d76ca4d27aa81eabe4c6f7f37d2032df7b4eba1fe83a3c4f27a43bc9958b8c75dfd4c484890b66a2731f6936879f17fc3127d47fcb9fdee7a394451027bf9ff1eb44fab8f790f69c9ada36f8034c627bfcda23152c7b6e228a935596afb29902c362be29f37031315eb0621e8f4939380dd608902b97c3ee61bfce2f1b9004bb72eda71e80a58bfcf24a9c102a45b819551d2668328b91e2ec563581c461562d3333a97673fde555199ec21cb16a8ea4602920a58c2d42cb02958dbc6cb8002939726ec149160f3f51bbb4c33d77f9b701107cdbdcc085e8284247467490d971e33864f5bc3ad5e582f39db5ee60aa4a161334045a19fe482831667e5741fbcf8b958e"], 0x899) ioctl$int_in(r3, 0x5421, &(0x7f0000000040)=0x7) setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f000074fffc)=0x3, 0x348) openat$full(0xffffffffffffff9c, &(0x7f0000000b80)='/dev/full\x00', 0x0, 0x0) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0) r8 = dup(r3) setsockopt$inet6_tcp_int(r3, 0x6, 0x20000000000002, &(0x7f00007b1000)=0x7fff, 0x4) setsockopt$SO_TIMESTAMPING(r8, 0x1, 0x25, &(0x7f0000000080)=0x116, 0x4) ioctl$sock_ifreq(r3, 0x8913, &(0x7f0000000c80)={'bond_slave_1\x00', @ifru_map={0xffff, 0x9, 0x9, 0xffffffff, 0xffffffffffff3a9a, 0x4}}) ioctl$LOOP_GET_STATUS64(r8, 0x4c05, &(0x7f00000001c0)) ioctl$TIOCLINUX6(r8, 0x541c, &(0x7f0000000440)={0x6, 0x5}) setsockopt$inet6_int(r8, 0x29, 0x5e, &(0x7f0000000100)=0x1, 0x4) setns(r8, 0x0) ioctl$int_in(r3, 0x5452, &(0x7f0000000000)=0x7) bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r3, &(0x7f0000e77fff), 0x2bd, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r9 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0xfffffffffffffffd) ftruncate(r9, 0x7fff) sendfile(r8, r9, &(0x7f0000d83ff8), 0x8000fffffffe) 09:57:07 executing program 2: r0 = syz_open_dev$usb(&(0x7f00000002c0)='/dev/bus/usb/00#/00#\x00', 0x826, 0x0) write$P9_RAUTH(r0, &(0x7f0000000300)={0x14, 0x67, 0x2, {0x8, 0x1, 0x3}}, 0x14) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/qat_adf_ctl\x00', 0x1fffe, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f00000001c0)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) mount(&(0x7f0000000040)=@sr0='/dev/sr0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)='overlay\x00', 0x10, &(0x7f0000000280)='/dev/video36\x00') 09:57:07 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000004ff0)={0x3, &(0x7f0000002fe8)=[{0x7fff80000000, 0x0, 0x4000000000401}, {}, {0x6}]}, 0x10) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:07 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fdatasync(r0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) accept$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4}, &(0x7f0000000100)=0x1c) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x0, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21]}) [ 697.890816] *** Guest State *** [ 697.894553] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 697.903674] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 697.912719] CR3 = 0x0000000000004000 [ 697.916493] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 697.923247] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 697.929895] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 697.936168] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 697.942361] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 697.949101] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 697.957382] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 697.965635] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 697.973925] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 697.982111] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 697.990185] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 697.998938] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 698.007121] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 698.015467] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 698.023652] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 698.031939] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 698.038403] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 698.046105] Interruptibility = 00000000 ActivityState = 00000000 [ 698.052553] *** Host State *** [ 698.055818] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a4bcf378 [ 698.062134] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 698.068643] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 698.076740] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 698.082891] CR0=0000000080050033 CR3=00000000a5200000 CR4=00000000001426e0 [ 698.089974] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 698.096888] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 698.103176] *** Control State *** [ 698.106690] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 698.113662] EntryControls=0000d1ff ExitControls=002fefff [ 698.119179] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 698.126402] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 698.133275] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 698.139909] reason=80000021 qualification=0000000000000002 [ 698.146463] IDTVectoring: info=00000000 errcode=00000000 [ 698.152103] TSC Offset = 0xfffffe84c9f61c00 [ 698.156490] EPT pointer = 0x00000000a669201e 09:57:14 executing program 3: r0 = memfd_create(&(0x7f0000000240)='/dev/autofs\x00', 0x0) mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x5, 0x11, r0, 0x0) syz_open_procfs(0x0, &(0x7f0000000180)='net/ip6_tables_names\x00') 09:57:14 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0xfffffed6) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f00000003c0)) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0x15, 0x1, @thr={&(0x7f0000000000)="37712c3d77af6bfd1907d034f5baa1f492f66732c7d3597c38b75acd5f16209574494fbe850f7f6f0596ffdebd37225f30ccb30400fc504cf0e61949ae2b342d0c05888526ba5dd8b20235d77ac813a1f55126028b8c019e24d78b3be1940ac18f41691651333eb2497e3e5f17fc8883bc09cebd6e027e44be6506", &(0x7f0000000080)="24d8924f8da376932a56519cc5db8b7fb8f682ff68bb5ab93cd75fe516aec6ad1fcccd45eac3eb4b0af3c8e2d79cc7a467906f04ffab39c09ad5a97d69630de1c9afb2e80a497077da4f7f574ddedfc0ac255896910a93aee18989657d23bbd94e5dd4afaa542d83acc7d515aec66b4c789eb60be1ddacc6bc9d01ab758fa8b62b831634b151c34054a7fe7685e8a9e27df4fcf6015adf0ca85002405b1fea68acb14a4fdac010efab2962c2ac93c94f673db44437b14607b64c7bbbfb0c2124db68dc320fdadb8220c541e5f383fb06d088ff2287"}}, &(0x7f00000001c0)=0x0) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) timer_settime(r4, 0x0, &(0x7f00000002c0)={{r5, r6+10000000}}, &(0x7f0000000380)) 09:57:14 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:14 executing program 4: 09:57:14 executing program 2: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x80000) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f00000001c0)={'bridge0\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}}) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000080)={0x0, 0x2, 0x4}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000400)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000a00)=ANY=[@ANYRES32=0x0, @ANYBLOB="ca0000007f876848e455c12dba01fd732fd811c18fbc407c32fb0c880d0ecd482af0a19c4fbcc657bfe382e37536e89f6a11cda3b00e37dc3565014620dab1a4eed043ab103df33931a345a4167effe79e65f72b65042b482c2baa15662f5f26a0635144e44ec6ced78aaab8bb9565e78865d8a44b1955746ef1db880c03cad27410c58aec6239c91c340e07bf0f2335e07ec4ce5c0349b43a24b66527eb521c092ce438073a1dc89750c819adbd415d9c2133c14b22db69badadf67e423c54ba26bfb5bfb5757e94cf8eb34365edb11c93098365524"], &(0x7f0000000180)=0xd2) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x1, 0x1, 0x0, 0x4, 0x80000001}, 0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000580)={0x401, 0x3, 0x4, 0x6b, 0x5, 0x100, 0x1, 0x4, r2}, &(0x7f00000005c0)=0x20) set_mempolicy(0x2, &(0x7f00000009c0)=0xfffffffffffffffb, 0xcc3) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x81, 0x6, 0x2, 0x2, 0x8000, 0x8, 0xffff, {0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x14}}}, 0x8, 0x6d9210ea, 0x3, 0x8, 0x4}}, &(0x7f00000002c0)=0xb0) ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000180)) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000300)={r4, @in6={{0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0x12}, 0x8}}}, &(0x7f00000003c0)=0x84) syz_emit_ethernet(0x39d, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000140)={0x0, 0x0, [0x3, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x9]}) 09:57:14 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000040)={0x1, 0xffffffffffffff9c}) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x25e, 0x20, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x541000, 0x0) 09:57:15 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00') 09:57:15 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = mq_open(&(0x7f0000000080)='-$\x00', 0x6e93ebbbcc0884f2, 0x0, 0x0) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r1, &(0x7f00000021c0)=""/4096, 0xfffffffffffffe5c, 0x20400001, 0x0) 09:57:15 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:15 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/null\x00', 0x5974acca180fef9, 0x0) sendmsg$kcm(r0, &(0x7f00000005c0)={&(0x7f0000000400)=@nfc={0x27, 0x1, 0x0, 0x5}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000480)="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", 0xfb}], 0x1, 0x0, 0x0, 0x40}, 0x20000000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) socket$inet6(0xa, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000001000)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000900)={0x40, 0x0, 0x0, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}]}]}, 0x40}}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000100)="66b91000004066b80000000066ba000000000f30baa000eddb8f05000f89ae6a660f3a22efa80f09f00fc709f20f1ab60d0066b93608000066b80000000066ba008000000f3066b9800000c00f326635000800000f30", 0x56}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x108) 09:57:15 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0xc0081, 0x0) ioctl$VIDIOC_DV_TIMINGS_CAP(r1, 0xc0905664, &(0x7f00000001c0)={0x0, 0xd1d, [], @bt={0x9, 0xea, 0x2, 0xb55, 0x6, 0x0, 0x10}}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xc, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:15 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x75b042, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000040)={0xce15, 0x0, 0x8, 0x7fff, 0x7, 0x10000, 0x7c, 0x2, 0x81, 0x0, 0x2}, 0xb) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:15 executing program 3: 09:57:16 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) setsockopt$sock_int(r0, 0x1, 0x3, &(0x7f00000002c0)=0x6, 0x4) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={r0}) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffff9c, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x7f, 0x20}, &(0x7f0000000080)=0xc) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000180)={r3, @in={{0x2, 0x4e23, @multicast1}}}, &(0x7f0000000100)=0x84) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x0, &(0x7f0000000380)={@ipv4={[], [], @broadcast}}, &(0x7f00000003c0)=0x14) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 09:57:16 executing program 3: 09:57:16 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = open(&(0x7f0000000040)='.\x00', 0x0, 0xc) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x7f, 0x7, 0xe, 0x4, "b473ddf4f14bc33253d75a6f28ad7ff6a9a5f3625cd507be1cae874fecbd9fa2f2922dcc0c5635df39d6fe0ea57ad5694421d5741d352ae743b548252c3bf4d4", "6d875a3fa34de6cd40a455c50a446f899b73379fc66614e90e7c784c03c2f862", [0x8, 0x4]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:16 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c12") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 706.490531] *** Guest State *** [ 706.494238] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 706.503436] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 706.512490] CR3 = 0x0000000000004000 [ 706.516259] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 706.523069] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 706.529647] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 706.536040] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 706.542239] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 706.548976] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 706.557202] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 706.565465] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 706.573702] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 706.581942] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 706.590000] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 706.598303] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 706.606541] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 706.614820] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 706.623017] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 706.631145] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 706.637877] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 706.645581] Interruptibility = 00000000 ActivityState = 00000000 [ 706.652124] *** Host State *** [ 706.655385] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a47bf378 [ 706.661430] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 706.668143] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 706.676177] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 706.682309] CR0=0000000080050033 CR3=000000016dbbe000 CR4=00000000001426e0 [ 706.689383] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 706.696325] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 706.702560] *** Control State *** [ 706.706052] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 706.712903] EntryControls=0000d1ff ExitControls=002fefff [ 706.718414] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 706.725554] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 706.732538] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 706.739183] reason=80000021 qualification=0000000000000002 [ 706.745924] IDTVectoring: info=00000000 errcode=00000000 [ 706.751428] TSC Offset = 0xfffffe803ce3e775 [ 706.756022] EPT pointer = 0x00000000a4d4c01e 09:57:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, &(0x7f0000000080)="0f20d835200000000f22d8660f102e654d0fc76bde66b826010f00d0c44141c23aa30f082ef346a7c74424000a000000c744240200700000c7442406000000000f011c24b9800000c00f3235000800000f30670fc75ebf", 0x57}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:17 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000000)={0x0, 0x401}, &(0x7f0000000080)=0x8) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f00000000c0)={r4, @in6={{0xa, 0x5, 0x5, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0xa}}, 0x24a}}, [0x0, 0x9, 0x6, 0x8, 0x6, 0x8df, 0x2, 0x6, 0x1, 0x8001, 0x3, 0x7, 0xdd, 0x9, 0x6]}, &(0x7f00000001c0)=0x100) 09:57:17 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c1f023c126285719070") socketpair$unix(0x1, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x0, 0x0, 0x0) pipe(0x0) socket(0x11, 0x80f, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @link_local, [], {@ipv4={0x800, {{0x9, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, @remote={0xac, 0x223, 0x3e8}, @local, {[@lsrr={0x83, 0xb, 0x5ef, [@remote={0xac, 0x223}, @multicast1]}, @ssrr={0x89, 0x3}]}}, @igmp={0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 09:57:17 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) kexec_load(0x0, 0x2, &(0x7f0000000040)=[{&(0x7f00000001c0)="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", 0x1000, 0xffffffff, 0xf6}, {&(0x7f00000011c0)="37859200cee4a180a2414a92f6f7433230be9d7d9184efd81245d40c5ede95bfc6434b56abf2e84e50e4c29d0aa2f3562081fb3293d23d643bd56e7f946d2bf9d7c15daec073fbfb130da8bb0fe13c24feb42900cc3d45fbf3171b2ccd3d8e83565245eed5dcfac5a479be96adce12eb9cc478c6ffeffcdcc009a29b1fae1414544348fefd4938917bd8019656fb51ec74fd6f5693983df1f9261d2662d2e7c009d61cb428d3868d729b0a501ed117b949dffea656a22a39d1377f3be7712060428f48f356f5c247c80ee48b95", 0xcd, 0x4, 0xd15}], 0x2) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) [ 707.252760] *** Guest State *** [ 707.256314] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 707.265544] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 707.274763] CR3 = 0x0000000000004000 [ 707.278536] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 707.285322] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 707.292040] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 707.298081] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 707.304436] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 707.311185] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 707.319467] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 707.327685] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 707.335974] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 707.344249] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 707.352502] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 707.360580] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 707.368787] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 707.376994] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 707.385231] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 707.393412] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 707.399885] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 707.407604] Interruptibility = 00000000 ActivityState = 00000000 [ 707.414046] *** Host State *** [ 707.417307] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a47bf378 [ 707.423506] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 707.429973] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 707.437960] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 707.444099] CR0=0000000080050033 CR3=000000016dbbe000 CR4=00000000001426e0 [ 707.451200] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 707.458068] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 707.464318] *** Control State *** [ 707.467817] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 707.474680] EntryControls=0000d1ff ExitControls=002fefff [ 707.480187] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 707.487364] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 707.494263] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 707.500891] reason=80000021 qualification=0000000000000002 [ 707.507411] IDTVectoring: info=00000000 errcode=00000000 [ 707.513062] TSC Offset = 0xfffffe7fd46f292c [ 707.517446] EPT pointer = 0x00000000a4c8901e 09:57:17 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c12") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:17 executing program 3: write$P9_RAUTH(0xffffffffffffffff, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) setitimer(0x0, &(0x7f0000000100)={{}, {r0, r1/1000+10000}}, 0x0) alarm(0x0) 09:57:17 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x0, 0x0, 0x400, 0x0, 0x0, 0xfffffffffffffffc]}) 09:57:18 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000005000)='/dev/sg#\x00', 0x0, 0x8002) ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0186415, &(0x7f0000000040)={&(0x7f0000ffa000/0x3000)=nil, 0x2000000000000cd6, 0x20000000, 0x88, &(0x7f0000ff5000/0xb000)=nil}) writev(r0, &(0x7f0000000040), 0x146) 09:57:18 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x11, 0x3, 0x0) socket$kcm(0x11, 0x2, 0x300) sendmsg(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@ipx={0x4, 0x80000001, 0x0, "0950fe4adba7"}, 0x80, 0x0, 0x0, &(0x7f0000000240)}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x6}, 0x2c) recvmsg$kcm(0xffffffffffffffff, &(0x7f00000038c0)={&(0x7f00000002c0)=@in6={0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000200)=""/22, 0x16}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/245, 0xf5}, {&(0x7f00000003c0)=""/61, 0x3d}], 0x4, &(0x7f0000001680)=""/154, 0x9a}, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x2b5) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000003840)=[{&(0x7f00000004c0)=""/158, 0x9e}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/98, 0x62}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/115, 0x73}], 0x5}, 0x0) sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f00000000c0)=@in6={0x31100, 0x0, 0x5, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x329]}}, 0x80, &(0x7f0000000340), 0x72, &(0x7f0000000380)}, 0x0) 09:57:18 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000240)={0x1, 0xfffffffffffffeff, 0x5, {0x9, @sliced={0x4, [0x8000, 0x4, 0x6, 0x1, 0xffff, 0x20, 0x3ce, 0x7f, 0x3, 0x8, 0x800, 0x7, 0x7f, 0x5, 0x100000001, 0xffffffffffff76b3, 0x80000001, 0xf4, 0x1, 0x7, 0x6, 0xff, 0xc936, 0x9, 0xffff, 0x80, 0x6, 0xf8, 0x200, 0xc664, 0x7fffffff, 0xe7, 0xe46, 0x3, 0x5, 0x1, 0x8, 0xa0f, 0x7, 0x100000000, 0x101, 0x1, 0x6, 0x7, 0x7, 0x9, 0x3, 0x1], 0x4}}}) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:18 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0xfffffffffffffffd, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000000000)=ANY=[@ANYBLOB="460000002fb163ce1a0fd9f9e13cbbadaf8c6f4ed239fd1ed5b7a6e5a971e6661da2468922fe7886e13b71846a5709a889ca1d5d9f91f6f80fbd6e280e77e19ce7230facc9ad0e830dee"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/snmp6\x00') ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000100)="574f58b925eea9dac3884d3edc03d88967d3a114dd5c6dde80da25be5a2548b18a38f9e7b0e3a897b5b7e0daa2b9e7d824e77549fd6ba6a9cbeba4516adfd3333ab889c12848df069eadfc96ae4dcea52d73a62b8239673405612734e2ab") 09:57:18 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c12") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:18 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getresuid(&(0x7f0000000100)=0x0, &(0x7f00000001c0), &(0x7f0000000200)) r2 = getegid() lchown(&(0x7f0000000040)='./file0\x00', r1, r2) ioctl$VIDIOC_TRY_ENCODER_CMD(0xffffffffffffffff, 0xc028564e, &(0x7f0000000080)) 09:57:18 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x82, 0x0) io_setup(0x9, &(0x7f0000000240)=0x0) io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="10000000f0ffffffff00000000855da0", 0x10}]) 09:57:18 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400218) r1 = socket$key(0xf, 0x3, 0x2) r2 = perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r3, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x2, 0x7, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 09:57:19 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) getpriority(0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:19 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c12628571") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:19 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001440)={0x0}, &(0x7f0000001480)=0xc) r1 = syz_open_procfs(r0, &(0x7f00000014c0)='statm\x00') ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000002c0)={0x2, 0x1, &(0x7f0000000380)=""/4096, &(0x7f0000000200)=""/29, &(0x7f0000001380)=""/144, 0x15000}) r2 = socket$inet6(0xa, 0x3, 0x6) ioctl(r2, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) rt_sigaction(0x9, &(0x7f0000000100)={&(0x7f0000000000)="c4a1f1697266c4c3856ddcdb0fd98b4d080000660f3a63b55212000008c4a189fc39c4827935469bc4a249aab332233333c461fde64cc700c421797e88feeffffff3490f2c0cd9", {}, 0x8000000, &(0x7f0000000080)="8fa810ec74dc6b00660f76248cc403797df8888fe878c2f1b890459ec40229397b00f044fe8000000000c4c119e27a02c4211d5451c9"}, 0x0, 0x8, &(0x7f0000000180)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 09:57:19 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x1, 0x300) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x81800}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="22002cbd7000fbdbdf2504000000240003005b4c5fe6e6a92c770800030000000000000800060005000000080006000100000008000400f8ffffff080004000800000008000500ad01000008000500ff01000014000100080009002c000000080001000a000000"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x4040010) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) r4 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0xfff, 0x2000) setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000380)=@req3={0x9, 0x1, 0xfff, 0x2f383fde, 0x9, 0x4, 0x5}, 0x2) 09:57:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x200000, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 709.756223] *** Guest State *** [ 709.759818] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 709.769041] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 709.778096] CR3 = 0x0000000000004000 [ 709.782022] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 709.788573] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 709.795304] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 709.801356] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 709.807546] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 709.814538] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 709.822750] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 709.830819] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 709.839046] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 709.847258] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 709.855495] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 709.863680] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 709.872099] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 709.880146] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 709.888424] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 709.896593] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 709.903225] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 709.910741] Interruptibility = 00000000 ActivityState = 00000000 [ 709.917185] *** Host State *** [ 709.920434] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a417f378 [ 709.926631] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 709.933326] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 709.941196] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 709.947391] CR0=0000000080050033 CR3=00000000a4706000 CR4=00000000001426e0 09:57:19 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x7ff, 0x400) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f00000002c0)={0x2, 0x2, 0x4, 0x484002, {r4, r5/1000+10000}, {0x2, 0x2, 0x0, 0x9, 0x4, 0x6, "ec6a8ce3"}, 0x4, 0x5, @offset=0x76, 0x4}) setsockopt$bt_BT_SECURITY(r3, 0x112, 0x4, &(0x7f0000000100)={0x8, 0x8}, 0x2) ioctl$VIDIOC_ENCODER_CMD(r1, 0xc028564d, &(0x7f00000001c0)={0x2, 0x1, [0x8, 0x7, 0x6, 0x0, 0x2, 0xffff, 0x400, 0x32]}) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) r6 = semget(0x1, 0x3, 0x0) semctl$GETNCNT(r6, 0x2, 0xe, &(0x7f0000000200)=""/97) [ 709.954622] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 709.961979] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 709.968127] *** Control State *** [ 709.971852] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 709.978575] EntryControls=0000d1ff ExitControls=002fefff [ 709.984352] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 709.991351] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 709.998311] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 710.005086] reason=80000021 qualification=0000000000000002 [ 710.011466] IDTVectoring: info=00000000 errcode=00000000 [ 710.017199] TSC Offset = 0xfffffe7e7d9362ae [ 710.021734] EPT pointer = 0x00000000a6c7601e 09:57:20 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bridge_slave_0\x00'}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000480)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="00401700100086cdb496abd2413a77ee66f490fb4600ba21caf2935f0000"], 0x1}}, 0x0) [ 710.884774] *** Guest State *** [ 710.888328] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 710.897417] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 710.906452] CR3 = 0x0000000000004000 [ 710.910223] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 710.916914] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 710.923587] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 710.929610] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 710.935803] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 710.942720] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 710.950763] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 710.958997] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 710.967188] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 710.975471] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 710.983662] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 710.992029] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 711.000228] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 711.008508] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 711.016675] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 711.024910] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:21 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x174) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) ioctl$DRM_IOCTL_CONTROL(r3, 0x40086414, &(0x7f0000000040)={0x3, 0x401}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 711.031379] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 711.039074] Interruptibility = 00000000 ActivityState = 00000000 [ 711.045491] *** Host State *** [ 711.048744] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a8fcf378 [ 711.055027] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 711.061498] FSBase=00007f2794fc2700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 711.069549] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 711.075716] CR0=0000000080050033 CR3=00000000a4706000 CR4=00000000001426f0 09:57:21 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c12628571") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 711.082983] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 711.089709] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 711.096020] *** Control State *** [ 711.099543] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 711.106437] EntryControls=0000d1ff ExitControls=002fefff [ 711.112088] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 711.119087] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 711.126053] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 711.133047] reason=80000021 qualification=0000000000000002 [ 711.139427] IDTVectoring: info=00000000 errcode=00000000 [ 711.145188] TSC Offset = 0xfffffe7e7d92c113 [ 711.149590] EPT pointer = 0x00000000a6c7601e 09:57:21 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x13, 0x80a, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) ioctl$DRM_IOCTL_AGP_INFO(r1, 0x80386433, &(0x7f0000000200)=""/116) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x290080, 0x0) accept$inet(r3, 0x0, &(0x7f0000000100)) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:21 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x11, 0x3, 0x0) socket$kcm(0x11, 0xa, 0x300) sendmsg(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@ipx={0x4, 0x80000001, 0x0, "0950fe4adba7"}, 0x80, 0x0, 0x0, &(0x7f0000000240)}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x6}, 0x2c) recvmsg$kcm(0xffffffffffffffff, &(0x7f00000038c0)={&(0x7f00000002c0)=@in6={0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000200)=""/22, 0x16}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/245, 0xf5}, {&(0x7f00000003c0)=""/61, 0x3d}], 0x4, &(0x7f0000001680)=""/154, 0x9a}, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x2b5) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000003840)=[{&(0x7f00000004c0)=""/158, 0x9e}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/98, 0x62}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/115, 0x73}], 0x5}, 0x0) sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f00000000c0)=@in6={0x31100, 0x0, 0x5, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x329]}}, 0x80, &(0x7f0000000340), 0x72, &(0x7f0000000380)}, 0x0) [ 711.322460] *** Guest State *** [ 711.326030] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 711.335119] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 711.344172] CR3 = 0x0000000000004000 [ 711.347983] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 711.354717] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 711.361260] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 711.367402] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 711.373614] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 711.380346] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 711.388569] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 711.396756] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 711.405154] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 711.413397] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 711.421441] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 711.429684] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 711.437898] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 711.446195] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 711.454408] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 711.462615] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:21 executing program 3: syz_open_procfs$namespace(0x0, &(0x7f0000000640)='ns/user\x00') [ 711.469083] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 711.476808] Interruptibility = 00000000 ActivityState = 00000000 [ 711.483270] *** Host State *** [ 711.486522] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a4fdf378 [ 711.492771] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 711.499253] FSBase=00007fbb5ed3a700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 711.507347] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 711.513432] CR0=0000000080050033 CR3=00000000a8f9f000 CR4=00000000001426f0 [ 711.520509] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 711.527426] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 711.533728] *** Control State *** [ 711.537241] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 711.544168] EntryControls=0000d1ff ExitControls=002fefff [ 711.549708] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 711.556898] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 711.563755] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 711.570393] reason=80000021 qualification=0000000000000002 [ 711.577025] IDTVectoring: info=00000000 errcode=00000000 [ 711.582684] TSC Offset = 0xfffffe7da06592fd [ 711.587055] EPT pointer = 0x00000000a4fca01e 09:57:21 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/igmp\x00') read$eventfd(r0, 0x0, 0x0) 09:57:21 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x42e00, 0x0) openat$vimc1(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video1\x00', 0x2, 0x0) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000100)) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 711.935125] *** Guest State *** [ 711.938626] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 711.947874] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 711.956885] CR3 = 0x0000000000004000 [ 711.960764] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 711.967545] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 711.974263] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 711.980294] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 711.986520] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 711.993385] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 712.001428] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 712.009661] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 712.017822] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 712.026036] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 712.034208] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 712.042384] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 712.050433] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 712.058584] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 712.066763] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 712.074917] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 712.081374] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 712.089046] Interruptibility = 00000000 ActivityState = 00000000 [ 712.095450] *** Host State *** [ 712.098704] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a4fdf378 [ 712.104866] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 712.111338] FSBase=00007fbb5ed3a700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 712.119321] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 712.125394] CR0=0000000080050033 CR3=00000000a8f9f000 CR4=00000000001426f0 [ 712.132622] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 712.139359] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 712.145566] *** Control State *** [ 712.149067] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 712.155909] EntryControls=0000d1ff ExitControls=002fefff [ 712.161411] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 712.168554] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 712.175394] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 712.182271] reason=80000021 qualification=0000000000000002 [ 712.188642] IDTVectoring: info=00000000 errcode=00000000 [ 712.194353] TSC Offset = 0xfffffe7da0653dea [ 712.198739] EPT pointer = 0x00000000a4fca01e 09:57:22 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x1, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r1, 0x0, 0x42, &(0x7f00000001c0)={'IDLETIMER\x00'}, &(0x7f0000000200)=0x1e) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000080), &(0x7f0000000100)=0xc) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x4e21, 0x7, @remote, 0x7}, {0xa, 0x4e20, 0x1, @mcast1}, 0x6, [0xc00000000, 0x39c, 0x100000000, 0x4, 0x80000001, 0x5, 0x1]}, 0x5c) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000400)={{0x8, 0x1}, {0x4, 0x8}, 0xfffffffffffffc00, 0x6, 0x2}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x413, 0x0, 0x2e7) ioctl$KVM_RUN(r4, 0xae80, 0x0) stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000580)={{{@in=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}}}, &(0x7f0000000680)=0xe8) fstat(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000740)={{{@in6=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@local}}, &(0x7f0000000840)=0xe8) r9 = geteuid() fstat(r1, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000d40)={0x4, 0x9, 0x4, {0xd, @vbi={0x7f, 0xffffffffffffff7f, 0x40, 0x31435641, [0x0, 0x100], [0x1f, 0x7], 0x13a}}}) r12 = getgid() lstat(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r14 = getgid() lstat(&(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r16 = getegid() setxattr$system_posix_acl(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000480)='system.posix_acl_default\x00', &(0x7f0000000c80)={{}, {0x1, 0x2}, [{0x2, 0x6, r5}, {0x2, 0x4, r6}, {0x2, 0x1, r7}, {0x2, 0x6, r8}, {0x2, 0x4, r9}, {0x2, 0x7}, {0x2, 0x4, r10}], {0x4, 0x1}, [{0x8, 0x3, r11}, {0x8, 0x4, r12}, {0x8, 0x0, r13}, {0x8, 0x1, r14}, {0x8, 0x6, r15}, {0x8, 0x4, r16}], {}, {0x20, 0x4}}, 0x8c, 0x1) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r0, 0x29, 0xd3, &(0x7f0000000380)={{0xa, 0x4e23, 0x100000001, @dev={0xfe, 0x80, [], 0x17}, 0x10000}, {0xa, 0x4e20, 0x3, @remote, 0x4bc3}, 0x40, [0x187, 0xffffffff, 0x3, 0x0, 0x0, 0x7, 0x2, 0x8]}, 0x5c) 09:57:22 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c12628571") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:22 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000000)={0x7b, 0x0, [0x40000071, 0x0, 0x1b], [0xc2]}) 09:57:22 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = msgget(0x2, 0x20) msgctl$MSG_INFO(r1, 0xc, &(0x7f0000000200)=""/173) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r3 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x800, 0x2) ioctl$sock_SIOCOUTQNSD(r3, 0x894b, &(0x7f00000001c0)) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r3, 0x40045730, &(0x7f0000000100)=0x8) 09:57:22 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x10000000000002, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={0x0, @remote, @dev}, &(0x7f0000000080)=0xc) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$EVIOCGID(r1, 0x80084502, &(0x7f00000000c0)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:22 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="020400000a0000000000090000000000030006000000000002000000e0000001000000000000000002000100000000000000000000000000030005000000000002000000e00000010000000000000000"], 0x50}}, 0x0) [ 712.857446] *** Guest State *** [ 712.861048] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 712.870349] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 712.879427] CR3 = 0x0000000000004000 [ 712.883362] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 712.889930] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 712.896704] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 712.902920] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 712.908956] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 712.915842] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 712.924026] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 712.932227] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 712.940258] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 712.948449] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 712.956795] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 712.964963] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 712.973546] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 712.981733] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 712.989787] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 712.998483] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 713.005113] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 713.012867] Interruptibility = 00000000 ActivityState = 00000000 [ 713.019172] *** Host State *** [ 713.022832] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a43bf378 [ 713.028886] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 713.035585] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 713.043610] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 713.049562] CR0=0000000080050033 CR3=00000000a4c86000 CR4=00000000001426e0 [ 713.056867] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 713.063774] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 713.069877] *** Control State *** [ 713.073647] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 713.080366] EntryControls=0000d1ff ExitControls=002fefff [ 713.086075] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 713.093304] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 713.100025] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:23 executing program 4: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/dev_mcast\x00') preadv(r0, &(0x7f00000017c0), 0x1a1, 0x0) 09:57:23 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c1262857180") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:23 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000680)='/dev/dsp#\x00', 0x6, 0x80000) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000006c0)={0x0, @in6={{0xa, 0x4e21, 0x401, @empty, 0x1}}, [0x8, 0x1, 0x5, 0xa3, 0x1000, 0x1ff, 0x0, 0x4, 0x3, 0xba, 0x100000001, 0x5, 0x20, 0x2]}, &(0x7f00000007c0)=0x100) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000800)={r3, @in6={{0xa, 0x4e23, 0x80, @remote, 0x40}}, 0x6, 0x7df, 0xe9, 0x0, 0x20}, 0x98) r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000008c0)='/dev/video36\x00', 0x2, 0x0) pipe2(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) epoll_pwait(r5, &(0x7f0000000340)=[{}], 0x1, 0xdcb1, &(0x7f0000000380)={0x80000000}, 0x8) ioctl$VIDIOC_TRY_ENCODER_CMD(r4, 0xc028564e, &(0x7f0000000080)) perf_event_open$cgroup(&(0x7f0000000200)={0x3, 0x70, 0xffffffffffffffff, 0x1, 0x101, 0x6, 0x0, 0x7, 0x1000, 0x1, 0x8000, 0x9, 0xbba, 0x8, 0x40, 0x9993, 0x7ea2, 0xfffffffffffeffff, 0x4, 0x8, 0x200, 0xc7b8, 0x14966125, 0x200, 0x2, 0x200, 0x6, 0x4, 0xfffffffffffffff7, 0x8, 0x8001, 0x400, 0x3, 0x70000000000, 0x3, 0x0, 0x8, 0x2, 0x0, 0x400, 0x4, @perf_bp={&(0x7f00000001c0)}, 0x20020, 0xfffffffffffffffa, 0x4, 0x8, 0x1, 0xffffffff7fffffff, 0x80000001}, r4, 0x10, r1, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) r7 = getpid() ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r6, 0xc1105511, &(0x7f0000000540)={{0x2, 0x7, 0x100000000, 0x8001, 'syz0\x00', 0x40}, 0x0, 0x140, 0x3ff, r7, 0x1, 0x6, 'syz1\x00', &(0x7f0000000500)=['%\x00'], 0x2, [], [0xb0f, 0x200, 0x1f, 0x8]}) sendmsg$nl_route(r5, &(0x7f00000004c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@getneigh={0x14, 0x1e, 0x30, 0x70bd2b, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r6, 0xc040564b, &(0x7f0000000100)={0x81, 0x4, 0x2016, 0x8, 0x8, {0x9, 0x4000000000000000}}) ioctl$FS_IOC_SETVERSION(r6, 0x40087602, &(0x7f00000003c0)=0x5) ioctl$VIDIOC_STREAMOFF(r6, 0x40045613, &(0x7f00000002c0)=0x80000001) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000400)={0x3}, 0x1) ioctl$TUNGETIFF(r1, 0x800454d2, &(0x7f0000000280)) [ 713.106878] reason=80000021 qualification=0000000000000002 [ 713.113407] IDTVectoring: info=00000000 errcode=00000000 [ 713.118917] TSC Offset = 0xfffffe7cde67fa93 [ 713.123502] EPT pointer = 0x00000000a433b01e 09:57:23 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000400)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000540)="000000700000000002a5d8b0e500008c0004d0aae442aa9eeac06fa5a5aa91c27306729dba142b6f04e4ff400d0a9a5cb7fff86a51b0902f5ea6510ddb8b087217ae6815a94fa4a6033870", 0x0) pipe(0x0) write(0xffffffffffffffff, 0x0, 0x0) fstat(r1, 0x0) read(0xffffffffffffffff, 0x0, 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x2000005) ioctl$LOOP_CLR_FD(r0, 0x4c01) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) 09:57:23 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x0, 0x7]}) io_setup(0x2, &(0x7f0000000040)=0x0) openat$vhci(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vhci\x00', 0x109000, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000540)='/dev/snd/pcmC#D#p\x00', 0x31c400, 0x4000) openat$rtc(0xffffffffffffff9c, &(0x7f0000000640)='/dev/rtc0\x00', 0x117200, 0x0) io_submit(r2, 0x0, &(0x7f0000000800)) ioctl$VIDIOC_TRY_DECODER_CMD(r1, 0xc0485661, &(0x7f00000001c0)={0x6, 0x3, @raw_data=[0x1, 0xc1a, 0x1, 0x4c1, 0xfffffffffffffffa, 0x80000001, 0xfffffffffffff000, 0x7ff, 0xffffffffffff8000, 0x5a, 0x2, 0x0, 0xffff, 0x3ff, 0x1000, 0x3ff]}) 09:57:23 executing program 4: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/dev_mcast\x00') preadv(r0, &(0x7f00000017c0), 0x1a1, 0x0) 09:57:24 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair(0xd, 0x80f, 0xfff, &(0x7f0000003640)={0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000003680), 0x0, 0x20000040) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r4 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x40c0) setsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f00000000c0)=0x5, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) r5 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x4000, 0x0) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1) ioctl$ASHMEM_GET_PROT_MASK(r5, 0x7706, &(0x7f0000000040)) 09:57:24 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c1262857180") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:24 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x800, 0x0) perf_event_open$cgroup(&(0x7f00000001c0)={0x0, 0x70, 0x6af4, 0x5, 0x7, 0x4, 0x0, 0x63b1908d, 0x40, 0x1, 0x3ff, 0x0, 0x5, 0x7fff, 0x1, 0x4, 0x0, 0x6, 0x2, 0x1000, 0x401, 0xfffffffffffff6c2, 0x3, 0x1, 0x1, 0x3, 0x9, 0x5, 0x2, 0x200, 0x2, 0x4, 0x6, 0x1abe000000000, 0x1, 0xff, 0x3, 0x1f, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000040), 0x1}, 0x41c4, 0x9, 0x1f9d, 0x4, 0x6, 0x3, 0xfff}, r3, 0xf, r1, 0x6) 09:57:24 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000280)=[@in6={0xa, 0x4e22, 0x7, @loopback, 0x80000000}, @in6={0xa, 0x4e22, 0x0, @remote, 0x1}, @in={0x2, 0x0, @local}], 0x48) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x20040, 0x0) fchdir(r0) ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f0000000040)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000080)={0xfffffffffffffff9, 0x2d}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:24 executing program 3: mknod(&(0x7f0000000180)='./bus\x00', 0x803c, 0xd00) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) mlock(&(0x7f0000005000/0x2000)=nil, 0x2000) read(r0, &(0x7f0000000280)=""/132, 0xfffffe73) 09:57:24 executing program 4: r0 = socket(0x1e, 0x5, 0x0) bind(r0, &(0x7f0000afb000)=@generic={0x1e, "01030000000000b9000000004700000000a979f321b30c7bc8790405c7bad62e0a63a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb3151d24acef1f1622ca5bdb9c8ea31000077aeb81c90001d6d7c980400000000f70dc136cb184a"}, 0x80) r1 = socket(0x1e, 0x5, 0x0) sendmsg(r1, &(0x7f0000316000)={&(0x7f0000dd7000)=@generic={0x10000000001e, "01000000000000000c000001e526cc573c5bf86c483724c71e14dd6a739effea1b48006be61ffe06d79f00000000000000076c3f010039d8f986ff03000000000000af50d5fe32c419d67bcbc7e3ad316a198356ed0008341c1fd45624281e27800ece70b076cf979ac40000bd767e2e78a1dfd300981a1565b3b16d7436"}, 0x80, 0x0}, 0x0) [ 714.635170] *** Guest State *** [ 714.638736] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 714.647986] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 714.657059] CR3 = 0x0000000000004000 [ 714.660825] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 714.667553] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 714.674289] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 714.680313] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 714.686536] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 714.693463] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 714.701512] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 714.709748] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 714.717929] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 714.726124] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 714.734372] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 714.742536] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 714.750587] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 714.758780] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 714.766951] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 714.775139] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 714.781755] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 714.789277] Interruptibility = 00000000 ActivityState = 00000000 [ 714.795786] *** Host State *** [ 714.799038] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a6ddf378 [ 714.805545] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 714.812203] FSBase=00007fbb5ed3a700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 714.820072] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 714.826238] CR0=0000000080050033 CR3=00000001ce086000 CR4=00000000001426e0 [ 714.833482] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 714.840231] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 714.846614] *** Control State *** [ 714.850125] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 714.857060] EntryControls=0000d1ff ExitControls=002fefff [ 714.862729] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 714.869712] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 714.876705] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:24 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0) fchdir(r0) r1 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r1, &(0x7f0000000080)=""/176, 0xb0) 09:57:24 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f0000000000), 0x4) syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd60b4090000032f0006000000000000000000ffffe0000002ff030000000000000000000000000001830090780000040060b680fa0000000000000000000000000000ffffffffff00000000000000ffffac14ffbb00000000"], 0x0) 09:57:24 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x4) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) write$P9_RREMOVE(r2, &(0x7f0000000100)={0x7, 0x7b, 0x1}, 0x7) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) [ 714.883484] reason=80000021 qualification=0000000000000002 [ 714.889848] IDTVectoring: info=00000000 errcode=00000000 [ 714.895546] TSC Offset = 0xfffffe7bdae41067 [ 714.899922] EPT pointer = 0x00000000a6db201e 09:57:25 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) fdatasync(r0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) pipe(&(0x7f0000000040)) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f0000000000)="650f015d97baa000b8f9d8ef360fc72b0f01c965f20f1a7060eed9f5b87c000f00d8f30f225266b93008000066b80090000066ba000000000f30", 0x3a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:25 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c1262857180") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:25 executing program 3: r0 = open(&(0x7f0000000000)='./file0\x00', 0x41, 0x0) fremovexattr(r0, &(0x7f0000000040)=@known='user.syz\x00') 09:57:25 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000000)={0x180000000000000, 0x1000, 0x7f, 0x4, 0xd}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:25 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000000)={0x7b, 0x0, [0x40000071, 0xff00000000007900, 0x1b]}) 09:57:25 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(0xffffffffffffffff, 0xc028564e, &(0x7f0000000080)) r1 = shmget$private(0x0, 0x1000, 0x80, &(0x7f0000ffc000/0x1000)=nil) shmctl$IPC_RMID(r1, 0x0) 09:57:25 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp6\x00') preadv(r0, &(0x7f00000008c0)=[{&(0x7f0000000240)=""/231, 0xe7}, {0x0}], 0x2, 0x0) 09:57:25 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:26 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0) ioctl$VT_ACTIVATE(r2, 0x5606, 0xff) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:26 executing program 3: r0 = syz_open_dev$adsp(0x0, 0x8003, 0x0) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) epoll_pwait(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x8001, &(0x7f00000000c0)={0xfffffffffffff1d8}, 0x8) r1 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x0, 0x3ef, 0x0, 0x3f00000000000000, 0x500, 0x1000000, 0x1103, 0x0, 0x0, 0x0, 0x3f00000000000000, 0x6]}}) connect$l2tp(r0, 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, &(0x7f0000000300)={@local, @empty, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'ip6gre0\x00'}) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x5) gettid() getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000440)=ANY=[@ANYBLOB="00000387f35211bceb56eeb637a4438bb607000000000000003f02000000271438fde83b67cbd5da990437c51980b4671ef7a6747bbd2a68583f3d9e6e148525ba8901f76c65b34024bcaba5e25bea37ab2f35202fced03bd46609d3622ce72c8469c8463fcb590046f2907ef3851cebfe67dcfa3500007c8c532136e04fa9000077d0df6660509b19e2469b97440000000000000000"], 0x0) fcntl$setown(r1, 0x8, 0x0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000000)=ANY=[@ANYBLOB="24000000c4d2396ac2ba4571ebc075818d59197c3ef0dde4d733eb0a38d146a340fb4755a1991ea1"], 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, 0x0, &(0x7f0000000400)) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f00000015c0)="766574683100000000ffffffffffef00", 0xb) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getown(r3, 0x9) socket$inet(0x2, 0x4000000000000000, 0x7) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000300)) 09:57:26 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={"6e72300100", 0x2}) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000100)={0x2, &(0x7f0000000000)=[{0x28, 0x0, 0x0, 0xfffff000}, {0x16}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0xee0, 0x280000) ioctl$VIDIOC_DQBUF(r2, 0xc0585611, &(0x7f00000001c0)={0x4, 0xd, 0x4, 0x100000, {0x0, 0x2710}, {0x3, 0x2, 0x4, 0x9, 0x0, 0x2, "d43f5fc6"}, 0x6, 0x2, @userptr, 0x4}) ioctl$RTC_VL_CLR(r2, 0x7014) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) ioctl$VIDIOC_ENUM_FRAMESIZES(r3, 0xc02c564a, &(0x7f0000000100)={0x3, 0x347b5756, 0x3, @stepwise={0x5c, 0x8, 0x4, 0x3, 0xf22, 0x21e9}}) [ 716.417467] *** Guest State *** [ 716.421020] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 716.430323] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 716.439514] CR3 = 0x0000000000004000 [ 716.443393] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 716.449928] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 716.456587] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 716.462741] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 716.468773] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 716.475620] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 716.483798] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 716.491996] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 716.500080] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 716.508253] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 716.516397] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 716.524544] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 716.532703] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 716.540756] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 716.548916] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 716.557041] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:26 executing program 4: [ 716.563638] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 716.571153] Interruptibility = 00000000 ActivityState = 00000000 [ 716.577536] *** Host State *** [ 716.580777] RIP = 0xffffffff812cfa68 RSP = 0xffff8880aafcf378 [ 716.586992] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 716.593597] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 716.601482] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 716.607677] CR0=0000000080050033 CR3=00000000a66a2000 CR4=00000000001426f0 [ 716.614912] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 716.621772] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 716.627963] *** Control State *** [ 716.631460] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 716.638370] EntryControls=0000d1ff ExitControls=002fefff [ 716.644013] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 716.650988] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 716.657856] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 716.664649] reason=80000021 qualification=0000000000000002 [ 716.671012] IDTVectoring: info=00000000 errcode=00000000 [ 716.676673] TSC Offset = 0xfffffe7aec8d6b00 [ 716.681066] EPT pointer = 0x00000000a203a01e 09:57:26 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:26 executing program 4: 09:57:27 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair(0x11, 0x4, 0x1f, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000000040)={{{@in6=@mcast1, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in=@broadcast}}, &(0x7f0000000140)=0xe8) fstat(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ATTR(r4, &(0x7f0000000380)={0x78, 0x0, 0x8, {0x8, 0xfff, 0x0, {0x1, 0x3f, 0xff, 0x81, 0x1000, 0x800, 0xf07d, 0x2, 0x7ff, 0xf286, 0x200, r5, r6, 0x8, 0x8616}}}, 0x78) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r4, 0x111, 0x4, 0x0, 0x4) dup3(r0, r2, 0x80000) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:27 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x301200, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 717.414200] *** Guest State *** [ 717.417548] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 717.426686] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 717.435777] CR3 = 0x0000000000004000 [ 717.439546] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 717.446428] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 717.453168] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 717.459190] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 717.465444] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 717.472312] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 717.480349] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 717.488598] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 717.496776] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 717.505055] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 717.513253] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 717.521282] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 717.529627] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 717.537817] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 717.546045] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 717.554230] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:27 executing program 3: [ 717.560702] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 717.568471] Interruptibility = 00000000 ActivityState = 00000000 [ 717.574881] *** Host State *** [ 717.578124] RIP = 0xffffffff812cfa68 RSP = 0xffff8880aaf3f378 [ 717.584456] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 717.590926] FSBase=00007fbb5ed3a700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 717.598959] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 717.605049] CR0=0000000080050033 CR3=00000000a8fe9000 CR4=00000000001426f0 [ 717.612335] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 717.619051] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 717.625307] *** Control State *** [ 717.628871] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 717.635696] EntryControls=0000d1ff ExitControls=002fefff [ 717.641209] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 717.648323] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 717.655307] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:27 executing program 4: [ 717.662105] reason=80000021 qualification=0000000000000002 [ 717.668494] IDTVectoring: info=00000000 errcode=00000000 [ 717.674250] TSC Offset = 0xfffffe7a5b2dad12 [ 717.678624] EPT pointer = 0x00000000aaf1401e 09:57:27 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x1, 0x0) ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f00000001c0)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000100)=0xfffffffffffffffd, 0x4) openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000340)={'security\x00', 0x4, [{}, {}, {}, {}]}, 0x68) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000280)="49a3e984f35149ad30892745f1401595c6cd80daa49765969b33e7b81e5843d2a6dbf9e5931bdde3db07037ffa07c6e434d4ee72d26bc5464f74919ce6a59a2e15c8f1c59e9911b19a0b73967e8510d816bb231c63fe351be28bcd4271fd1e7de1ba02cd76a587d69121396567bfe6cccfbc89089aefd50fc6c63a1bb6730b8f7bac6370289b9ec43cdd1f1608e081c7") 09:57:28 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:28 executing program 3: 09:57:28 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f00000001c0)) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:28 executing program 4: 09:57:28 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffffffffffc) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:28 executing program 3: 09:57:28 executing program 4: 09:57:28 executing program 1: r0 = socket$inet6(0xa, 0x20000000000000, 0x5) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x100, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x100000001) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x200000000000000) r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000080)='fou\x00') sendmsg$FOU_CMD_GET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x50020100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r5, 0x2, 0x70bd2c, 0x25dfdbfe, {}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e24}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x2b}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc1}, 0x0) fcntl$setflags(r0, 0x2, 0x1) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:28 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000002c0)) r3 = dup3(r1, r2, 0x80000) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x8}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f00000001c0)={r4, @in={{0x2, 0x4e22, @remote}}}, &(0x7f0000000280)=0x84) fcntl$setflags(r0, 0x2, 0x1) [ 718.958891] QAT: Invalid ioctl 09:57:29 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000001740)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040)='W', 0x1}]) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:29 executing program 3: 09:57:29 executing program 4: 09:57:29 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") getsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000740)={@empty, 0x0}, &(0x7f0000000780)=0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000006c0)={'lo\x00', r1}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x800000000000000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ppp\x00', 0x800, 0x0) ioctl$TUNGETVNETHDRSZ(r5, 0x800454d7, &(0x7f0000000680)) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socket$inet6(0xa, 0x7, 0x4d8e) ioctl$KVM_HYPERV_EVENTFD(r5, 0x4018aebd, &(0x7f00000000c0)={0x8001, r5, 0x1}) r6 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x7fff, 0x101000) ioctl$EXT4_IOC_RESIZE_FS(r6, 0x40086610, &(0x7f0000000380)=0x100000001) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000080)={0x8, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {0x0}, {}]}) ioctl$DRM_IOCTL_UNLOCK(r6, 0x4008642b, &(0x7f0000000100)={r7, 0x8}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f00000002c0)={0x0, 0x10001, 0x5, &(0x7f0000000200)=0x1}) openat$full(0xffffffffffffff9c, &(0x7f0000000400)='/dev/full\x00', 0x402000, 0x0) r8 = dup3(r4, r4, 0x80000) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r6, 0x84, 0xf, &(0x7f0000000440)={0x0, @in6={{0xa, 0x4e22, 0x9, @mcast1, 0x5d}}, 0x1, 0x1, 0x3f, 0xffffffffffff8000, 0x5}, &(0x7f0000000500)=0x98) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000540)={r9, 0x6}, 0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) socket$kcm(0x29, 0x5, 0x0) accept4$packet(r6, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000001c0)=0x14, 0x80800) write$P9_RFLUSH(r8, &(0x7f00000003c0)={0x7, 0x6d, 0x2}, 0x7) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r6, 0x84, 0x1a, &(0x7f0000000580)={r9, 0x51, "a3f7d2e3bb8300bc533756b5636365b992a6111849afdc59743d952b30dd4601eeadbc545ae407224a39d3bda656c45ce32adae270a3adc1ffc8d9a2e9525579db55467af7cff0815062e235a66039c092"}, &(0x7f0000000600)=0x59) [ 719.275780] QAT: Invalid ioctl 09:57:29 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r2, 0xc0305616, &(0x7f0000000040)={0x9, {0x9, 0x8}}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x4) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 719.536061] *** Guest State *** [ 719.539449] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 719.548556] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 719.557578] CR3 = 0x0000000000004000 [ 719.561350] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 719.568094] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 719.574863] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 719.580891] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 719.587118] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 719.594011] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 719.602269] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.610311] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 719.618580] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.627024] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.635224] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.643486] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 719.651538] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 719.659788] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 719.668106] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 719.676360] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:29 executing program 3: 09:57:29 executing program 4: [ 719.683063] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 719.690565] Interruptibility = 00000000 ActivityState = 00000000 [ 719.697233] *** Host State *** [ 719.700575] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a48bf378 [ 719.706815] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 719.713406] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 719.721262] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 719.727411] CR0=0000000080050033 CR3=00000000a38c7000 CR4=00000000001426f0 [ 719.734607] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 719.741357] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 719.747746] *** Control State *** [ 719.751266] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 719.758226] EntryControls=0000d1ff ExitControls=002fefff [ 719.763901] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 719.770891] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 719.777884] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 719.784674] reason=80000021 qualification=0000000000000002 [ 719.791047] IDTVectoring: info=00000000 errcode=00000000 [ 719.796714] TSC Offset = 0xfffffe796ad28707 [ 719.801081] EPT pointer = 0x00000000a775801e [ 719.825891] *** Guest State *** [ 719.829339] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 719.838483] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 719.847492] CR3 = 0x0000000000004000 [ 719.851271] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 719.858042] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 719.865174] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 719.871214] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 719.877466] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 719.884351] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 719.892654] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.900682] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 719.908880] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.917091] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 719.925342] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:57:30 executing program 3: [ 719.933574] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 719.941791] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 719.949818] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 719.958079] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 719.966305] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 719.972981] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 719.980508] Interruptibility = 00000000 ActivityState = 00000000 [ 719.986985] *** Host State *** [ 719.990253] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a39ef378 [ 719.996402] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 720.002976] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 720.010831] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 720.017045] CR0=0000000080050033 CR3=00000000a493f000 CR4=00000000001426f0 [ 720.024483] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 720.031238] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 720.037612] *** Control State *** [ 720.041124] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 720.048064] EntryControls=0000d1ff ExitControls=002fefff [ 720.053700] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 720.060696] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 720.067716] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 720.074524] reason=80000021 qualification=0000000000000002 [ 720.080893] IDTVectoring: info=00000000 errcode=00000000 [ 720.086625] TSC Offset = 0xfffffe79332f55f0 [ 720.091010] EPT pointer = 0x00000000a6a4f01e 09:57:30 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:30 executing program 4: [ 720.355032] *** Guest State *** [ 720.358564] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 720.367724] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 720.376745] CR3 = 0x0000000000004000 [ 720.380518] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 720.387292] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 720.394006] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 720.400041] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 720.406292] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 720.413193] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 720.421246] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 720.429492] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 720.437654] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 720.445827] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 720.454099] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 720.462363] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 720.470407] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 720.478742] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 720.486903] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 720.495116] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:30 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x40401, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r0, 0x40045731, &(0x7f0000000080)=0x7fffffff) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0xa3ccdd1aec065e8f) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, &(0x7f0000000380)={0x3, 0x0, 0x2080, {0x1000, 0x2000, 0x3}, [], "f836050fdc3f9ca4286a7c476baf0e5458f5070ff11058641d1e593914f418917ef650e2cdde0aee3b9a7c9e10977165265683fc52f5067a9c37de04b61909024d282dbfe59f1f00b9a724d9f0ea141c9a88eea5db593232b8736d1c72bd74f61781ddef6febf9fd7e613143d66ef2c01eee27caa0664c7f90f26d3b6845e43e9668829a81d3ea3864b5780b11bdef7f1a1ebfdb14fe5e5ea3f99503ceb48537fa6c834178b2bfb6e7414f8657b95317a7d9008ccdb89718b65d3304064a82e6750c70883a7aa180a90557566b02af82747648cb831a882bba0b15c70341d543c59955fae226110c18ac455d0c359c69d0d308e80c2da4cebbfe0e6a75d9774aae6ac0a195f3c6541f7b243754c48081fec873760cfed18f8b2d6019020b798a548aec6ed1f32ae73297f8df3b15f8e646cde9fc21125101ff18bc347f922acb2e7d0eea04df73b298d0288b0b5fdffb70450a01a72121fb07b486fee94ae409e034f765e3583090ec41276360f24aceeb12c36ef1f523344a8a2e125f4ac7f8afb5c87b826bac138cb2bf1b77454cb5d067f850c22229683a0f260be451962ddff9c63e1c34d7e9c0203c30fca305fe3c72165d48072bf1b30b3a14bff7e6945e60daa24aa65bc239dc1c54c4f5c574e252394b726f2f6ca5e631a150ef6b5dfc68864e12ccbdc9a53569bb68c2ff1371611b70f6cdd45d2ed061947ff245148e093c8768b4ea0ccc789aca3d4ba5db6fcb6b3936e32ed2be283ba29151397a8c721b47ae684637f6642290f7adcc56ba5d61ecd995bb7bd10b978fd3b8bb2ea59027353f1963babc42c632ed5e15a1e88625f0702adf0bc3bcd27caa8285d7327554e64044c5496584fbf2adf79f3cfee743e9753cbd4dae457b3c577884c9c43cf4914cfce35fcec6293fa9d1afed4f33b11a7088e6494a6bb6753580489adefd27ddf0e222e30f5fe816f6f96e31b6ce9ea2974f668f5c2d3dafee70991d7f196285494204aa52e44f1083b2b80483862b7b089625ecb5a7188499a9335cdc64ecbb1f5ca894221ef1425e3f6e867bbb449b4d712a60c23b393870eef9fa7ff4a29322b683bc9e7e57b94ed309ecee8f950a40ffcda169007da015bf311ae7df53a5b3d763d7d7157ea6a541d4adf1d43e9e62379301430b2c26d2ccf092f010584313eba1d3281769a3c570228c02ad793462e3e81fb8caac3c0c64a8c40ca927bae3377efe86e8f327402a03839fa5ec60e512d45176c59dfdfe2782f3c7eb5615dc9f23efe4a725b6514f5fcb96ad3915a49dfee3788afaa8d1d49cde6b5d1eb5fae43b7f1a72f7c2d4157cb8e0e8ffcfff12dd2a98955dd161da024e65ad3382fac8df53d084909da2393f842f4388537b6d764f3481f7ae5b4aaa68ba4b01ade7b5a9b29e74c38fc9e65f04c3d4b5afde49c4e3a34829d694f56d4d7f41fa61cf245aea81ff6b36db75ed366d9552eb9b4da736c7d89316b03467684dc931dfb19cc2067e85544196db34136d212bc615e34409be09b7ce95109ed0167722516b1f003937adc795e8d2e062f30b804f11e748d0a489abe8950a85b1953e35e1e84df0b5975295e987b140179077e25e9e12093d26c28b85797aa58ff6bbed9ac92b49cab5985694abca7d3d5128d72faa971bf5fb7c37f86f0d7e055cbee2782f0857ba253ebde807e7758564914d8ee0daefff3beceea1445aecae2d35cf4014c55c42ae93880bc901170136a996a9beb8158e984cc0e816260204c124d5d4505ecc44165dc0a1800a38f99b6b667136cefef31e54eaf81011813d02ebb2a691012cd4428c5e1fcf0227231c1ee491b036b4b718bfae59a775936c4fcf1b9c2da0f7fa1b16e917c96839ebee79453976d68878ad960aeeebc937107859dd4a22bd776627b04c160e0496198c5a1370c29580c37470e53783e2cd6056969fa20594a4e64efb43f9bb9ff773402a4976e0b6ee59b514f3aba9b8cb28f7e31d953602e9e152a46930c74d289663355a4fd15c2c8dd6e2bf28619b5c6d4daa6ceb1b4b6b430c641ffc69929980b2d5f2455c18271085d17ac94cafac822e8c4c31c55ed876e72f142fcb47dd8c541a96b453e916d2074c9086324cf5deec8cbe7349e2a7fa36be03123875f299b2fa3a79724e4245cf110692751ce9a357b9216055714d18661517be0d8cca612602bbb2b86e2bc46a9f5ec0fad1508cd14fa0df5a9089843ba95c5193e6fac2b0d8239609a3ef2c7b12c5446274d1f336ef272cee1f8927ec7026d3d44acefbe52d09bb93e7a11bae5186e00b7b52155b86bbe2951d8001c3dfa6c0ad70183af6a9813bf0accb6bbfe212f42e2308443c710afa13a3bc6ddf0a568986decc384922aa33787a0ba8ea0973ff41651e3f0d8686c56fd295633a9d77a7fa42fe5079cdf97dd3631b0fcdb84db507ee432fbee8b6db934dcdbe631abb017a8dc73cf910eaea43cf9bff3873b58da970d7d44742b45fdf9db3cc6b5ee13b51af894607c4bc680b64d7a3776eb77220b67a4e5795736981ca0967838cf90d7aeba14d35a448013a4570890554b65b18fa3bf896f542d07714b1da58f2ab28c111d2863567f85e97701f22d1fc91737795ebbbe786ac73f5d6e7068a3cb4454f9a6e6c5f9c615dfaec13a77cd66936e55688d0e698d49abcc0bce3a70d7155e2329e6e3340186c1949d498c072394e3540dd68091145afdbe8a6e782a8f9db5d680ef6be81aa80d19b1b6a03e9f84253bdee4592266dccf1f0e1325836208103d87faa9921f6495aef9509d41fd5fa89c8a254e61970fe1277496a0b10b20955fe61845a085f979182a683d356c565ba46b5be2017a620ec2db0eea4a1a47cdbd2073a0aa19186bc0c2a8aae2a8642d7ae1dd7f073afd7b376a8e408976a2005b9362d2449dbd082a9da8e39fe5646bd266dd0da81d60d6013bb58b8198482a3f68690122caa96b98ee7b926e979dd74b7f0bf13f3db41413f6b56e1d40fc9e86a2e9db521ff1fc2371bb71790cf2962383ec52580fdb6cf480579bd939577c3b0b7afd3a24a8c09e885268305ce6b2733bf6fbdd41f72fda3ce10411dc3cc352f038e402da74e52cb1422f947ed5c502e5b45e6e5ad98a05ac308db29bdcd8c21b8d4739be201b3920b8f84de172bfc56eedb3155038c67daf059e97be0826ba20298fe685460aadde2094c1d05e02d5d439df56402723a4eef858e2ae04b43877efee1ca4a1e9bf8d59bf817a1e5e1f91115c191660158516f642725d28185d5fe97a5e9f1823acf86769c554c710e49e9f516da256e1d50673da8f400d0d3846267e1c46b19ddfb12f4cb6da72ef37acbcdd2c68c89336d5b53170725ca8dfefdf784cf5be6a618e2e2c498472f8063b98633298b81e9cb9f9f43109e49140486736a6e8138fb3fd10bce73eeae71ffa84ea51572c2a1bbc2de192e2d907cfab9f4d7b633b6e21cc59f0dd3903b6220ebea14eda09c253ad19f5fae8c3cf6be9abbe24742a885b4023fde4560a32315f29f6d47369ec16f75b29df534f95e9bc4211b4ac21dd53b72b1cb23c915c2480a0caa4317304951c464b246f962493c53011ea0e5d30e55b9f36f876c330832cd11254e963b0f7c2a2dd21899a4bd61a4ab36b8dac1f0ee5b4484fd205c49272ae5b015e703fa843a92874f5fa16f6fcd43fd7672b6f1c3d33b936d5aba168843827e87e558478deab7956fea8300fab5d56f644d48965df7097e9e4afc78aad5ee6b33a70f5d4ffdea792eb84ce9b691ddd00ef90d2ac359d89d99565c6f82d460f4407be14bb7988a2453f692a5f88fba7b4fab2c508874e8c7920ba2476db9cde8b3f874f54e72a6731c9d79a591bea10c130c63d440f1e82f2ed7ee753583c03bdffe11f18b2ec0d274bd2353dbc5c541b7d440864796f8b86c605b2c1e0a82f63abdbfc0a34cb4cf8eeffe45c6d64a3951926afc5e74beab9fa24990a4823ae6cc38862ed15d941c2c54f955c10640ac084f4acd1a0cae0ce94495faab3cd6013944429be14745bf647f8bfe4bc0284d047692e1dc8e87b08c2f8dffb20dc2a8ffe8ac05e149626574b99d429587244cc8a680501c28e2ce3655cb7c110f7667d665a59906c21f2f501fcfd276417ad75db6e2dfe4c69a40c6a0c695d2aca7b8f57d175e920001cd9d6a29e1d2e9b525605a59dd5eab64f8cc81e90c71c6618107d9df99abdc8cf0ec5c99a044643d9d44999f8dd830363fba4b1ddc5f17f1ca9795f52e73e035f9ce77ecf3fba9ee2ebc18f951c396fd33c1232f22fb296adbb47a75fb4925af26e6fcdd55e613e23829f1a0dc864359885fc9521f30b0eb37daeeb7a5cdfdd36c38dc99082a6064812975be3a31113cda7ccf780e48607488e3a611ba42cda9a341e3a331bfcd5820c356197d0e931368887a42d408586a6c6435bfe4a64140cda9ee78c953b42b628dd3f702bed4b9e9d1a8c2cf0fa6ad73e304b5fc7b4afbfb67db132d21bd452e42975594f54a461c4fac68f7fd5bf290bf61b06719774de9a06810366216a91d2bab6edb32cd946f275881b22454683c0ab8a1e6c71541d3e24f81e3c14735c5ce4f6f3c90b55a2a3ae9d4447633d0714454f7ef8ac3a965f70735d46d3de7ffc4a5bfb9874b7dcf502be76ec75c9d2eaa9d63b0ea4dba502a54c827b2b6a4ba87e1cbfe7031ec423288434a0fb4fb95319de7ee4f2cb67525d86fe3ddd1bdfe443dc2f897b62d01442752cf8cea9b447f3a664968f1e4b197a02353d40ea22b5c232d58513b8515049c10c13c41c492dd8317bdcac362a15887c008aa5291bcffcf311d5964ede070f37e1d4b8d9af79b1402c96053f1e53ecafd83d65053b5c32ed2cf082a57e43ffdd6bf6af7be7f72843337dc3a09aa9bdbaab4b726a9f70652428df5a027da192d67c34325bfa906d7b0502594320928c49b173949a130e38a09bd0faae47829aecc93f237ae0b2b74e975feafe5ab490abc4b85f00a2d282733dcb525046f06be9c078015f5dc7cdb0452ba89181b3a790cb9587d81fe88037bc25c4e4687d1136039ed1337ab93667a77dbfc22d99ecb2888af4d51402fd12bbf1e866b71c142b5ceface9c55943a6b36d8ccb0fb79311a4d787a19575c798c29df6525a6d4c7c31f7c3eea57a6d21e767d01616c11e1f2f6d51e7aed847d5f9d00234bc16baaa6f0b9968a6baab774ff1a2cd125bd0afca97db00fc36c594e33da9d2d6db5b6d946e44ad8365cd4e8149db2ce98c7e22f968cc21881d68c0142caefa39225ddafb20c22920e2cc637e8ce366ed1c892f6ba776f874d7dfeda6f24de7d04b1eb94aabee7bd8535988784080aa54c533cdbed503866f0a38008dec045cb3557b202b9a77881ca8ed98e4d53030ea4d716f5ff1e2a332088ebb6361f4ff94074bc2c300ec0ba8bb729ea42d79d2228d653f6228023d906fb03a30a2c35265dc2730f9ebb7fbf969427c0b583c7ec6378f617230be1ce60fb54f3f381569c002660a0e2aa16a8c4f5c02a77779ab64ffa9cee75d621f8723871d18ea86a4393f4552c01abd1b4ac8b6b6cafcab799719ada8d84c27694cfa86db00bb6472e154d0fd9889419f48ffed3a3b725bf4ec50ed909ae558676355a892d395023c7d234d7a46bd85155f504ed49cc052c90fb1ae5e65a059ede92dd5ee4904dbc16dec547b04247116723617fc73bc215c3bbcfaf6e6afb119c80b307688fae5fefe5492afb46e50fb7d874d6b8e519c9f067100267badf506f871cd16684ed7bdd27d13ed93824ddd3", "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"}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:30 executing program 3: [ 720.501717] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 720.509277] Interruptibility = 00000000 ActivityState = 00000000 [ 720.515756] *** Host State *** [ 720.519018] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a39ef378 [ 720.525199] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 720.531869] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 720.539734] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 720.545831] CR0=0000000080050033 CR3=00000000a493f000 CR4=00000000001426f0 [ 720.553119] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 720.559875] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 720.566091] *** Control State *** [ 720.569614] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 720.576419] EntryControls=0000d1ff ExitControls=002fefff [ 720.582031] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 720.588999] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 720.595847] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 720.602600] reason=80000021 qualification=0000000000000002 [ 720.608968] IDTVectoring: info=00000000 errcode=00000000 [ 720.614595] TSC Offset = 0xfffffe79332e76f8 [ 720.618965] EPT pointer = 0x00000000a6a4f01e 09:57:30 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) madvise(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x10200000008) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000006c0), 0x0, &(0x7f00000019c0)=""/4096, 0x1000}, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000040)='memory.high\x00', 0x2, 0x0) mlock2(&(0x7f0000a4a000/0x5000)=nil, 0x5000, 0x1) writev(r2, &(0x7f0000000700), 0x1000000000000110) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x20000, 0x0) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x800, 0x0) fanotify_mark(r4, 0x92, 0x2, r5, &(0x7f00000001c0)='./file0\x00') 09:57:30 executing program 3: 09:57:30 executing program 4: 09:57:31 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockname$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000040)=0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:31 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:31 executing program 4: 09:57:31 executing program 3: 09:57:31 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'osx.', '/dev/kvm\x00'}, &(0x7f0000000080)=""/151, 0x97) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:31 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x3, 0x381800) ioctl$VIDIOC_G_SLICED_VBI_CAP(r1, 0xc0745645, &(0x7f0000000300)={0x4, [0x3, 0x80, 0x5, 0x4, 0x5, 0x5, 0x7ff, 0x752, 0xfffffffffffffff9, 0x101, 0xac, 0x9, 0x1, 0x3ff, 0x81, 0x7, 0xfffffffffffffff0, 0xffff, 0x4, 0xe0, 0x2, 0x9, 0x8, 0x7, 0x2, 0x0, 0x1, 0x4, 0x0, 0xc000000000000, 0xffff, 0x7, 0x0, 0x1f, 0x3f, 0x142, 0x9, 0x1, 0x400, 0x5, 0xffffffffbd0c9076, 0x6, 0x1000, 0x264d, 0x9, 0x7, 0x1ff, 0x9], 0x7}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuset.memory_pressure\x00', 0x0, 0x0) ioctl$VIDIOC_QUERY_EXT_CTRL(r2, 0xc0e85667, &(0x7f00000001c0)={0x80000000, 0x0, "a8e6067af3a2fbf88dd4d83d91e2e3d889178e8128a8f98e52f765edf6a8764e", 0x2e7f, 0x7, 0x4, 0x9, 0x2f, 0xc5b, 0x3, 0x10000, [0x9, 0x9, 0x0, 0x1]}) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000100)={0x1ff, 0x5}) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) 09:57:31 executing program 4: 09:57:31 executing program 3: [ 721.873277] *** Guest State *** [ 721.876653] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 721.885876] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 721.894944] CR3 = 0x0000000000004000 [ 721.898755] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 721.905453] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 721.912122] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 721.918182] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 721.924377] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 721.931100] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 721.939289] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 721.947458] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 721.955603] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 721.963783] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 721.971925] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 721.979948] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 721.988112] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 721.996785] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 722.004971] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 722.013218] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 722.019675] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 722.027291] Interruptibility = 00000000 ActivityState = 00000000 [ 722.033673] *** Host State *** [ 722.036932] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a20cf378 [ 722.043093] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 722.049589] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 722.057550] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 722.063609] CR0=0000000080050033 CR3=00000000a34cd000 CR4=00000000001426f0 [ 722.070674] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 722.077515] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 722.083737] *** Control State *** [ 722.087238] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 722.094110] EntryControls=0000d1ff ExitControls=002fefff [ 722.099630] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 722.106736] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 722.113578] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:32 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21, @multicast2}], 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 722.120206] reason=80000021 qualification=0000000000000002 [ 722.126729] IDTVectoring: info=00000000 errcode=00000000 [ 722.132353] TSC Offset = 0xfffffe78000b4666 [ 722.136715] EPT pointer = 0x00000000a6d3201e 09:57:32 executing program 3: 09:57:32 executing program 4: 09:57:32 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:32 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer\x00', 0x101000, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = dup(r0) ioctl$PPPIOCGCHAN(r4, 0x80047437, &(0x7f0000000100)) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040), &(0x7f0000000080)=0x4) r5 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000180)={0x100, 0x1, 0x1, 'queue1\x00', 0x7ff}) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 09:57:32 executing program 4: 09:57:32 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x80, 0x8000) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000040)={0xd000, 0x2000}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:32 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:32 executing program 3: [ 723.233036] *** Guest State *** [ 723.236695] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 723.245976] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 723.254981] CR3 = 0x0000000000004000 [ 723.258744] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 723.265406] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 723.272087] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 723.278157] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 723.284388] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 723.291156] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 723.299338] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 723.307504] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 723.315717] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 723.323882] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:57:33 executing program 3: [ 723.332054] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 723.340078] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 723.348314] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 723.356477] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 723.364723] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 723.372867] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:57:33 executing program 4: [ 723.379331] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 723.387022] Interruptibility = 00000000 ActivityState = 00000000 [ 723.393417] *** Host State *** [ 723.396675] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a1e8f378 [ 723.402929] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 723.409415] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 723.417480] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 723.423567] CR0=0000000080050033 CR3=00000000a6a8c000 CR4=00000000001426f0 [ 723.430636] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 723.437602] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 723.443885] *** Control State *** [ 723.447418] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 723.454338] EntryControls=0000d1ff ExitControls=002fefff [ 723.459848] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 723.466990] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 723.473823] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:33 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x400000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) [ 723.480451] reason=80000021 qualification=0000000000000002 [ 723.487000] IDTVectoring: info=00000000 errcode=00000000 [ 723.492630] TSC Offset = 0xfffffe773c493460 [ 723.496999] EPT pointer = 0x00000000a18d701e 09:57:33 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:33 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:33 executing program 3: 09:57:33 executing program 4: 09:57:34 executing program 2: socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$void(r0, 0x5450) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x101000, 0x0) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f00000001c0)) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) 09:57:34 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") syz_emit_ethernet(0x303b00, &(0x7f0000000000)={@local, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x30004c, 0x4, 0x0, @ipv4={[], [], @multicast2}, @mcast2, {[], @icmpv6=@time_exceed={0xffffff88, 0x0, 0x0, 0x0, [0x0, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [], @broadcast}, @ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}}}}}}, 0x0) 09:57:34 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) write$selinux_attr(r3, &(0x7f00000002c0)='system_u:object_r:tmp_t:s0\x00', 0x1b) r4 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0x7f, 0x100) getsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f00000001c0)=0x1, &(0x7f0000000200)=0x1) ioctl$KVM_GET_LAPIC(r3, 0x8400ae8e, &(0x7f0000000380)={"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"}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000000)={0x0, @in={{0x2, 0x4e20, @broadcast}}, 0x8c5, 0x8001}, &(0x7f00000000c0)=0x90) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000100)={0x0, 0x8, 0x6, 0x2, r5}, &(0x7f0000000140)=0x10) ioctl$SNDRV_TIMER_IOCTL_START(r4, 0x54a0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$IOC_PR_RESERVE(r4, 0x401070c9, &(0x7f0000000780)={0x6, 0x6}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:34 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") syz_emit_ethernet(0x303b00, &(0x7f0000000000)={@local, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x30004c, 0x2f, 0x0, @ipv4={[], [], @multicast2}, @mcast2, {[], @icmpv6=@time_exceed={0xffffff88, 0x0, 0x0, 0x0, [0x0, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [], @broadcast}, @ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}}}}}}, 0x0) 09:57:34 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:34 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f00000001c0)={0x3e, @empty, 0x4e21, 0x4, 'wlc\x00', 0xb, 0x81, 0x2e}, 0x2c) r3 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x2b81, 0x4080) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x7f}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000100)={r4, 0x8001}, 0x8) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 09:57:34 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x100000001}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000200)={r3}, 0x8) 09:57:34 executing program 4: openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_AUTH_MAGIC(0xffffffffffffffff, 0x40046411, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="5000000090780000"], 0x0) [ 724.959019] *** Guest State *** [ 724.962615] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 724.971794] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 724.980676] CR3 = 0x0000000000004000 [ 724.984651] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 724.991197] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 724.998098] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 725.004359] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 725.010400] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 725.017289] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 725.025518] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 725.033677] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 725.041839] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 725.049875] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 725.058220] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 725.066373] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 725.074584] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 725.082731] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 725.090764] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 725.098898] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 725.105465] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 725.113073] Interruptibility = 00000000 ActivityState = 00000000 [ 725.119358] *** Host State *** [ 725.122703] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a615f378 [ 725.128766] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 725.135348] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 725.143320] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 725.149262] CR0=0000000080050033 CR3=00000000ac55a000 CR4=00000000001426f0 [ 725.156498] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 725.163367] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 725.169461] *** Control State *** [ 725.173076] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 725.179795] EntryControls=0000d1ff ExitControls=002fefff [ 725.185427] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 725.192533] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 725.199255] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:35 executing program 3: open(&(0x7f0000000040)='./file0\x00', 0x8040, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x80a102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 09:57:35 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 725.206006] reason=80000021 qualification=0000000000000002 [ 725.212507] IDTVectoring: info=00000000 errcode=00000000 [ 725.218017] TSC Offset = 0xfffffe764f9ec37e [ 725.222493] EPT pointer = 0x00000000a488901e 09:57:35 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = socket$inet6(0xa, 0x803, 0x3) ioctl(r2, 0x1000008912, &(0x7f00000000c0)="0a5c2d023c126285718070") openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0) r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x802, 0x0) ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f0000000380)={0x0, 0x4004400}) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:35 executing program 3: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x0, 0x0) write$UHID_CREATE2(r0, &(0x7f0000001280)=ANY=[@ANYBLOB="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"], 0x1118) syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x448000) syz_emit_ethernet(0x0, &(0x7f0000000140)=ANY=[], &(0x7f0000000100)={0x0, 0x2, [0x0, 0x0, 0x0, 0xb4d]}) 09:57:35 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket(0x8, 0x2, 0x6) setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000180)=0x9e87, 0x4) unshare(0x800) setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000040)=0x8000, 0x4) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000001c0)=[@in={0x2, 0x4e22, @local}, @in6={0xa, 0x4e23, 0xffffffffffffffc1, @mcast2, 0x1f}, @in={0x2, 0x4e21, @local}, @in={0x2, 0x4, @loopback}, @in6={0xa, 0x4e21, 0x1ff, @mcast2, 0x2}], 0x68) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000340)={0x0, 0x9}, &(0x7f0000000380)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x1}, &(0x7f00000004c0)=0x8) getsockname(r0, &(0x7f0000000400)=@xdp, &(0x7f0000000480)=0x3e8) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x248000, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000240)={0x0, 0x800, 0x7, 0x5, 0x6, 0x4, 0x97, 0xfffffffffffffffd, {0x0, @in={{0x2, 0x4e24, @rand_addr=0x1}}, 0x5, 0x8001, 0x2, 0x1, 0x100000000}}, &(0x7f0000000100)=0xb0) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, &(0x7f0000000140)={r4, 0x9}, 0x8) ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000500)={0x7, {0x0, 0x10000, 0x100000001, 0x40, 0xa7, 0x1}}) getsockopt$inet6_buf(r0, 0x29, 0xef, &(0x7f0000000080)=""/101, &(0x7f0000000300)=0x65) 09:57:35 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000380)={{{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@rand_addr}}, &(0x7f0000000000)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'dummy0\x00', r1}) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) lsetxattr$security_smack_transmute(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000180)='TRUE', 0x4, 0x1) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0)={0x0, 0xa5}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000002c0)={r6, 0x7966faf1}, &(0x7f0000000480)=0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000004c0)={@local, 0xa, r2}) ioctl$KVM_RUN(r5, 0xae80, 0x0) unlink(&(0x7f0000000500)='./file0\x00') [ 726.096999] *** Guest State *** [ 726.100604] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 726.109876] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 726.119003] CR3 = 0x0000000000004000 [ 726.123005] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 726.129599] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 726.136413] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 726.142652] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 726.148685] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 726.155649] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 726.163872] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.172127] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 726.180237] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.188500] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.196679] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.204994] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 726.213258] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 726.221299] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 726.229493] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 726.237693] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 726.244397] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 726.252139] Interruptibility = 00000000 ActivityState = 00000000 [ 726.258413] *** Host State *** [ 726.261807] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a1e8f378 [ 726.267863] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 726.274511] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 726.282523] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 726.288500] CR0=0000000080050033 CR3=00000000a172d000 CR4=00000000001426e0 09:57:36 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000000)={0x1000, 0x0, 0x3, 0x3}) ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f0000000040)={r1, 0x6}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:36 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f00000001c0)={0x3e, @empty, 0x4e21, 0x4, 'wlc\x00', 0xb, 0x81, 0x2e}, 0x2c) r3 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x2b81, 0x4080) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x7f}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000100)={r4, 0x8001}, 0x8) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 09:57:36 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 726.295760] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 726.302711] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 726.308823] *** Control State *** [ 726.312479] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 726.319196] EntryControls=0000d1ff ExitControls=002fefff [ 726.324860] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 726.332006] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 726.338727] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:36 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x200000000000805, 0x0) write$uinput_user_dev(r0, &(0x7f0000000400)={'syz1\x00'}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = semget$private(0x0, 0x4, 0x24) semctl$GETZCNT(r2, 0x2, 0xf, &(0x7f00000000c0)=""/222) ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0) [ 726.345602] reason=80000021 qualification=0000000000000002 [ 726.352123] IDTVectoring: info=00000000 errcode=00000000 [ 726.357637] TSC Offset = 0xfffffe75b67c932b [ 726.362155] EPT pointer = 0x00000000a1b0801e [ 726.820167] *** Guest State *** [ 726.823924] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 726.833001] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 726.842038] CR3 = 0x0000000000004000 [ 726.845858] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 726.852517] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 726.859089] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 726.865669] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 726.871916] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 726.878703] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 726.886857] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.895055] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 726.903255] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.911315] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.919537] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 726.927711] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 726.935927] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 726.944086] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 726.952288] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 726.960310] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 726.966946] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 726.974548] Interruptibility = 00000000 ActivityState = 00000000 [ 726.980816] *** Host State *** [ 726.984188] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a166f378 [ 726.990262] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 726.996980] FSBase=00007f91635b6700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 727.004962] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 727.010905] CR0=0000000080050033 CR3=00000000a448b000 CR4=00000000001426f0 [ 727.018093] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 727.024947] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 727.031056] *** Control State *** [ 727.034711] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 727.041454] EntryControls=0000d1ff ExitControls=002fefff [ 727.047079] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 727.054225] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 727.060939] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:37 executing program 4: add_key(&(0x7f0000000000)='pkcs7_test\x00', &(0x7f000046bae7), &(0x7f0000cefffa)="1040", 0x2, 0xfffffffffffffffd) iopl(0x5447) 09:57:37 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 727.067700] reason=80000021 qualification=0000000000000002 [ 727.074223] IDTVectoring: info=00000000 errcode=00000000 [ 727.079733] TSC Offset = 0xfffffe75637770b4 [ 727.084239] EPT pointer = 0x00000000a45d901e 09:57:37 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x18) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x8, 0xa0112, r3, 0x45) [ 727.274463] *** Guest State *** [ 727.277839] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 727.287002] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 727.296169] CR3 = 0x0000000000004000 [ 727.299944] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 727.306619] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 727.313314] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 727.319335] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 727.325553] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 727.332485] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 727.340538] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 727.348754] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 727.356919] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 727.365177] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 727.373380] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 727.381440] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 727.389668] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 727.397810] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 727.405974] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 727.414128] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 727.420621] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 727.428310] Interruptibility = 00000000 ActivityState = 00000000 [ 727.434717] *** Host State *** [ 727.437965] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a1fbf378 [ 727.444156] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 727.450628] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 727.458644] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 727.464747] CR0=0000000080050033 CR3=00000000a172d000 CR4=00000000001426f0 [ 727.471970] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 727.478759] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 727.484989] *** Control State *** [ 727.488499] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 727.495409] EntryControls=0000d1ff ExitControls=002fefff [ 727.500940] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 727.508099] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 727.514976] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 727.521725] reason=80000021 qualification=0000000000000002 [ 727.528094] IDTVectoring: info=00000000 errcode=00000000 [ 727.533754] TSC Offset = 0xfffffe75b67bfd26 [ 727.538139] EPT pointer = 0x00000000a1b0801e 09:57:37 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x1, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x105f, 0x200000) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f01da6780e1220f01d10f060f0d5600f40f23ba660f6c7d000fab7963660f657200", 0x22}], 0x1, 0x8, &(0x7f0000000100)=[@efer={0x2, 0x9000}, @cr4={0x1, 0x40}], 0x2) ioctl$VIDIOC_G_ENC_INDEX(r0, 0x8818564c, &(0x7f0000000380)) syz_open_dev$media(&(0x7f0000000200)='/dev/media#\x00', 0xfffffffffffffffe, 0x82000) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f0000000140)={0x101, 0xffffffff, 0x8, 'queue0\x00', 0xfffffffeffffffff}) 09:57:37 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x400, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x7ad5, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:37 executing program 4: r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xd5, 0x4080) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000080)=0x38400, 0x4) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_ENUM_FREQ_BANDS(r1, 0xc0405665, &(0x7f00000000c0)={0x0, 0x5, 0xfffffffffffffffd}) 09:57:38 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 728.078757] *** Guest State *** [ 728.082370] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 728.091284] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 728.100528] CR3 = 0x0000000000004000 [ 728.104611] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 728.111203] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 728.117973] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 728.124159] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 728.130219] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 728.137099] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 728.145322] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 728.153524] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 728.161564] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 728.169839] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 728.178029] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 728.186237] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 728.194434] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 728.202616] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 728.210673] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 728.218914] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 728.225519] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 728.233239] Interruptibility = 00000000 ActivityState = 00000000 [ 728.239514] *** Host State *** [ 728.242922] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a192f378 [ 728.248969] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 728.255663] FSBase=00007fbb5ed7c700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 728.263676] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 728.269628] CR0=0000000080050033 CR3=00000000a3436000 CR4=00000000001426e0 [ 728.276863] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 728.283752] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 728.289858] *** Control State *** [ 728.293515] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 728.300232] EntryControls=0000d1ff ExitControls=002fefff [ 728.305886] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 728.313019] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 728.319738] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 728.326550] reason=80000021 qualification=0000000000000002 [ 728.333095] IDTVectoring: info=00000000 errcode=00000000 [ 728.338617] TSC Offset = 0xfffffe74a238d88e [ 728.343150] EPT pointer = 0x00000000a938301e 09:57:38 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:38 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x20000, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000100)={0xffffffffffffffff}, 0x111, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r2, &(0x7f0000000200)={0xa, 0x4, 0xfa00, {r3}}, 0xc) 09:57:38 executing program 3: r0 = socket$inet(0x2, 0x3, 0x6) r1 = semget$private(0x0, 0x7, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xfffffe5a) r3 = fcntl$dupfd(r0, 0x0, r0) ioctl$EVIOCGKEYCODE(r3, 0x80084504, &(0x7f0000000100)=""/74) r4 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x80, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r4, 0xc004ae02, &(0x7f0000000040)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000180)) semctl$IPC_SET(r1, 0x0, 0x1, &(0x7f0000000380)={{0x0, r2}}) 09:57:38 executing program 4: unshare(0x400) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400)='/dev/rfkill\x00', 0x8000, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000440)={0x0, 0x4}, &(0x7f0000000480)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000004c0)={0x8000, 0x4, 0x7fff, 0x4, r1}, &(0x7f0000000500)=0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001280)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000180)) r4 = dup2(r2, r3) ioctl$UI_SET_PHYS(r4, 0x4008556c, &(0x7f0000000100)="73797ab600") r5 = msgget(0x3, 0x92) pipe2$9p(&(0x7f00000006c0), 0x80800) perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x200, 0x7fffffff, 0x4, 0xc2, 0x0, 0x7, 0x8000, 0x5, 0x200, 0x3, 0x5, 0x1, 0x0, 0x66de, 0x6, 0xffffffffffff0001, 0x6, 0xa80, 0x7, 0x3, 0x14c, 0x3, 0x1f, 0x4, 0x0, 0x1, 0x7, 0x5, 0x6d, 0x6, 0x3, 0x80, 0x3ff, 0x80, 0x8, 0x5, 0x0, 0x3f02073c, 0x4, @perf_config_ext={0x5, 0x66ebe62f}, 0x49, 0x53cb, 0x0, 0x0, 0x7, 0x6, 0x61cc}, 0x0, 0xf, 0xffffffffffffffff, 0x3) msgctl$IPC_INFO(r5, 0x3, &(0x7f0000000000)=""/222) ioctl$TUNSETVNETBE(r4, 0x400454de, &(0x7f0000000700)) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r4, 0x40a85321, &(0x7f00000002c0)={{0x1000}, 'port1\x00', 0x22, 0x801, 0x6, 0x4, 0x75b9, 0x0, 0x3, 0x0, 0x4, 0x1ff}) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r4, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000740)=ANY=[@ANYBLOB="9ee5fff8ce317aa564c696ce00065cb5db32c8a4bc5c822bbd8f5a1f6d4c91e35c600f42d95241d8ee7119dd66b1f12f81664c0900000000dbdd6f99452aeb69470ef51168d66ff74d1a259ee069bf0c4923848ccf43eb80572f12b71dbf03ca9d839539a0b0f7178c69da8aec56cae6d4c972a0aa5fd33f2ddd0592548d69dcdf7e956a067568f6d35e59b918cfeaab8f794ad3df42eb9c2a65dfb07d7fbda5814b", @ANYRES16=r6, @ANYBLOB="010028bd7000fedbdf250700000014000300080003000300000008000800800000003c000200080007000100000008000900ffffffff0800060007000000080006000800000008000700ff030000080005000400000008000300020000003000030008000500ac1414bb1400020076657468305f09000000000000000000080008006e000000080001371632bfb00000000000080004234946b189b4493eca51adf7baf3e1c529bb39aa6013ee8188877c5a3df7f761d5f394b754e58f67a6b570263e1e2ad896dca97f92f44ebbff5dad7a36875af33f6cca4135d61ebba20ea1689f46a74c2be702790eb37311b9b957ed4558f53d7496a7dadd26abd32308b8c7a4cce7727ffa475f37b9866c4025088f99f03b2c93333f743006c5e09dfb0c2ae8c2099889b817768ed4b7f40eb61b3489a57d7818854e59f2727d4a7c4bd8ea2b6b42cb"], 0x9c}, 0x1, 0x0, 0x0, 0x1}, 0x8000) 09:57:38 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) 09:57:38 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000100)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x40040, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)=0x0) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000080)={[], 0x0, 0x6f43, 0x6, 0x9, 0x1000, r5}) [ 729.041077] *** Guest State *** [ 729.044793] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 729.053981] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 729.063067] CR3 = 0x0000000000004000 [ 729.066855] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 729.073698] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 729.080264] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 729.086468] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 729.092659] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 729.099389] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 729.107851] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.116018] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 729.124203] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.132370] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.140410] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.148568] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 729.156750] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 729.164903] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 729.173315] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 729.181378] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 729.188063] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 729.195794] Interruptibility = 00000000 ActivityState = 00000000 [ 729.202303] *** Host State *** [ 729.205547] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a45af378 [ 729.211803] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 729.218290] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 729.226352] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 729.232429] CR0=0000000080050033 CR3=00000000a1d10000 CR4=00000000001426f0 [ 729.239626] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 729.246622] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 729.252876] *** Control State *** [ 729.256399] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 729.263395] EntryControls=0000d1ff ExitControls=002fefff [ 729.268924] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 729.276122] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 729.282991] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:39 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={&(0x7f0000000080), 0xc, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="1800009e721a13c9b039140e1bb9d75a00160001", @ANYRES32=0x0], 0xfd77}}, 0x0) 09:57:39 executing program 4: r0 = socket(0x840000000002, 0x3, 0xff) connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @broadcast}, 0x10) sendmsg$alg(r0, &(0x7f00000024c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000380)="b6", 0x1}], 0x1, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], 0x1018, 0x8000}, 0x800) [ 729.289622] reason=80000021 qualification=0000000000000002 [ 729.296228] IDTVectoring: info=00000000 errcode=00000000 [ 729.301852] TSC Offset = 0xfffffe742538482d [ 729.306221] EPT pointer = 0x00000000a1a7a01e 09:57:39 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400201) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setrlimit(0x5, &(0x7f0000000040)={0x10000, 0x5}) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:39 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 729.608475] *** Guest State *** [ 729.612077] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 729.620987] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 729.630152] CR3 = 0x0000000000004000 [ 729.634117] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 729.640701] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 729.647393] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 729.653686] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 729.659714] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 729.666591] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 729.674777] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.683030] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 729.691068] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.699330] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.707529] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 729.715815] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 729.724060] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 729.732306] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 729.740351] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 729.748692] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 729.755322] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 729.763240] Interruptibility = 00000000 ActivityState = 00000000 [ 729.769512] *** Host State *** [ 729.773051] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a16ef378 [ 729.779100] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 729.785810] FSBase=00007fbb5ed5b700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 729.793848] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 729.799796] CR0=0000000080050033 CR3=00000000a6a0f000 CR4=00000000001426e0 [ 729.807088] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 729.813983] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 729.820087] *** Control State *** [ 729.823845] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 729.830573] EntryControls=0000d1ff ExitControls=002fefff [ 729.836605] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 729.843837] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 729.850564] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:39 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket(0x10, 0x80002, 0x0) bind$netlink(r1, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) write(r1, &(0x7f00000002c0)="2600000022004701050000000000000005006d20002b1f00c05d080a4a71f10101c7033400b0", 0x26) connect$netlink(r1, &(0x7f0000e8f000)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00000025c0), 0x4) setsockopt$netlink_NETLINK_RX_RING(r1, 0x10e, 0x6, &(0x7f0000000080)={0x0, 0x8, 0x5, 0x3}, 0x10) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x802, 0x0) ioctl$DRM_IOCTL_GET_CAP(r2, 0xc010640c, &(0x7f0000000100)={0x7, 0x1fffe000000000}) sendto(r1, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000000)=0x80, 0x4) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000040)=0x1, 0x4) recvmsg$kcm(r1, &(0x7f0000000380)={&(0x7f0000000180)=@rc, 0x80, &(0x7f0000000300), 0x0, &(0x7f0000000340)=""/36, 0x24}, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000400)={0x0, 0xffffffffffffffff, 0x48, 0x8, @scatter={0x0, 0x0, &(0x7f0000000140)}, &(0x7f0000000200)="9606192aa760a89dd11a944bba8371f56e75843742f70d927a1c09181b2347a4c23610e630198911d8e9bb3f6571460e591a24d9c9a7cb68d08c94cab5dffbf7ec26b89434f65a21", &(0x7f0000000300)=""/59, 0x0, 0x1, 0xffffffffffffffff, &(0x7f00000003c0)}) [ 729.857421] reason=80000021 qualification=0000000000000002 [ 729.864016] IDTVectoring: info=00000000 errcode=00000000 [ 729.869692] TSC Offset = 0xfffffe73ccee84c6 [ 729.874285] EPT pointer = 0x00000000a6b1a01e 09:57:40 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000001000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)={{0x0, 0x0, 0x0, 0x0, "a399e9c558720d8d1f6728f1c5f07531dc6150defaca6ebcaf1b8b8c36184c8f147be96ea31efbf49ca9b9d7"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "655397eb000000004bbdd330eaaa50c6a17a4cbe4cf9a27f671d171c4a2c50f288493829c1e0fe9468a5eb556554a2803b25502ef5bc450d5f58f38b16e1198d", &(0x7f0000b0bfb2), 0x4e, [], [0x4]}) r1 = socket$l2tp(0x18, 0x1, 0x1) ioctl(r1, 0x8912, &(0x7f00000000c0)="153f6234418dd25d766070") perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000001000)={&(0x7f0000005000), 0x0, 0x0, 0x6861, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, "8984041f02000000e10000000100000009007a7d000000000000047e000081d9"}}) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x400000, 0x0) ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f00000001c0)={0x7, 0x10001, [{0x2a5, 0x0, 0x80000001}, {0x2}, {0xff0000000, 0x0, 0x8001}, {0x0, 0x0, 0x6}, {0xffffffffffffffe1, 0x0, 0x3f}, {0x3, 0x0, 0x9}, {0xff, 0x0, 0x80000000}]}) [ 730.092107] QAT: Invalid ioctl 09:57:40 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x7f, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) ioctl$IOC_PR_PREEMPT_ABORT(r4, 0x401870cc, &(0x7f0000000080)={0xa2f7, 0x9d, 0x4, 0x4}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000000380)={0xc0003, 0x0, [0x5, 0x8, 0x80000001, 0xfffffffffffffffd, 0x9, 0x9dd, 0x7, 0x5]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{}, {}, {}, {0x0}]}) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000200)={0x1, 0x2, 0xb000}, 0x4) ioctl$DRM_IOCTL_LOCK(r4, 0x4008642a, &(0x7f00000001c0)={r5, 0x1}) r6 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x2000, 0x0) ioctl$NBD_CLEAR_SOCK(r6, 0xab04) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:40 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 730.224280] QAT: Invalid ioctl [ 730.264055] QAT: Invalid ioctl [ 730.302904] QAT: Invalid ioctl 09:57:40 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x1, 0x2) ioctl$VIDIOC_DQBUF(r2, 0xc0585611, &(0x7f00000001c0)={0x7, 0xb, 0x4, 0x80108, {0x77359400}, {0x5, 0x8, 0x80, 0xfffffffffffffc01, 0x7ff, 0xffff, "32195605"}, 0x9, 0x0, @planes=&(0x7f0000000080)={0x9, 0xa4, @userptr=0x1, 0x4}, 0x4}) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000100)={r0, r2}) openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) 09:57:40 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = socket$inet6(0xa, 0x8000000000000806, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x14) r2 = getpgid(0x0) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000180)=r2) r3 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x1, 0x10000) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r3, 0x6, 0x1, 0x401, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) splice(r3, &(0x7f0000000380), r1, &(0x7f00000003c0), 0xf8c8, 0x4) lstat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000340)={r2, r4, r5}, 0xc) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x2000000000001, 0x2}, 0x8) close(r1) 09:57:40 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:40 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB, @ANYRES32=0x0], &(0x7f000095dffc)=0x8) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x100, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f00000000c0)={r0}) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={r1}, &(0x7f0000000040)=0x8) [ 730.702859] Unknown ioctl 43780 [ 730.778762] *** Guest State *** [ 730.782540] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 730.791436] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 730.800594] CR3 = 0x0000000000004000 [ 730.804608] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 730.811179] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 730.818050] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 730.824279] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 730.830319] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 730.837271] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 730.845562] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 730.853866] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 730.862078] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 730.870159] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 730.878505] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 730.886734] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 730.894974] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 730.903175] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 730.911221] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 730.919471] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 730.926075] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 730.933761] Interruptibility = 00000000 ActivityState = 00000000 [ 730.940050] *** Host State *** [ 730.943540] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a184f378 [ 730.949589] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 730.956309] FSBase=00007f2795025700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 730.964312] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 730.970256] CR0=0000000080050033 CR3=00000000a1913000 CR4=00000000001426e0 09:57:41 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x6) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 730.977964] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 730.984847] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 730.990942] *** Control State *** [ 730.995157] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 731.002521] EntryControls=0000d1ff ExitControls=002fefff [ 731.008030] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 731.015236] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 731.022140] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 731.028774] reason=80000021 qualification=0000000000000002 [ 731.035440] IDTVectoring: info=00000000 errcode=00000000 [ 731.040959] TSC Offset = 0xfffffe7340c4d6be [ 731.045550] EPT pointer = 0x00000000ac58301e 09:57:41 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x13, 0x0, 0x0) [ 731.146701] *** Guest State *** [ 731.150280] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 731.159416] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 731.168422] CR3 = 0x0000000000004000 [ 731.172351] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 731.178895] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 731.185579] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 731.191855] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 731.197901] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 731.204768] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 731.212935] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.220973] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 731.229219] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.237399] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.245568] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.253745] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 731.261920] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 731.269950] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 731.278237] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 731.286396] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 731.293041] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 731.300556] Interruptibility = 00000000 ActivityState = 00000000 [ 731.307092] *** Host State *** [ 731.310395] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a20cf378 [ 731.316660] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 731.323279] FSBase=00007fbb5ed19700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 731.331166] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 731.337362] CR0=0000000080050033 CR3=00000000a3737000 CR4=00000000001426f0 09:57:41 executing program 3: r0 = socket(0x40000000015, 0x805, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0a5c2d023c126285718070") getsockopt(r0, 0x114, 0x9, &(0x7f0000af0fe7)=""/13, &(0x7f0000000040)=0xd) r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0)='nbd\x00') sendmsg$NBD_CMD_STATUS(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8021}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x58, r1, 0x328, 0x5, 0x62, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x9}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4}, @NBD_ATTR_SOCKETS={0x14, 0x7, [{0x8, 0x1, r0}, {0x8, 0x1, r0}]}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x3}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffff}]}, 0x58}}, 0x20044010) [ 731.344567] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 731.351293] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 731.357851] *** Control State *** [ 731.361383] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 731.368312] EntryControls=0000d1ff ExitControls=002fefff [ 731.373961] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 731.380944] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 731.387878] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:41 executing program 4: io_setup(0x3, &(0x7f0000000100)=0x0) r1 = socket$unix(0x1, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f00000001c0)='/dev/dsp#\x00', 0x400, 0x2634723ab94b6677) r3 = syz_open_dev$dri(&(0x7f0000000240)='/dev/dri/card#\x00', 0x7, 0x12400) r4 = syz_open_dev$sndpcmc(&(0x7f0000000300)='/dev/snd/pcmC#D#c\x00', 0x20d6, 0xc80) r5 = openat$vimc1(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/video1\x00', 0x2, 0x0) r6 = syz_open_dev$audion(&(0x7f00000005c0)='/dev/audio#\x00', 0x0, 0x4000) io_submit(r0, 0x3, &(0x7f0000000640)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x3f, r1, &(0x7f0000000140)="938e07a3e88e14572c257b8bd94ea393da77d1c8989e269cfdde6a652e5038d03a54d78782f9c9b8403ad40644c290825b86f63ccb1c0f9091ef82779a462327a28461c20eced6ea98153f68bef75e6dde673355f9fddb060141497c88079821461c76ddf58eff", 0x67, 0x0, 0x0, 0x2, r2}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffd, r3, &(0x7f0000000280)="bf246a4de86f6b9bcad45870c2b342e351d20d0d83e9c05f56a3a93ce25dfd6a2279d78a37166e34b7c11f5f872ba701bfacfaacbb8eb5d8c7a40f28a7da3bf96020d130531105ea83531372a245a8c927ef9960b65a76331e92730a68f90820a67b281a779acebe8cd69738b7c22d18f0391404cc55", 0x76, 0x0, 0x0, 0x0, r4}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x7, 0x7, r5, &(0x7f0000000500)="38246b146215fbc9c8437d23b3470803c288a0f43fbedfc8094887d510be3266f19d0b89f2707f46630b4befb5930ac09f63eeb07204b27b3f89a3729f0eed756181fc5bd62cfa3092d111bb0349cb642e0d41bbe0ce4302ca32f9097be83afdf6cada07018c619340357985b4fda9f7524a2e9a36a966d087d5493562ea22dc062ed8c2a05262cae1ad00da55e4cb9f7f0a7cb16faa1d5e721fc6", 0x9b, 0x6ab3, 0x0, 0x1, r6}]) r7 = socket(0x400020000000010, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="4d00000000000000000000000003000000000000000000000000000000000000000000000000080000000000fcc40f3b5057cbe0e4f1c005d7458b963aed3cba68fd2c23d62d971ed6f46bb3a713e8778fe0d216a5b3c3f196c4059ccb"]}) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r7, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000080)=0x4) [ 731.394633] reason=80000021 qualification=0000000000000002 [ 731.401050] IDTVectoring: info=00000000 errcode=00000000 [ 731.406750] TSC Offset = 0xfffffe730ebe9398 [ 731.411147] EPT pointer = 0x000000009f47801e [ 731.517537] Unknown ioctl 43780 [ 731.544878] *** Guest State *** [ 731.548325] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 731.557442] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 731.566599] CR3 = 0x0000000000004000 [ 731.570365] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 731.577106] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 731.583802] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 731.589836] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 731.596104] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 731.603002] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 731.611040] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.619339] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 731.627718] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.635976] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.644256] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 731.652563] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 731.660606] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 731.668826] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 731.677053] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 731.685291] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 731.691906] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 731.699408] Interruptibility = 00000000 ActivityState = 00000000 [ 731.705915] *** Host State *** [ 731.709200] RIP = 0xffffffff812cfa68 RSP = 0xffff88809f10f378 [ 731.715469] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 731.722094] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 731.729971] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 731.736145] CR0=0000000080050033 CR3=00000000a1913000 CR4=00000000001426f0 [ 731.743357] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 731.750093] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 731.756479] *** Control State *** [ 731.760020] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 731.766899] EntryControls=0000d1ff ExitControls=002fefff [ 731.772597] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 731.779580] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 731.786531] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:41 executing program 3: r0 = socket$l2tp(0x18, 0x1, 0x1) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'tgr192\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x0, &(0x7f0000000080)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) sendto(r2, &(0x7f0000000480)="34117099db82fbb8046fc3d21a565cbe", 0x10, 0xffffffffffffffff, &(0x7f0000001700)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "2614c485abea76768d933995167dba93b3935f0f50e0b148a7c3d2fa16020ed988e6cbd6fdbbdc7bb3a944ec43dace33ecb7acf3f73576e16d13d7d2268a8b"}, 0x80) recvmmsg(r2, &(0x7f0000001a00)=[{{&(0x7f0000000000)=@ethernet={0x0, @broadcast}, 0x80, &(0x7f0000001680)=[{&(0x7f0000001a40)=""/4096}, {&(0x7f0000000100)=""/11}, {&(0x7f0000000200)=""/52}, {&(0x7f0000000240)=""/207}, {&(0x7f0000000340)=""/87}, {&(0x7f0000001800)=""/226}, {&(0x7f0000001580)=""/66}]}}], 0x27b, 0x0, 0x0) sendto(r2, &(0x7f0000001640), 0x0, 0x0, &(0x7f0000002a80)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) ioctl(r0, 0x8912, &(0x7f00000000c0)="153f6234418dd25d766070") socketpair(0x2, 0x6, 0x8, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000400)='nbd\x00') r6 = syz_open_dev$audion(&(0x7f0000000440)='/dev/audio#\x00', 0xc0000, 0x20000) ioctl$sock_SIOCDELDLCI(r3, 0x8981, &(0x7f0000000800)={'rose0\x00', 0x5}) r7 = syz_open_dev$sndpcmc(&(0x7f00000004c0)='/dev/snd/pcmC#D#c\x00', 0x2, 0x200000) r8 = syz_open_dev$midi(&(0x7f0000000500)='/dev/midi#\x00', 0x6, 0x400000) pipe(&(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = openat$full(0xffffffffffffff9c, &(0x7f0000000580)='/dev/full\x00', 0x80000, 0x0) r11 = syz_open_procfs(0x0, &(0x7f00000005c0)='net/if_inet6\x00') r12 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/net/pfkey\x00', 0x90000, 0x0) r13 = syz_open_dev$usbmon(&(0x7f0000000640)='/dev/usbmon#\x00', 0x20, 0x400) r14 = syz_open_dev$media(&(0x7f0000000680)='/dev/media#\x00', 0x1ff, 0x2000) sendmsg$NBD_CMD_CONNECT(r4, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000400}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0x88, r5, 0x521, 0x70bd27, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_SOCKETS={0x14, 0x7, [{0x8, 0x1, r6}, {0x8, 0x1, r7}]}, @NBD_ATTR_SOCKETS={0x3c, 0x7, [{0x8, 0x1, r8}, {0x8, 0x1, r9}, {0x8, 0x1, r10}, {0x8, 0x1, r11}, {0x8, 0x1, r12}, {0x8, 0x1, r13}, {0x8, 0x1, r14}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}]}, 0x88}, 0x1, 0x0, 0x0, 0x14}, 0x4004) [ 731.793386] reason=80000021 qualification=0000000000000002 [ 731.799767] IDTVectoring: info=00000000 errcode=00000000 [ 731.805470] TSC Offset = 0xfffffe72c2ecf0db [ 731.809868] EPT pointer = 0x000000009dc6b01e 09:57:41 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:42 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008915, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x0, 0x480000) ioctl$BLKROTATIONAL(r3, 0x127e, &(0x7f0000000080)) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e22, @multicast1}}, 0x4, 0x1, 0x6253, 0x93, 0x9}, &(0x7f0000000100)=0x98) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000002c0)={r5, 0x5}, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x40000, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000000380)={0x3, {{0xa, 0x4e22, 0x81, @mcast2, 0x2}}, {{0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, [], 0x1d}, 0xcf5}}}, 0x108) 09:57:42 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x10100, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f00000001c0)=""/108) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:42 executing program 1: r0 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x4, 0x2) ioctl$EVIOCGBITSND(r0, 0x80404532, &(0x7f0000000080)=""/174) socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_XCRS(r0, 0x4188aea7, &(0x7f00000013c0)=ANY=[@ANYBLOB="020000006c00000009000000000000000100000000f3528fd9d3edc3aa3a0a2117000000ffffffff002f0000800000000000002f234706cb9ac45f0dbbb2b3bce34a3df6d0496bea153325d0d167"]) socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000000)={0xffffffffffffffff}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c00, r4) bind$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0x0, @reserved}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000001c0)={0x5, 0x2, 0x100000000, 0x5, 0x0}, &(0x7f0000000200)=0x10) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000380)={r5, 0x1000, "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"}, &(0x7f00000002c0)=0x1008) 09:57:42 executing program 4: process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000002040)=""/224, 0xe0}], 0x1, 0x0) r0 = socket(0x10, 0x803, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000c80)={"00000100000000008000"}, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000700)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, 0x0, 0x0, &(0x7f0000000e00)=""/241, 0xf1}, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000f00)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000), &(0x7f00000001c0)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) recvmsg(r0, &(0x7f00000006c0)={&(0x7f0000000140)=@hci, 0x80, 0x0, 0xffffffffffffffa0, 0x0, 0x0, 0x200}, 0xfffffffffffffffd) process_vm_writev(0x0, &(0x7f0000000b80)=[{&(0x7f00000007c0)=""/186, 0xba}, {&(0x7f0000000900)=""/124, 0x7c}, {&(0x7f0000000d00)=""/226, 0xe2}, {&(0x7f0000000980)=""/69, 0x45}], 0x4, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f00000000c0)=""/85, 0xb}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/120, 0x6c}, {&(0x7f0000000480)=""/60, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f0000000540)=""/154, 0x40d}, {&(0x7f0000000340)=""/22, 0x16}], 0x161, &(0x7f0000000600)=""/191, 0xbf}}], 0x40000000000020a, 0x0, &(0x7f0000003700)={0x77359400}) 09:57:42 executing program 0: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:42 executing program 3: r0 = socket$l2tp(0x18, 0x1, 0x1) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'tgr192\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x0, &(0x7f0000000080)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) sendto(r2, &(0x7f0000000480)="34117099db82fbb8046fc3d21a565cbe", 0x10, 0xffffffffffffffff, &(0x7f0000001700)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "2614c485abea76768d933995167dba93b3935f0f50e0b148a7c3d2fa16020ed988e6cbd6fdbbdc7bb3a944ec43dace33ecb7acf3f73576e16d13d7d2268a8b"}, 0x80) recvmmsg(r2, &(0x7f0000001a00)=[{{&(0x7f0000000000)=@ethernet={0x0, @broadcast}, 0x80, &(0x7f0000001680)=[{&(0x7f0000001a40)=""/4096}, {&(0x7f0000000100)=""/11}, {&(0x7f0000000200)=""/52}, {&(0x7f0000000240)=""/207}, {&(0x7f0000000340)=""/87}, {&(0x7f0000001800)=""/226}, {&(0x7f0000001580)=""/66}]}}], 0x27b, 0x0, 0x0) sendto(r2, &(0x7f0000001640), 0x0, 0x0, &(0x7f0000002a80)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) ioctl(r0, 0x8912, &(0x7f00000000c0)="153f6234418dd25d766070") socketpair(0x2, 0x6, 0x8, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000400)='nbd\x00') r6 = syz_open_dev$audion(&(0x7f0000000440)='/dev/audio#\x00', 0xc0000, 0x20000) ioctl$sock_SIOCDELDLCI(r3, 0x8981, &(0x7f0000000800)={'rose0\x00', 0x5}) r7 = syz_open_dev$sndpcmc(&(0x7f00000004c0)='/dev/snd/pcmC#D#c\x00', 0x2, 0x200000) r8 = syz_open_dev$midi(&(0x7f0000000500)='/dev/midi#\x00', 0x6, 0x400000) pipe(&(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = openat$full(0xffffffffffffff9c, &(0x7f0000000580)='/dev/full\x00', 0x80000, 0x0) r11 = syz_open_procfs(0x0, &(0x7f00000005c0)='net/if_inet6\x00') r12 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/net/pfkey\x00', 0x90000, 0x0) r13 = syz_open_dev$usbmon(&(0x7f0000000640)='/dev/usbmon#\x00', 0x20, 0x400) r14 = syz_open_dev$media(&(0x7f0000000680)='/dev/media#\x00', 0x1ff, 0x2000) sendmsg$NBD_CMD_CONNECT(r4, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000400}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0x88, r5, 0x521, 0x70bd27, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_SOCKETS={0x14, 0x7, [{0x8, 0x1, r6}, {0x8, 0x1, r7}]}, @NBD_ATTR_SOCKETS={0x3c, 0x7, [{0x8, 0x1, r8}, {0x8, 0x1, r9}, {0x8, 0x1, r10}, {0x8, 0x1, r11}, {0x8, 0x1, r12}, {0x8, 0x1, r13}, {0x8, 0x1, r14}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}]}, 0x88}, 0x1, 0x0, 0x0, 0x14}, 0x4004) [ 732.989781] *** Guest State *** [ 732.993358] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 733.002704] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 733.011742] CR3 = 0x0000000000004000 [ 733.015511] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 733.022342] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 733.028919] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 09:57:43 executing program 4 (fault-call:10 fault-nth:0): r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 733.035246] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 733.041285] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 733.048235] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 733.056581] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 733.064827] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 733.073005] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 733.081040] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 733.089346] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 733.097538] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 733.105799] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 733.113965] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 733.122204] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 733.130231] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 733.136881] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 733.144507] Interruptibility = 00000000 ActivityState = 00000000 [ 733.150785] *** Host State *** [ 733.154284] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a452f378 [ 733.160378] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 733.167049] FSBase=00007f2795025700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 733.175065] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 733.181021] CR0=0000000080050033 CR3=00000000a1b1b000 CR4=00000000001426f0 09:57:43 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)="8a637075736574262300"}, 0x10) r0 = socket$inet6(0xa, 0x100000003, 0x3a) sendto$inet6(r0, &(0x7f0000000000), 0xffa7, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback={0x0, 0x8}}, 0x1c) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x10001}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={r2, 0x200}, 0x8) [ 733.188475] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 733.195360] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 733.201475] *** Control State *** [ 733.205213] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 733.212081] EntryControls=0000d1ff ExitControls=002fefff [ 733.217605] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 733.224831] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 733.231717] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:43 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f00000001c0)={0x6, 0x9, 0x8, 0x4, 0x81}) syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x80000000, 0x400000) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}) [ 733.238356] reason=80000021 qualification=0000000000000002 [ 733.244907] IDTVectoring: info=00000000 errcode=00000000 [ 733.250409] TSC Offset = 0xfffffe71fcbc5f42 [ 733.255190] EPT pointer = 0x000000009dd6501e [ 733.433821] FAULT_INJECTION: forcing a failure. [ 733.433821] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 733.446093] CPU: 0 PID: 21097 Comm: syz-executor4 Not tainted 4.20.0-rc3+ #95 [ 733.453436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 733.455794] Call Trace: [ 733.455794] dump_stack+0x32d/0x480 [ 733.455794] should_fail+0x11e5/0x13c0 [ 733.455794] __alloc_pages_nodemask+0x73f/0x63e0 [ 733.455794] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 733.455794] ? update_load_avg+0x12ae/0x1db0 [ 733.455794] ? __msan_poison_alloca+0x1e0/0x270 [ 733.455794] ? __msan_poison_alloca+0x1e0/0x270 [ 733.455794] alloc_pages_vma+0x92a/0x1070 [ 733.455794] handle_mm_fault+0x5f02/0xa8c0 [ 733.455794] __do_page_fault+0xdeb/0x1d90 [ 733.455794] ? __msan_poison_alloca+0x1e0/0x270 [ 733.455794] do_page_fault+0x98/0xd0 [ 733.455794] ? page_fault+0x8/0x30 [ 733.455794] page_fault+0x1e/0x30 [ 733.455794] RIP: 0033:0x4067cd [ 733.455794] Code: 0f 1f 44 00 00 c6 44 24 0e 06 48 c7 04 24 10 00 00 00 e9 56 ff ff ff e8 61 49 05 00 90 41 55 41 54 55 53 48 81 ec a8 1b 00 00 <48> 89 74 24 18 48 89 7c 24 30 64 48 8b 34 25 28 00 00 00 48 89 b4 [ 733.455794] RSP: 002b:00007f4a524a60a0 EFLAGS: 00010206 [ 733.455794] RAX: 00000000004067c0 RBX: 00007f4a524a7c90 RCX: 0000000000000000 [ 733.455794] RDX: 0000000020fe8000 RSI: 0000000000000006 RDI: 0000000000000005 [ 733.455794] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 733.455794] R10: 0000000000000064 R11: 0000000000000000 R12: 00007f4a524a86d4 09:57:43 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x4000, 0x0) ioctl$KVM_HYPERV_EVENTFD(r2, 0x4018aebd, &(0x7f0000000040)={0x0, r4}) ioctl$KVM_RUN(r3, 0xae80, 0x0) socket$vsock_dgram(0x28, 0x2, 0x0) [ 733.455794] R13: 00000000004c50f8 R14: 00000000004d8ec0 R15: 0000000000000007 [ 733.591906] syz-executor4 invoked oom-killer: gfp_mask=0x0(), nodemask=(null), order=0, oom_score_adj=1000 [ 733.601859] syz-executor4 cpuset=syz4 mems_allowed=0 [ 733.607070] CPU: 0 PID: 21097 Comm: syz-executor4 Not tainted 4.20.0-rc3+ #95 [ 733.611768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 733.611768] Call Trace: [ 733.611768] dump_stack+0x32d/0x480 [ 733.611768] dump_header+0x405/0x1e70 [ 733.611768] ? do_raw_spin_trylock+0x378/0x4d0 [ 733.611768] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 733.611768] oom_kill_process+0x469/0x1630 [ 733.611768] ? oom_evaluate_task+0xbbe/0xef0 [ 733.651892] out_of_memory+0x18fb/0x1fb0 [ 733.651892] pagefault_out_of_memory+0xdd/0x130 [ 733.651892] mm_fault_error+0x3fc/0x600 [ 733.651892] __do_page_fault+0x11d2/0x1d90 [ 733.651892] ? __msan_poison_alloca+0x1e0/0x270 [ 733.651892] do_page_fault+0x98/0xd0 [ 733.651892] ? page_fault+0x8/0x30 [ 733.651892] page_fault+0x1e/0x30 [ 733.651892] RIP: 0033:0x4067cd [ 733.651892] Code: 0f 1f 44 00 00 c6 44 24 0e 06 48 c7 04 24 10 00 00 00 e9 56 ff ff ff e8 61 49 05 00 90 41 55 41 54 55 53 48 81 ec a8 1b 00 00 <48> 89 74 24 18 48 89 7c 24 30 64 48 8b 34 25 28 00 00 00 48 89 b4 [ 733.651892] RSP: 002b:00007f4a524a60a0 EFLAGS: 00010206 [ 733.651892] RAX: 00000000004067c0 RBX: 00007f4a524a7c90 RCX: 0000000000000000 [ 733.651892] RDX: 0000000020fe8000 RSI: 0000000000000006 RDI: 0000000000000005 [ 733.651892] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 733.651892] R10: 0000000000000064 R11: 0000000000000000 R12: 00007f4a524a86d4 [ 733.651892] R13: 00000000004c50f8 R14: 00000000004d8ec0 R15: 0000000000000007 [ 733.751052] Mem-Info: [ 733.753759] active_anon:106388 inactive_anon:193 isolated_anon:0 [ 733.753759] active_file:7714 inactive_file:36007 isolated_file:0 [ 733.753759] unevictable:0 dirty:75 writeback:0 unstable:0 [ 733.753759] slab_reclaimable:4329 slab_unreclaimable:16182 [ 733.753759] mapped:55080 shmem:244 pagetables:1564 bounce:0 [ 733.753759] free:622828 free_pcp:883 free_cma:0 [ 733.787582] Node 0 active_anon:425552kB inactive_anon:772kB active_file:30856kB inactive_file:144028kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:220320kB dirty:300kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 401408kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 09:57:43 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = shmget(0x1, 0x2000, 0x100, &(0x7f0000ffe000/0x2000)=nil) shmctl$SHM_LOCK(r2, 0xb) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) [ 733.815948] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 733.842308] lowmem_reserve[]: 0 2796 7221 7221 [ 733.846980] Node 0 DMA32 free:2423400kB min:26108kB low:32632kB high:39156kB active_anon:59044kB inactive_anon:36kB active_file:0kB inactive_file:1208kB unevictable:0kB writepending:96kB present:3129332kB managed:2867820kB mlocked:0kB kernel_stack:2816kB pagetables:1008kB bounce:0kB free_pcp:2764kB local_pcp:1444kB free_cma:0kB [ 733.876908] lowmem_reserve[]: 0 0 4425 4425 09:57:43 executing program 3: setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80040000000002, &(0x7f0000000040)=0x62, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000000)=0x3f8, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000240)='illinois\x00', 0x9) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000680)={0x0, 0x401}, &(0x7f00000006c0)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000700)={r0, 0x1}, 0x8) sendto$inet(0xffffffffffffffff, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20004000, &(0x7f0000e68000)={0x2, 0x4004e23, @local, [0x0, 0x0, 0x1802000000000000]}, 0x10) ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, &(0x7f0000000100)=@get={0x1, &(0x7f0000000080)=""/69, 0xee}) shutdown(0xffffffffffffffff, 0x1) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x200400, 0x0) sendmsg$alg(r1, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000280)="b393cbd3f5015fbc9038d0838473aa1e313002fb315b1407f4fba574eef1fc2509c026cbaec8b7faa646e8189c9708da95a592ed838173d039977ff11fdab426d49d861b0bee8592c56a74f5fd11e50e0e2f6198938f80eac7608ede6511d67133b7c9229ce5c7d993a5c2f0186d9521de4a94cb6b4be900358598488efa756b7f10cf64a7b10f0e4f9e6b21f23148df7c4bfa05b9be991c668d638897f87edea6", 0xa1}, {&(0x7f0000000180)="9d3d7001dd4c2998e9428395baee3c19a6459198971468681d60744259ecc8d518d005cb00e0c67f4ca8402630878564c6b23983536046d0d3751610683b4710161cfc28639a7e9f", 0x48}, {&(0x7f0000000340)="e57f6ca08c2347549cc4066f5eaa0335445455f1a623c43554b2b2485b5138fce70ac49c09159175ecc321eebfa53e8ec9289213f0cbb0d26e1d36b4a59a389e80426b62fa1987d64c14b19ecb7d4b1a4e813f4f3090a58ae4e84bd361e1f2e82cc9563c3cca1e254178376101d4e48626eaac4aaeed1115", 0x78}, {&(0x7f00000003c0)="9188e33c8910d645837a646de081b277b2ca35441b8c72d0979e63c8454b530a875f62b1992a759ccf11fd814a12784e11d1f2761c62fc9999995c94499194eb1b502b9b606927fdbaf8d014a37488bf73dc028186b670fa8b0a2a7b8af151a1c2629b99d68e815dceeefe76fa8a618ee27bd1b22262bfd2325c39e6a560b54849a50a6025b0e89b3c44b3ae54a4a54dbf9968109c855cbf4efb7e8e023dc66f704313920bf50dd8c8df34adbb91521e37cd437dbd6f82aae58c7870b7fa52b26ee413393fb7414c18cfa943f9b298c00c375aa07d42f0868498025fba063478f70a3767928289ddd1299c6209c1c07794ce90f1939cbf9429313d2adb", 0xfd}, {&(0x7f00000004c0)="bbe5757e03b856eca77b0a021809d1ec71807ae06293d1fc1032421b6886c89b904e623e1eb13105be1a20d7997ee3d3fca73916d86dc7fcb7dbff82130f7cec430fe3d7852a915d", 0x48}, {&(0x7f0000000540)="dc7f10f222ca8061020c9321f12057dd97ed371a4aaf8c4a97a3650004c6f756137cbf76eae9505c", 0x28}, {&(0x7f0000000580)="9e50c1769f0e844a28ccafd4ad19929fadbad8ec1bd3020bed18d1e19d883fcc288ee3d98223b031f1cee5a8dbeba5577398d8f5410f2699522ed88da487d564e2d6aee0b03978bc71189e847683a3eef7080eab3f", 0x55}], 0x7, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x218, 0x800}, 0x20008000) [ 733.881310] Node 0 Normal free:51460kB min:41328kB low:51660kB high:61992kB active_anon:366556kB inactive_anon:736kB active_file:30856kB inactive_file:142820kB unevictable:0kB writepending:204kB present:4718592kB managed:4532172kB mlocked:0kB kernel_stack:14400kB pagetables:4928kB bounce:0kB free_pcp:1432kB local_pcp:232kB free_cma:0kB [ 733.911405] lowmem_reserve[]: 0 0 0 0 [ 733.915402] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB [ 733.928959] Node 0 DMA32: 231*4kB (UM) 82*8kB (UME) 11*16kB (UME) 13*32kB (UME) 22*64kB (UME) 18*128kB (UME) 9*256kB (UME) 1*512kB (E) 4*1024kB (M) 4*2048kB (UME) 585*4096kB (UM) = 2417148kB [ 733.946607] Node 0 Normal: 1193*4kB (UME) 1054*8kB (ME) 805*16kB (UME) 411*32kB (UME) 175*64kB (UME) 0*128kB 2*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 51460kB [ 733.962260] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 733.971170] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 733.979900] 43964 total pagecache pages [ 733.984048] 0 pages in swap cache [ 733.987550] Swap cache stats: add 0, delete 0, find 0/0 [ 733.993078] Free swap = 0kB [ 733.996192] Total swap = 0kB [ 733.999254] 1965979 pages RAM [ 734.002545] 0 pages HighMem/MovableOnly [ 734.006568] 112005 pages reserved [ 734.010054] 0 pages cma reserved [ 734.013591] Out of memory: Kill process 9751 (syz-executor3) score 1005 or sacrifice child [ 734.022369] Killed process 9751 (syz-executor3) total-vm:70464kB, anon-rss:8348kB, file-rss:32768kB, shmem-rss:0kB [ 734.047842] oom_reaper: reaped process 9751 (syz-executor3), now anon-rss:0kB, file-rss:32768kB, shmem-rss:0kB 09:57:44 executing program 0: unshare(0x28020400) r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000040)=ANY=[@ANYBLOB="0600000045fcdfff00000000"]) [ 734.250156] *** Guest State *** [ 734.253850] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 734.262942] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 734.271949] CR3 = 0x0000000000004000 [ 734.275728] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 734.282496] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 734.289110] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 09:57:44 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000080), &(0x7f00000000c0)=0x8) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='children\x00') ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0xc028ae92, &(0x7f0000000040)={0xff, 0x734636b}) ioctl$KVM_SMI(r1, 0xaeb7) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) prctl$PR_GET_SECUREBITS(0x1b) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 734.295344] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 734.301390] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 734.308269] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 734.316582] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.324795] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 734.333028] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.341070] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.349340] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.357551] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 734.365722] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 734.373919] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 734.382083] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 734.390124] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 734.396725] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 734.404403] Interruptibility = 00000000 ActivityState = 00000000 [ 734.410681] *** Host State *** [ 734.414086] RIP = 0xffffffff812cfa68 RSP = 0xffff8881673df378 [ 734.420188] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 734.426773] FSBase=00007f2794fa1700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 734.434744] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 734.440718] CR0=0000000080050033 CR3=00000001cf82c000 CR4=00000000001426f0 [ 734.447982] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 734.454844] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 734.460972] *** Control State *** [ 734.464647] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 734.471371] EntryControls=0000d1ff ExitControls=002fefff [ 734.477086] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 734.484209] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 734.490942] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 734.497823] reason=80000021 qualification=0000000000000002 [ 734.504373] IDTVectoring: info=00000000 errcode=00000000 [ 734.509937] TSC Offset = 0xfffffe71592cd1ce [ 734.514599] EPT pointer = 0x000000010a90e01e 09:57:44 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x400, 0xc2) ioctl$sock_inet_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000100)) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:44 executing program 3: r0 = socket$inet(0x2, 0x3, 0x40) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$inet_int(r0, 0x0, 0xf, &(0x7f00006ed000), &(0x7f0000000080)=0x4) [ 734.753479] *** Guest State *** [ 734.756933] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 734.766052] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 734.775057] CR3 = 0x0000000000004000 [ 734.778955] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 734.785721] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 734.792420] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 09:57:44 executing program 5: r0 = socket$inet6(0xa, 0x6, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x200000, 0x0) ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000380)={0x5, @sdr={0x757b777f, 0x5}}) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 734.798444] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 734.804678] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 734.811460] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 734.819673] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.827832] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 734.836100] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.844481] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.852855] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 734.860895] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 734.869188] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 734.877466] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 734.885662] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 734.893853] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 734.900330] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 734.907996] Interruptibility = 00000000 ActivityState = 00000000 [ 734.914403] *** Host State *** [ 734.917639] RIP = 0xffffffff812cfa68 RSP = 0xffff888165dcf378 [ 734.923897] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 734.930368] FSBase=00007fbb5ed3a700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 734.938432] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 734.944498] CR0=0000000080050033 CR3=000000015a45c000 CR4=00000000001426f0 [ 734.951769] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 734.958502] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 734.964779] *** Control State *** [ 734.968288] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 734.975227] EntryControls=0000d1ff ExitControls=002fefff [ 734.980770] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 734.987933] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 734.994775] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 735.001734] reason=80000021 qualification=0000000000000002 [ 735.008568] IDTVectoring: info=00000000 errcode=00000000 [ 735.014358] TSC Offset = 0xfffffe7112145802 [ 735.018765] EPT pointer = 0x000000016b17b01e 09:57:45 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/nullb0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x4, 0x13, r1, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4) r2 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x4, 0x400800) clock_gettime(0x0, &(0x7f0000002a00)={0x0, 0x0}) recvmmsg(r2, &(0x7f0000002840)=[{{&(0x7f0000000140)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000280)=""/151, 0x97}, {&(0x7f00000001c0)=""/105, 0x69}], 0x2, 0x0, 0x0, 0x81}, 0x8}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000400)=[{&(0x7f00000003c0)=""/18, 0x12}], 0x1, 0x0, 0x0, 0x6}, 0x5}, {{&(0x7f0000000440)=@ax25, 0x80, &(0x7f0000000980)=[{&(0x7f00000004c0)=""/131, 0x83}, {&(0x7f0000000580)=""/75, 0x4b}, {&(0x7f0000000600)=""/240, 0xf0}, {&(0x7f0000000700)=""/118, 0x76}, {&(0x7f0000000780)=""/202, 0xca}, {&(0x7f0000000880)=""/2, 0x2}, {&(0x7f00000008c0)=""/178, 0xb2}], 0x7, &(0x7f0000000a00)=""/221, 0xdd, 0x4}, 0x6}, {{&(0x7f0000000b00)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000b80)=""/170, 0xaa}, {&(0x7f0000000c40)=""/42, 0x2a}, {&(0x7f0000000c80)=""/100, 0x64}, {&(0x7f0000000d00)=""/93, 0x5d}, {&(0x7f0000000d80)=""/182, 0xb6}, {&(0x7f0000000e40)=""/72, 0x48}], 0x6, &(0x7f0000000f40)=""/8, 0x8, 0x6}, 0x8}, {{&(0x7f0000000f80)=@xdp, 0x80, &(0x7f0000001280)=[{&(0x7f0000001000)=""/242, 0xf2}, {&(0x7f0000001100)=""/145, 0x91}, {&(0x7f00000011c0)=""/90, 0x5a}, {&(0x7f0000001240)=""/48, 0x30}], 0x4, &(0x7f00000012c0)=""/83, 0x53}, 0x8}, {{&(0x7f0000001340)=@rc, 0x80, &(0x7f0000001600)=[{&(0x7f00000013c0)=""/159, 0x9f}, {&(0x7f0000001480)=""/249, 0xf9}, {&(0x7f0000001580)=""/82, 0x52}], 0x3, &(0x7f0000001640)=""/168, 0xa8, 0x1}, 0xca51}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000001700)=""/32, 0x20}, {&(0x7f0000001740)=""/4096, 0x1000}], 0x2, &(0x7f0000002780)=""/190, 0xbe, 0x3}}], 0x7, 0x0, &(0x7f0000002a40)={r3, r4+10000000}) write$cgroup_int(r2, &(0x7f0000000100)=0x1, 0x300) 09:57:45 executing program 4: r0 = socket$inet6(0xa, 0x7, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x8800, 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(r4, &(0x7f00000000c0)={0x27, 0x3, 0x0, {0x3, 0x6, 0x0, 'wlan1('}}, 0x27) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r5, 0x114, 0xa, &(0x7f0000000040)={0x3, "0638d9"}, 0x4) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_DEL_SERVICE(r5, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80601208}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xc0, r6, 0x820, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7f}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}, @IPVS_DEST_ATTR_L_THRESH={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xff}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x81}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3f}, @IPVS_SVC_ATTR_FWMARK={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_DEST={0x54, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xfffffffffffffffb}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x5}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9132}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x6}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xbdb}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x400}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x800}, 0xc040) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:45 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000001c0)=@filter={'filter\x00', 0xe, 0x4, 0x408, 0x0, 0x248, 0x0, 0x248, 0x0, 0x370, 0x370, 0x370, 0x370, 0x370, 0x4, &(0x7f0000000100), {[{{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@common=@inet=@esp={0x30, 'esp\x00', 0x0, {0x4d3, 0x4d3, 0x1}}, @common=@osf={0x50, 'osf\x00', 0x0, {'syz0\x00', 0x3f, 0x1, 0x2, 0x1}}]}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x7fffffff, 0x1, 0x1}}}, {{@uncond, 0x0, 0xc0, 0x108, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0x4, 0x2}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, [], 0xe}, 'team0\x00', 0x3f}}}, {{@ip={@remote, @dev={0xac, 0x14, 0x14, 0x14}, 0x0, 0xffffffff, 'ip6tnl0\x00', 'ip6tnl0\x00', {}, {}, 0x21, 0x3, 0x10}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@set={0x40, 'set\x00', 0x0, {{0x3, [0x5, 0x6d7, 0x101, 0x2e54, 0x52, 0x200], 0x0, 0xffff}}}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x1, 0x1ff}}]}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x468) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 735.720657] *** Guest State *** [ 735.724664] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 735.733801] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 735.742874] CR3 = 0x0000000000004000 [ 735.746630] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 735.753361] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 735.759918] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 735.766166] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 735.772409] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 735.779164] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 735.787435] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 735.795624] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 735.803844] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 735.812020] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 735.820054] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 735.828313] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 735.836509] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 735.844693] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 735.852885] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 735.860904] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 735.867690] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 735.875338] Interruptibility = 00000000 ActivityState = 00000000 [ 735.881760] *** Host State *** [ 735.885006] RIP = 0xffffffff812cfa68 RSP = 0xffff88810aadf378 [ 735.891056] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 735.897660] FSBase=00007fbb5ed7c700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 735.905660] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 735.911844] CR0=0000000080050033 CR3=000000015a45c000 CR4=00000000001426e0 [ 735.918963] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 735.925871] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 735.932161] *** Control State *** [ 735.935674] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 735.942563] EntryControls=0000d1ff ExitControls=002fefff [ 735.948074] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 735.955241] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 735.962113] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:45 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000280)=@broute={'broute\x00', 0x20, 0x3, 0x2d0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000780], 0x0, &(0x7f0000000240), &(0x7f0000000780)=ANY=[@ANYBLOB="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"]}, 0x344) [ 735.968761] reason=80000021 qualification=0000000000000002 [ 735.975342] IDTVectoring: info=00000000 errcode=00000000 [ 735.980837] TSC Offset = 0xfffffe7112134d6c [ 735.985368] EPT pointer = 0x000000016b17b01e 09:57:46 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/nullb0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x4, 0x13, r1, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4) r2 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x4, 0x400800) clock_gettime(0x0, &(0x7f0000002a00)={0x0, 0x0}) recvmmsg(r2, &(0x7f0000002840)=[{{&(0x7f0000000140)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000280)=""/151, 0x97}, {&(0x7f00000001c0)=""/105, 0x69}], 0x2, 0x0, 0x0, 0x81}, 0x8}, {{&(0x7f0000000340)=@alg, 0x80, &(0x7f0000000400)=[{&(0x7f00000003c0)=""/18, 0x12}], 0x1, 0x0, 0x0, 0x6}, 0x5}, {{&(0x7f0000000440)=@ax25, 0x80, &(0x7f0000000980)=[{&(0x7f00000004c0)=""/131, 0x83}, {&(0x7f0000000580)=""/75, 0x4b}, {&(0x7f0000000600)=""/240, 0xf0}, {&(0x7f0000000700)=""/118, 0x76}, {&(0x7f0000000780)=""/202, 0xca}, {&(0x7f0000000880)=""/2, 0x2}, {&(0x7f00000008c0)=""/178, 0xb2}], 0x7, &(0x7f0000000a00)=""/221, 0xdd, 0x4}, 0x6}, {{&(0x7f0000000b00)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000b80)=""/170, 0xaa}, {&(0x7f0000000c40)=""/42, 0x2a}, {&(0x7f0000000c80)=""/100, 0x64}, {&(0x7f0000000d00)=""/93, 0x5d}, {&(0x7f0000000d80)=""/182, 0xb6}, {&(0x7f0000000e40)=""/72, 0x48}], 0x6, &(0x7f0000000f40)=""/8, 0x8, 0x6}, 0x8}, {{&(0x7f0000000f80)=@xdp, 0x80, &(0x7f0000001280)=[{&(0x7f0000001000)=""/242, 0xf2}, {&(0x7f0000001100)=""/145, 0x91}, {&(0x7f00000011c0)=""/90, 0x5a}, {&(0x7f0000001240)=""/48, 0x30}], 0x4, &(0x7f00000012c0)=""/83, 0x53}, 0x8}, {{&(0x7f0000001340)=@rc, 0x80, &(0x7f0000001600)=[{&(0x7f00000013c0)=""/159, 0x9f}, {&(0x7f0000001480)=""/249, 0xf9}, {&(0x7f0000001580)=""/82, 0x52}], 0x3, &(0x7f0000001640)=""/168, 0xa8, 0x1}, 0xca51}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000001700)=""/32, 0x20}, {&(0x7f0000001740)=""/4096, 0x1000}], 0x2, &(0x7f0000002780)=""/190, 0xbe, 0x3}}], 0x7, 0x0, &(0x7f0000002a40)={r3, r4+10000000}) write$cgroup_int(r2, &(0x7f0000000100)=0x1, 0x300) [ 736.015196] kernel msg: ebtables bug: please report to author: Wrong len argument [ 736.071826] kernel msg: ebtables bug: please report to author: Wrong len argument 09:57:46 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x1, 0x10000) sendmsg$rds(r1, &(0x7f0000000640)={&(0x7f0000000200)={0x2, 0x4e22}, 0x10, &(0x7f0000000500)=[{&(0x7f0000000380)=""/143, 0x8f}, {&(0x7f00000002c0)=""/44, 0x2c}, {&(0x7f0000000440)=""/173, 0xad}], 0x3, &(0x7f00000005c0)=[@mask_fadd={0x58, 0x114, 0x8, {{0x1, 0x5}, &(0x7f0000000540)=0x9, &(0x7f0000000580)=0x3, 0x100, 0xc4b, 0x7, 0x7, 0x1e, 0x6}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x4}], 0x70, 0x1}, 0x4004001) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x9, 0x42) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f0000000040)={0x0, 0x80000, 0xffffffffffffff9c}) r7 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x4, 0x101540) ioctl$TUNGETVNETHDRSZ(r5, 0x800454d7, &(0x7f0000000180)) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r5, 0xc00c642d, &(0x7f0000000100)={r6, 0x80000, r7}) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:46 executing program 3: socketpair$inet(0x2, 0xf73de0a37d3864a6, 0x7, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000100)={0x0, {{0x2, 0x4e20, @multicast1}}, 0x1, 0x3, [{{0x2, 0x4e23, @broadcast}}, {{0x2, 0x4e20}}, {{0x2, 0x4e20, @broadcast}}]}, 0x210) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x0, 0x0) r2 = socket(0x3, 0x802, 0x0) ioctl$SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000080)) setsockopt$inet_int(r2, 0x0, 0x18, &(0x7f0000000000), 0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000003c0)={{{@in=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@ipv4={[], [], @local}}}, &(0x7f0000000340)=0xe8) quotactl(0x101, &(0x7f0000000040)='./file0\x00', r3, &(0x7f00000004c0)="ee55f502cb1f976599a1d6b7fd8139320588613ff6551ad7b6b6f4b128b7e767e67f6a731dc89e840cd84cd8af4261292621174fdce0e56f6577342de8cf1dadd41615ee0a70ce638fe547e1a927b707976eddd277edba584308715e8d5de2a94f4f04116648eadc74d82ec5f8f2f8fe4d206799d2f6c2a9a8829b82d1c62e36f29b3eee01e4d19b06e7a39eabb842c4e1f3c60dcc8322f43cdd39d5437f9e726a65a8b3153e26d81962436d423f398a340dcc9e4a3f0eab0800477701de8afb6535f74b5190730e2b6544b64b9b0fa9b074f9fdf1ec834310afb9601b1a") 09:57:46 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x2000, 0x0) ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0x18) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:46 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000040)={0x2, [0x0, 0x0]}, &(0x7f0000000080)=0xc) r3 = syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0x0, 0x88080) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$NBD_SET_BLKSIZE(r3, 0xab01, 0x9) r5 = open(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x1c0) ioctl$RTC_VL_READ(r5, 0x80047013, &(0x7f0000000100)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KDGKBDIACR(r5, 0x4b4a, &(0x7f0000000140)=""/103) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) 09:57:46 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000280)='loginuid\x00') dup(r0) r1 = syz_open_procfs(0x0, &(0x7f0000000440)='syscall\x00') sendfile(r0, r1, 0x0, 0x1) [ 736.761036] *** Guest State *** [ 736.764751] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 736.773836] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 736.782842] CR3 = 0x0000000000004000 [ 736.786610] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 736.793376] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 736.799955] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 736.806200] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 736.812358] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 736.819098] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 736.827439] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 736.835649] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 736.843913] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 736.852157] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 736.860221] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 736.868993] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 736.877203] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 736.885433] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 736.893621] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 736.901850] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 736.908331] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 736.916039] Interruptibility = 00000000 ActivityState = 00000000 [ 736.922445] *** Host State *** [ 736.925697] RIP = 0xffffffff812cfa68 RSP = 0xffff88809f15f378 [ 736.931948] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 736.938426] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 736.946467] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 736.952533] CR0=0000000080050033 CR3=0000000166cee000 CR4=00000000001426f0 [ 736.959613] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 736.966472] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 736.972688] *** Control State *** [ 736.976196] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 736.983022] EntryControls=0000d1ff ExitControls=002fefff [ 736.988534] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 736.995634] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 737.002645] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 737.009282] reason=80000021 qualification=0000000000000002 [ 737.015766] IDTVectoring: info=00000000 errcode=00000000 [ 737.021268] TSC Offset = 0xfffffe7010ef511d [ 737.025780] EPT pointer = 0x00000000a182101e 09:57:47 executing program 3: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000100)={0x0, 0x2, 0x2, &(0x7f0000000080)=0x674f}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) r2 = getpgrp(0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x5, 0x70, 0x80000, 0x0, 0x4, 0x101, 0x0, 0x1515, 0x40, 0x4, 0x401, 0x2, 0x6, 0xffff, 0x2ff2, 0x6, 0x0, 0x81, 0x1, 0x6, 0x4d13, 0x7, 0xffff, 0x2, 0x0, 0x200, 0x4, 0x10000, 0x9, 0x4, 0xfffffffffffffff7, 0xfb, 0x5, 0x3, 0x1, 0x99c, 0xffff, 0x0, 0x0, 0x80, 0x4, @perf_config_ext={0x6, 0x7fffffff}, 0x800, 0xb8c7, 0x6, 0x0, 0x8001, 0xdb16, 0x1f}, r2, 0x0, 0xffffffffffffffff, 0x2) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000200)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast1}, @in={0x2, 0x0, @dev}}}, 0x118) 09:57:47 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = getpgid(0x0) r2 = getpgid(r1) ptrace$cont(0x9, r2, 0xfc, 0x0) recvfrom(r0, &(0x7f0000000200)=""/252, 0xfc, 0x1, &(0x7f0000000000)=@ax25={0x3, {"0454ee4cb58c79"}}, 0x80) 09:57:47 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) r4 = add_key(&(0x7f0000000200)='asymmetric\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)="7fca580bbdff50cff8b48a1905d67bbb3fca6b3f4e79df9e4e225c0b0bc71a6e700b5947b8978d5e5c836f4f8f9174e8aaa865e06b40b7992e2d56c36e10898914e6afd8f572d674a614c6e8aac4ed94a6440ed7684de6200d8857a4a5dae2daca566d54ba50", 0x66, 0xfffffffffffffff9) add_key$keyring(0x0, 0x0, 0x0, 0x0, r4) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000080)=[@in={0x2, 0x4e21, @remote}, @in={0x2, 0x4e21}, @in6={0xa, 0x4e20, 0x2a, @mcast1}, @in6={0xa, 0x4e20, 0x10001, @loopback, 0x1}], 0x58) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x42c600, 0x0) inotify_init() r6 = mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8, 0x11, 0xffffffffffffffff, 0x0) bind$unix(r5, &(0x7f0000000340)=@file={0x1, './file0\x00'}, 0x6e) ioctl$BINDER_GET_NODE_DEBUG_INFO(r5, 0xc018620b, &(0x7f0000000040)={r6}) setsockopt$RDS_FREE_MR(r5, 0x114, 0x3, &(0x7f0000000100)={{0x6, 0x6}, 0x4c}, 0x10) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:47 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f00000001c0)={0x7, 0x70, 0x8000, 0xffffffffffffffc0, 0x3f, 0x9, 0x0, 0x0, 0x2, 0x2, 0x40, 0xffffffffffff350f, 0xfff, 0x5, 0xfffffffffffffff8, 0x0, 0x4, 0x7, 0x8, 0xbd52, 0x0, 0x5, 0x10001, 0x140, 0x10000, 0x3, 0xffffffff, 0xab, 0x8, 0x1ff, 0x8000000000000000, 0xfff, 0x5, 0x0, 0xfffffffffffffd79, 0x40, 0x1, 0x4, 0x0, 0x8000, 0x1, @perf_config_ext={0x7, 0x1}, 0x304, 0x1, 0x4, 0x7, 0x9c, 0x100, 0xffff}, r2, 0xb, r1, 0x3) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) 09:57:47 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x8000000012, &(0x7f0000000040)=0x100000001, 0x3) connect$inet6(r0, &(0x7f0000000140), 0x1c) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x501000, 0x0) socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000080)={0x9, 0x865, 0x1}) ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0) 09:57:47 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x4c9, 0x3bbc763fe47d3321) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000040)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:47 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) r0 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0x2, 0x2) write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, 0x1, {0x7, 0x1c, 0x7, 0x0, 0x200, 0x81, 0x5, 0x8}}, 0x50) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r2 = openat(r1, &(0x7f0000000140)='./file0\x00', 0x202840, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x80000083) futex(&(0x7f00000000c0), 0x88, 0x0, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000000080)={0x0, 0x3c, 0x6, @thr={&(0x7f0000000200)="75bfcff04e819be76a84d9165817e8c28d642818b4f4f4ff2822b9738c449c5d31f8204e4a55702a9cd13ac2d633d732c33c2173850af66dca54cf2fcc33d0e8e3be5c2215384a0f07a7ebd3dd91d5103ee02b422667d87f4b31ce01299bf1330553948da51e54a08a5dde7095a8182010994226fece7c8c6652294ca23ba460090384cd6a3ae6bb5f85102b89722f42c2639ef48a2cca79a979660c3fe8222b27ff1d92", &(0x7f00000002c0)="c8b6fd28d2a02e289e478cf07b19c77f30835a06010557442d56b00da3829378bff67862dcd0c79274b43284d11f8f8a6dd2571b1615e3e6c67e9ce51094b1d06b532dd69f8271bc4c95e3713406393f764f09ac62f609c900e25d8486ad45c0249fa50dfcec8d758087ce8e495eb39c8bb495e394ef9d59d52bb20b4944e286172022359bde097aeb4525c2795ece7238875d90fa645f3ec94cf7c229fbc84247095869b979725c6f51393ae6fb52fa4b4d9c2e3c8d692c9ff967933b668a89139521135b5bc2ecf58d"}}, &(0x7f00000003c0)=0x0) timer_settime(r3, 0x0, &(0x7f0000000400)={{}, {0x77359400}}, &(0x7f0000000440)) [ 738.103791] *** Guest State *** [ 738.107372] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 738.116600] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 738.125622] CR3 = 0x0000000000004000 [ 738.129389] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 738.136049] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 738.142712] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 738.148788] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 738.154946] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 738.161827] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 738.169862] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 738.178023] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 738.186222] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 738.194398] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 738.202583] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 738.210603] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 738.218752] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 738.226902] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 738.235055] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 738.243274] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 738.249761] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 738.257376] Interruptibility = 00000000 ActivityState = 00000000 [ 738.263774] *** Host State *** [ 738.267055] RIP = 0xffffffff812cfa68 RSP = 0xffff88810585f378 [ 738.273237] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 738.279701] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 738.287683] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 738.293774] CR0=0000000080050033 CR3=0000000109e59000 CR4=00000000001426f0 09:57:48 executing program 5: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x141800, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r0, &(0x7f0000000040)="aa32789ef65aa44c99e63297823b3167f2974f90bfcc23f58fb95060194b257bef41553be87c16eeac2987654204bac27311e03a0a54a9647b790ca43329079b33fb61d9a083bd48b865dd0270b3932a95fe1dbe27360b6a2de2", &(0x7f0000000100)="57c1951d019fefb3b2c20fbdd9575a6ca25a24f407baa17181a7f03246fd0aba66e82d7137989333b1a33fa3982e35cf4677ab90d9c04d8a559f84"}, 0x20) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) ioctl$EVIOCGABS0(r0, 0x80184540, &(0x7f0000000380)=""/231) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) write$cgroup_subtree(r0, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5) 09:57:48 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x40000, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000280)=0x200000000) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_S390_UCAS_MAP(r1, 0x4018ae50, &(0x7f0000000400)={0x0, 0x3ff, 0x8c2}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write$vnet(r0, &(0x7f0000000200)={0x1, {&(0x7f00000000c0)=""/46, 0x2e, &(0x7f0000000600)=""/246, 0x0, 0x2}}, 0x68) write$vnet(r0, &(0x7f0000000480)={0x1, {&(0x7f00000005c0)=""/24, 0x18, &(0x7f0000000040)=""/101, 0x0, 0x80002}}, 0x68) getpeername$packet(r1, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000003c0)=0x14) write$vnet(r0, &(0x7f0000000340)={0x1, {&(0x7f0000000180)=""/44, 0x1f, &(0x7f00000001c0)=""/38, 0x0, 0x3}}, 0x68) ioctl$KVM_GET_FPU(r1, 0x81a0ae8c, &(0x7f0000000700)) 09:57:48 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x400, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:48 executing program 4: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) r1 = socket$inet6(0xa, 0x3, 0x2) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) mlock(&(0x7f0000ff2000/0x4000)=nil, 0x4000) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 738.300864] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 738.307733] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 738.313967] *** Control State *** [ 738.317479] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 738.324337] EntryControls=0000d1ff ExitControls=002fefff [ 738.329895] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 738.336997] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 738.343906] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 738.350544] reason=80000021 qualification=0000000000000002 [ 738.357183] IDTVectoring: info=00000000 errcode=00000000 [ 738.362804] TSC Offset = 0xfffffe6f463e6c7d [ 738.367205] EPT pointer = 0x00000001058fd01e 09:57:48 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x7ff, 0x0) setsockopt$packet_buf(r1, 0x107, 0x1, &(0x7f0000000040)="b938745afb4c9603f45767eec93c01c6b6b24f6201eb78edc676b6baedfb7a1d4f21508d200389e00e93d1e04f1c48a1df40f99c5e5da5f93c5b4216f1fe8af508bb90f172683153959271b7495e30ec002594c1af15a97becf1a058635974fe08381bf86009efd9b663b3adb42f5bfbfdd2e5b7b4223d", 0x77) getsockopt$inet_buf(r0, 0x0, 0x400000000000485, &(0x7f0000dcffe8)=""/24, &(0x7f00000002c0)=0x18) 09:57:48 executing program 2: r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/attr/exec\x00', 0x2, 0x0) flistxattr(r0, &(0x7f00000002c0)=""/13, 0xd) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r3 = getpgid(0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000400)={r3, 0xffffffffffffffff, 0x0, 0x10, &(0x7f00000003c0)='/dev/input/mice\x00', 0xffffffffffffffff}, 0x30) perf_event_open$cgroup(&(0x7f0000000340)={0x5, 0x70, 0x5, 0xaf5e, 0x709, 0x4, 0x0, 0xf7d, 0x8000, 0x0, 0x8, 0x40, 0xe3b, 0x1, 0x0, 0x40, 0x1f, 0x5, 0x2, 0x3, 0xffffffff00000001, 0x100000000, 0x2, 0x3, 0x4, 0x0, 0x7fffffff, 0x26, 0x1ff, 0x3, 0x80, 0x4, 0xe000000000000000, 0x2, 0x4, 0x91, 0xe76, 0x3ff, 0x0, 0x7f, 0x7, @perf_bp={&(0x7f0000000300), 0x8}, 0x110b2, 0x0, 0xed, 0x1, 0x54, 0x0, 0xb212}, r2, 0xf, r4, 0x2) r5 = syz_open_dev$mice(&(0x7f0000000240)='/dev/input/mice\x00', 0x0, 0x30800) perf_event_open(&(0x7f00000001c0)={0x3, 0x70, 0x4, 0xf, 0xfffffffffffffc20, 0x7, 0x0, 0xd7, 0xc00, 0x3, 0xfffffffffffffff7, 0x7ff, 0x1f, 0x6, 0x100, 0xae7, 0x7fff, 0x80000001, 0x10001, 0x8, 0x40, 0xff, 0x7ff, 0x0, 0x3ff, 0x8, 0x5, 0x8, 0x80, 0x8, 0x101, 0x5, 0x1, 0x0, 0x1c00000000000, 0x6, 0x1ff, 0x4b, 0x0, 0x3, 0x4, @perf_config_ext={0x1, 0xfff}, 0x0, 0x5, 0x53, 0x3, 0x2575, 0x3ff, 0x8}, r3, 0x10, r5, 0x2) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video36\x00', 0x2, 0x0) r6 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r6, 0xc028564e, &(0x7f0000000080)) 09:57:49 executing program 0: socketpair(0x26, 0x805, 0x0, &(0x7f0000000000)={0x0, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x8) syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x400000) ioctl$SG_SET_COMMAND_Q(r0, 0x2271, &(0x7f0000000080)=0x1) 09:57:49 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00001edff0)={0x2, 0x10000004e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) sendto$inet(r0, &(0x7f0000c95ffd), 0x49b8, 0x0, &(0x7f000057bff0)={0x2, 0x4e20, @multicast1}, 0x10) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x8000, 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240)='nbd\x00') r3 = syz_open_dev$mice(&(0x7f0000000280)='/dev/input/mice\x00', 0x0, 0x0) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/snapshot\x00', 0x202000, 0x0) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rtc0\x00', 0x0, 0x0) r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer2\x00', 0x2, 0x0) r7 = syz_open_dev$usb(&(0x7f0000000440)='/dev/bus/usb/00#/00#\x00', 0x6, 0x4500) r8 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vsock\x00', 0x2, 0x0) r9 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/snapshot\x00', 0x40, 0x0) r10 = syz_open_dev$admmidi(&(0x7f0000000500)='/dev/admmidi#\x00', 0x163, 0x402000) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000540)={r0}) r12 = openat$full(0xffffffffffffff9c, &(0x7f0000000580)='/dev/full\x00', 0x1015c2, 0x0) r13 = accept(r0, &(0x7f00000005c0)=@sco, &(0x7f0000000640)=0x80) sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)=ANY=[@ANYBLOB="dc000000", @ANYRES16=r2, @ANYBLOB="000029bd7000fcdbdf25030000000c00020009000000000000000c00030003000000000000000c00060002000000000000000c000400c1ffffffffffffff0c000400f7ffffffffffffff3400070008000100", @ANYRES32=r3, @ANYBLOB="08000100", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r0, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB="0c00060002000000000000003400070008000100", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="08000100", @ANYRES32=r11, @ANYBLOB='\x00', @ANYRES32=r12, @ANYBLOB="08000100", @ANYRES32=r13, @ANYBLOB="0c0005000b000000000000000c000400ab07000000000000"], 0xdc}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r14 = socket$inet6_dccp(0xa, 0x6, 0x0) recvfrom$inet6(r14, &(0x7f0000000080)=""/28, 0x1c, 0x2100, &(0x7f00000000c0)={0xa, 0x4e24, 0x4, @ipv4={[], [], @multicast2}, 0xff}, 0x1c) recvfrom$inet(r0, &(0x7f0000000180)=""/175, 0x106, 0x7, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x6) 09:57:49 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0xbd9, 0x400000) ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f0000000380)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:49 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0xfffffffffffffffe, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x0, 0xb}}, 0x20) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:49 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f00000001c0)={0x0, 0xfb, 0x1015, 0x1, 0x8, "ab8d3c3205ef29a2e350eb6ad4ad502e", "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"}, 0x1015, 0x1) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) [ 739.586659] *** Guest State *** [ 739.590054] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 739.599442] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 739.608485] CR3 = 0x0000000000004000 [ 739.612382] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 739.619045] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 739.625736] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 739.631906] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 739.637945] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 739.644826] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 739.653009] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 739.661071] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 739.669283] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 739.677467] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 739.685635] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 739.693859] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 739.702039] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 739.710125] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 739.718353] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 739.726525] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 739.733126] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 739.740638] Interruptibility = 00000000 ActivityState = 00000000 [ 739.747078] *** Host State *** [ 739.750346] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a43df378 [ 739.756613] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 739.763245] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 739.771098] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 739.777290] CR0=0000000080050033 CR3=0000000109d63000 CR4=00000000001426e0 [ 739.784546] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 739.791269] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 739.797568] *** Control State *** [ 739.801074] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 739.807995] EntryControls=0000d1ff ExitControls=002fefff [ 739.813703] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 739.820714] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 739.827599] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:49 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) remap_file_pages(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3, 0x1, 0x180013) close(r0) r1 = socket(0x1e, 0x1, 0x0) io_setup(0x8, &(0x7f0000000100)=0x0) io_submit(r2, 0x1, &(0x7f0000000600)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)}]) getsockopt$packet_buf(r1, 0x107, 0x17, &(0x7f0000000640)=""/4096, &(0x7f0000000000)=0x1000) [ 739.834499] reason=80000021 qualification=0000000000000002 [ 739.840896] IDTVectoring: info=00000000 errcode=00000000 [ 739.846605] TSC Offset = 0xfffffe6e7e63ba4b [ 739.850988] EPT pointer = 0x00000000af4cb01e 09:57:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x4, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0xfffffffffffffffc, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x80000002}) r3 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x207, 0xc880) write$FUSE_IOCTL(r3, &(0x7f00000000c0)={0x20, 0xfffffffffffffffe, 0x8, {0x3, 0x4, 0x2, 0x100000000}}, 0x20) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000000)=0x3) ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000100)) 09:57:50 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snapshot\x00', 0x90200, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x1, 0x2) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f00000001c0), &(0x7f0000000200)=0x4) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040), 0x10) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) 09:57:50 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x21d, 0x0, 0x0, 0x0) 09:57:50 executing program 1: socket$inet6(0xa, 0x0, 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000000)={0x80000000, 0x100000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:50 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SMI(r3, 0xaeb7) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$KVM_SET_NR_MMU_PAGES(r2, 0xae44, 0x80000001) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:50 executing program 0: prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0xe) r0 = dup(0xffffffffffffff9c) ioctl$KDSKBLED(r0, 0x4b65, 0x6) syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x7ff, 0x404000) r1 = socket$alg(0x26, 0x5, 0x0) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000300)) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-avx\x00'}, 0x58) bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(xeta)\x00'}, 0x58) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x2) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x40, 0x4) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="ab553fec94248c32e27d04000000288a", 0x10) 09:57:50 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) 09:57:50 executing program 3: unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000000)={'mangle\x00'}, &(0x7f0000000140)=0xfffffffffffffe2f) 09:57:51 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x4, 0x4}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={r1, @in6={{0xa, 0x4e21, 0x3, @mcast1, 0x2}}, 0x9, 0x2, 0xff, 0x2, 0x8}, &(0x7f0000000180)=0x98) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r3 = gettid() pipe2(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f0000000200)=0x40, 0x4) prctl$PR_SET_PTRACER(0x59616d61, r3) r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 741.226682] IPVS: ftp: loaded support on port[0] = 21 09:57:51 executing program 1: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x0, 0x2) setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000080), 0x4) socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:51 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = perf_event_open$cgroup(&(0x7f00000001c0)={0x3, 0x70, 0x8, 0x7, 0x5, 0x4, 0x0, 0x1, 0x2, 0x4, 0xa4, 0x78f, 0x7, 0x8, 0x2, 0x3, 0x1, 0x3ff, 0x0, 0x400, 0xc3f, 0x200, 0x8, 0x5, 0x101, 0x6, 0xffffffffffffff7b, 0x10000, 0x5, 0x0, 0x3, 0x40, 0x8f91, 0x8, 0x7, 0x1f, 0x400, 0x6, 0x0, 0x2, 0x1, @perf_config_ext={0x3f, 0x200}, 0x1008, 0x1, 0x1, 0xf, 0x0, 0x1, 0x8000}, 0xffffffffffffff9c, 0x10, 0xffffffffffffff9c, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x123340, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r1, 0x4020565a, &(0x7f0000000100)={0x8001003, 0x6, 0x3}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0xfffffffffffffffa, 0x400000) ioctl$SNDRV_TIMER_IOCTL_STATUS(r3, 0x80605414, &(0x7f0000000180)=""/142) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) [ 741.813060] *** Guest State *** [ 741.816677] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 741.825777] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 741.834799] CR3 = 0x0000000000004000 [ 741.838562] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 741.845302] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 741.851999] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 741.858025] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 741.864297] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 741.871507] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 741.879672] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 741.887838] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 741.896002] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 741.904193] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 741.912373] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 741.920401] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 741.928573] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 741.936728] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 741.944908] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 741.953164] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 741.959638] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 741.967299] Interruptibility = 00000000 ActivityState = 00000000 [ 741.973794] *** Host State *** [ 741.977055] RIP = 0xffffffff812cfa68 RSP = 0xffff8881090ff378 [ 741.983364] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 741.989869] FSBase=00007fbb5ed3a700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 741.997954] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 742.004066] CR0=0000000080050033 CR3=0000000112335000 CR4=00000000001426f0 09:57:52 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:52 executing program 0: r0 = epoll_create1(0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f000086fff4)) r3 = getpgrp(0xffffffffffffffff) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x2) r4 = getpid() kcmp$KCMP_EPOLL_TFD(r4, r3, 0x7, r0, &(0x7f0000000000)={r2, r1}) [ 742.011188] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 742.018240] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 742.024491] *** Control State *** [ 742.027994] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 742.034919] EntryControls=0000d1ff ExitControls=002fefff [ 742.040447] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 742.047688] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 742.054537] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 742.061202] reason=80000021 qualification=0000000000000002 [ 742.067841] IDTVectoring: info=00000000 errcode=00000000 [ 742.073491] TSC Offset = 0xfffffe6d4ff06eb0 [ 742.077895] EPT pointer = 0x00000000a249b01e 09:57:52 executing program 2: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r0, r0) ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f00000002c0)={0xb5, 0x9cf}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x100, 0x0) r4 = syz_genetlink_get_family_id$fou(&(0x7f00000001c0)='fou\x00') sendmsg$FOU_CMD_GET(r3, &(0x7f0000000280)={&(0x7f0000000040), 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="0db2031b3d6ce60000", @ANYRES16=r4, @ANYBLOB="000729bd7000fcdbdf250300000004000500080002000200000008000400020000000800030000000000040005000800040003000000"], 0x3c}, 0x1, 0x0, 0x0, 0x4000051}, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r5, 0xc028564e, &(0x7f0000000080)) 09:57:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x102, 0xe) ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000100)=0x1) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000180)={0x0, 0x4a, "95b3ec0495fe735d3a6a37c3c7180c2ad80c19507d816be5a79eddfe106dafeee0e0d9733248ef7a5cb969a3563e02c4a0e577da1678db4bb44c7385fdac61477bb188e24a2a2f978ae5"}, &(0x7f0000000200)=0x52) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000240)={r4, 0x3a, "11a8e8efeefbc8564dd2c9bc1a90db669903c6e1fd5fd51b8684d4abbc0531456a5b05fc84b7480a1e90b60328384824d0e9f46ee603c0c1bb30"}, &(0x7f00000002c0)=0x42) ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000080)={0xa30000, 0xfffffffffffff714, 0x0, [], &(0x7f0000000300)={0x980001, 0x9a7, [], @p_u8=&(0x7f0000000000)=0x1e4}}) openat$ion(0xffffffffffffff9c, 0x0, 0x3ffd, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 09:57:52 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = dup3(r2, r2, 0x80000) ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000080)=0xd006) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r5 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xffffffffffffff30, 0x0) epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r2, &(0x7f0000000040)={0x4}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:52 executing program 1: r0 = socket$inet6(0xa, 0x804, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x8000, 0x0) r5 = getpid() r6 = getuid() getresgid(&(0x7f0000001e80), &(0x7f0000001ec0)=0x0, &(0x7f0000001f00)) r8 = fcntl$getown(r0, 0x9) r9 = getuid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001f40)={0x0, 0x0, 0x0}, &(0x7f0000001f80)=0xc) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000002200)=0x0) r12 = geteuid() r13 = getgid() r14 = getpgid(0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000002240)={{{@in6=@dev, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@broadcast}}, &(0x7f0000002340)=0xe8) lstat(&(0x7f0000002380)='./file0\x00', &(0x7f00000023c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000002440)=0x0) fstat(r2, &(0x7f0000002480)={0x0, 0x0, 0x0, 0x0, 0x0}) r19 = getgid() ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000002500)=0x0) fstat(r3, &(0x7f0000002540)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000025c0)='./file0\x00', &(0x7f0000002600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000002680)=0x0) stat(&(0x7f00000026c0)='./file0\x00', &(0x7f0000002700)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000029c0)=0x0) lstat(&(0x7f0000002a00)='./file0\x00', &(0x7f0000002a40)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000002ac0)='./file0\x00', &(0x7f0000002b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$getownex(r2, 0x10, &(0x7f0000002b80)={0x0, 0x0}) fstat(r0, &(0x7f0000002bc0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002c40)={0x0, 0x0, 0x0}, &(0x7f0000002c80)=0xc) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000003180)=0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000031c0)={{{@in=@multicast2, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@dev}}, &(0x7f00000032c0)=0xe8) lstat(&(0x7f0000003300)='./file0\x00', &(0x7f0000003340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$getownex(r3, 0x10, &(0x7f0000003ac0)={0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000003b00)={{{@in6=@ipv4={[], [], @dev}, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@mcast1}}, &(0x7f0000003c00)=0xe8) r37 = getegid() fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000003c40)={0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000003c80)={0x0, 0x0}, &(0x7f0000003cc0)=0xc) getresgid(&(0x7f0000003d00)=0x0, &(0x7f0000003d40), &(0x7f0000003d80)) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000003dc0)=0x0) getresuid(&(0x7f0000003e00), &(0x7f0000003e40)=0x0, &(0x7f0000003e80)) r43 = getgid() ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000003ec0)=0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000003f00)={0x0, 0x0}, &(0x7f0000003f40)=0xc) getresgid(&(0x7f0000003f80)=0x0, &(0x7f0000003fc0), &(0x7f0000004000)) r47 = getpid() getresuid(&(0x7f0000005380), &(0x7f00000053c0)=0x0, &(0x7f0000005400)) r49 = getegid() r50 = getpgid(0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000005440)={{{@in=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@dev}}, &(0x7f0000005540)=0xe8) r52 = getegid() r53 = getpgid(0x0) fstat(r3, &(0x7f0000006840)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x3, &(0x7f00000068c0)=[0x0, 0x0, 0xffffffffffffffff]) r56 = fcntl$getown(r0, 0x9) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000006900)={{{@in6=@mcast1, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in=@remote}}, &(0x7f0000006a00)=0xe8) stat(&(0x7f0000006a40)='./file0\x00', &(0x7f0000006a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000006d80)=0x0) getresuid(&(0x7f0000006dc0), &(0x7f0000006e00)=0x0, &(0x7f0000006e40)) lstat(&(0x7f0000006e80)='./file0\x00', &(0x7f0000006ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000006f80)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x6, &(0x7f0000006f40)='-ppp0\x00'}, 0x30) getresuid(&(0x7f0000006fc0), &(0x7f0000007000), &(0x7f0000007040)=0x0) getgroups(0x9, &(0x7f0000007080)=[0x0, 0xee01, 0xee01, 0xffffffffffffffff, 0x0, 0x0, 0xee01, 0xffffffffffffffff, 0x0]) fcntl$getownex(r0, 0x10, &(0x7f00000070c0)={0x0, 0x0}) lstat(&(0x7f0000007100)='./file0\x00', &(0x7f0000007140)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000071c0), &(0x7f0000007200), &(0x7f0000007240)=0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000072c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8, &(0x7f0000007280)='GPLeth0\x00'}, 0x30) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000007300)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@remote}}, &(0x7f0000007400)=0xe8) lstat(&(0x7f0000007440)='./file0\x00', &(0x7f0000007480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r71 = gettid() getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000007500)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast2}}}}, &(0x7f0000007600)=0xe8) lstat(&(0x7f0000007640)='./file0\x00', &(0x7f0000007680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000007700)={0x0}, &(0x7f0000007740)=0xc) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000007780)={0x0, 0x0}, &(0x7f00000077c0)=0xc) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000007800)={0x0, 0x0, 0x0}, &(0x7f0000007840)=0xc) r77 = getpid() lstat(&(0x7f0000007880)='./file0\x00', &(0x7f00000078c0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000007940)='./file0\x00', &(0x7f0000007980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000007a00)={0x0}, &(0x7f0000007a40)=0xc) lstat(&(0x7f0000007a80)='./file0\x00', &(0x7f0000007ac0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000007b40)={0x0, 0x0, 0x0}, &(0x7f0000007b80)=0xc) sendmmsg$unix(r4, &(0x7f0000007d00)=[{&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000200)="e5391283e0ac41b0d51d678bc8531806700af2afcb56", 0x16}, {&(0x7f0000000380)="167296c897d9eeec5137fc207b053605e1a5efb3f71b22c3c220578c0db085f4ecbdf77d83a9a0d6b834f22199401e4e23015b4cd8d3d9de26a32bb310f7c62a5c656195edcf3ca242a6d36429e0146e8058e61cd732737724514911941ec15a0dda84e025ebd353c0be12100f25ff7f01b18c1c6f1d25", 0x77}, {&(0x7f0000000400)="ef030a930890073302e1154fb57c66957d6523cd37da529630d5d295ab0f0b53261d3e017a23c83fcf5d69668573524ae6f060483e2423332c929033ae4665aff983ae8a0a9c57a9cf2c2d8f", 0x4c}, {&(0x7f00000002c0)="24fe9064ebe9dce93e1ecafb7019186525f0208f0f26effa3beea070c65a7224ec9664a258e0bc60", 0x28}, {&(0x7f0000000480)="47286ebe4c82301106164af256cf6bed745ded60d71098880e67b24d151a8cf5c2cb749818d590a27be4ecb145be6b2df1ee2b9fe03be18a1e78d0d3d1dde4616d6f2b40bd692c59244d60d9971ad17645b99d80f5789cf2c994bba9e7510f77da9e165287a61eb0a7568b0d27b310805fb7db0d058a1bf0820f6aa5973e00e258092c2bbda98b14917b1bef80c472b293a82fdcece437a5a6ce07fb6505354746342b02b4cfbcbf8d04691656332a0e7c3b0f62", 0xb4}, {&(0x7f0000000540)="8d22eb5716118f6b8379141e273ff7380cb3b08b67ef5b34e897dade213f5efb3cebb1a3bfc265638850e40e2d322bb6410829ebd314ea36bd480e4592514c30da0bb9749b62b936e27a55fd6f8f8d4fdc482be08f3ee805d3dc612a8021e8281d87e7a63f9f165c7b78affe179f86539e7a960ca7936266ac2056c46e50ff0a9d05ba98012355e59e57", 0x8a}, {&(0x7f0000000600)="edd0fcdb173945aecb4c29a7f984556553414ad99bd5237d4123e3248e4c29a873a543f3e5800bd11b7d19a650c98a688984c799b6dd5c6cb31667089c817b9d2d5d1628a0070357628ebb838cf8e0e55fafca2455b0c93ff1dc104a856c865680", 0x61}, {&(0x7f0000000680)="9d6df96361c69b221683d76ea88834e5a0a172ea6e3d4f0241f0b234b3429f1eabe44564f19670906e4d68dee651074731b22f8d187c77a405bcaf0f6e2e6106d0f442abf2c546", 0x47}, {&(0x7f0000000700)="6074c2b091", 0x5}], 0x9, 0x0, 0x0, 0x8000}, {&(0x7f0000000800)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001dc0)=[{&(0x7f0000000880)="6fdc85dd3cdb31179f48ffc94fba757eaf25875003c36a7b96078ba8902f1b6bd6a89183fde96f42890a843b263c9e17b8896472f5e6b12c611c3a6e2994402099ac2caa923c11f65564b2b73d4e83349e34f7f5a68d6d0070d06842a1e7835251f0e6c7794cad105781", 0x6a}, {&(0x7f0000000900)="b8", 0x1}, {&(0x7f0000000940)="5b97ce21eca773db72c562a23d1a27437ea28fa12b1f4459f6c7205bd90fe834a171dbd53446f029f3b7399e4f8c09ef71b689615ac253560423ed7cce1d0a61db5816e0b5703e75c12dd55e14c639db3c2b", 0x52}, {&(0x7f00000009c0)="7fbeaeb91cfdb8becf32212e1689dca3f278c89a9b792588716699c34da2b0518a2f0b4c35999bf3a5d408d5d7efa7b0280c8dad040715437f6f1edf78565b7295533d44635616df70058d5a339ceecc46b490b466260846f2823160b0ef405ff8521270e6ace7ef2b5856884b5146624df7936e19b26e52f2df1fe2753787e01c6e756f62ccc076c51b2b5321c70c4c73f470ab612247cb9d5f7dca14", 0x9d}, {&(0x7f0000000a80)="9241ddd1fbe8638910a1da389626678fa828880780934b880caaa8e8673f6183535494323634b2a248b72cfd17a4b2f710bd9b9e0f290e2cd5eaff6de61fa6215eeeeaad481c8cdf9966a5c49533cb843de7e1a22ecc60211210f0e2e72a325dce178f3f4c965ee3dc60efb9989762b005875a2f34b92b16d5f7d328316dec6b5e7604c17a81d8d55395bc498d8c93", 0x8f}, {&(0x7f0000000b40)="b477d38b19b38bed7275ce3b506e4c4a23108472b09e77640fc05162c599c197942df7970a587e8eb171a0988e843cd623de1c450d5a4e3ab3e4903d07bcd79c58cf1ff51a165032284acaf7430ba9c6d098cf8d751ee3cdee5fe7b3a2cca025c1698db4b238e034f7b0305da23d63123c6f74b1dcbd494d85041a184a9e0b294868798b187ff5e6496cbc9310d6d232330c42a7cfea9fc5330c5b5c2512b0b571cea160c8f3c2e26459a7a9e1c4ed66214e564d779260741ef7638dad1421cfbe52f0ea040f32eb568c8c0f80799595695e4f2f85", 0xd5}, {&(0x7f0000000c40)="6c87b10817d9d1aa8954a1efd4790a1fdf924839c381f45e7e225090923afe0999440307a2335b876abcfa19d065de420772d3eee756e0b9dad8644f5a36beedc9cb8caef0c1acc10c51e6e38776d753a03a6feb0044577050b12baf56d98b9fbcc7fb7c", 0x64}, {&(0x7f0000000cc0)="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", 0xfd}, {&(0x7f0000000dc0)="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", 0x1000}], 0x9, &(0x7f0000001fc0)=[@rights={0x28, 0x1, 0x1, [r1, r3, r1, r2, r0]}, @rights={0x20, 0x1, 0x1, [r0, r0, r2, r1]}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @cred={0x20, 0x1, 0x2, r8, r9, r10}], 0x88, 0x4000}, {&(0x7f0000002080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000021c0)=[{&(0x7f0000002100)="af908684e21cfe047860dd7c7c0532d32422498c3650c163f28aeee71141e205110b1b923d67ffc1ce38298c5f3c912126ee947e83c40e32995060fa237b595de0e88f2e1cc9f7e8446104546b1345ad1a19630546d762ce4c4b64fb24eb6a3128700804c6f7deff01f8b5784911adbb30dbbfe8e790b8dd6063f0b88b8f4b13a0ecea83e03b8447cf909ab4f6351d0e65feed9da9841a5bd9f2c173120d63fa733aa5255eab014f4cd8325a86", 0xad}], 0x1, &(0x7f0000002800)=[@cred={0x20, 0x1, 0x2, r11, r12, r13}, @cred={0x20, 0x1, 0x2, r14, r15, r16}, @rights={0x18, 0x1, 0x1, [r2]}, @cred={0x20, 0x1, 0x2, r17, r18, r19}, @cred={0x20, 0x1, 0x2, r20, r21, r22}, @cred={0x20, 0x1, 0x2, r23, r24, r25}], 0xb8, 0x84}, {&(0x7f00000028c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002980)=[{&(0x7f0000002940)="596d2b002481f1a1d82840627e6bc65cfae56fa3edead7b6516f0e0bb59ff8178a544847286a4238aa993b25191a182145f21a", 0x33}], 0x1, &(0x7f0000002cc0)=[@rights={0x20, 0x1, 0x1, [r0, r2, r1, r1]}, @rights={0x18, 0x1, 0x1, [r2, r2]}, @cred={0x20, 0x1, 0x2, r26, r27, r28}, @rights={0x20, 0x1, 0x1, [r3, r3, r1, r0]}, @cred={0x20, 0x1, 0x2, r29, r30, r31}], 0x98, 0x20000801}, {&(0x7f0000002d80)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000003100)=[{&(0x7f0000002e00)="f39aed9f898fd743cf690d80f059d584f7c11dc648f977c90bcc882538fb", 0x1e}, {&(0x7f0000002e40)="4a23e049e7f16fa68fbf98724091e7f1132b86ea321981c644e7ba72fb973a2b148ee77a31d5f05fcf498929343a295824da913955ba2f414ae9891d8a44b7ea7e0b0914ffd3a934c23a859eba7307da8b6348b2c5504bee622037ac91f19d622cc5dc76cdd97379bb13db35e068ea12778d05d1a76d1c1e3e9d143a48972e561fb61bb7ce17e07746f74a1ea8212c02e80bfdba94f71966628d78eb79d8416ba2f5cd2ec32a0a2b8acfee104bbbf6335b867ee4d9c20963f162412a0c502d76281a7ea32ae0a6464169dee4369165c3455464e2", 0xd4}, {&(0x7f0000002f40)="eca617eed47d922e9a64d217e2248862a1127da15f13f5457ab77de438e6b14874ee14cbe57b959517acb37fec23021e294c8dde05d028c6706b43af06ab1b110ca9fdfe63fc5e927fc63786f2db9fc55f7d11a01c0521524602385f3beb9260f235a3df556b76c56f70bd44827f7f6aba620a85d912e289a8f7a4d0b1f76f12a76942f0279e9945505b638a45a14e2e34e705e4a55a5dc89a2980081de7a9e5aecf4cf7b56414116b46d1fa31d2ccef0ebf17c6549dc702f4b31a9b8b5bbc02b82e986759295e", 0xc7}, {&(0x7f0000003040)="725f4601bc615b9e0d26b41093f3598de7e8e7b8545565285f", 0x19}, {&(0x7f0000003080)="d2a338258c41027d17c523305c1a3da46c3ac6837aeaa8e6f9a38435861f3e9c256c0dc68cafb6d6564d531546b894bb62ea0dac80e5abf6229eccc2474b11e4a9b2a7", 0x43}], 0x5, &(0x7f00000033c0)=[@cred={0x20, 0x1, 0x2, r32, r33, r34}], 0x20, 0x1}, {&(0x7f0000003400)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000003a00)=[{&(0x7f0000003480)="8d37063dfa498b36428742800584b6d3ccd7edb8a36615a16702b530b9868a597be14ebc5f2214721ca177df3d9588dd2910fa39f2d808b5f858752bf08d6c3546d80b50ec020d3af84935509954b18100bd2f9b5e04f0c5f2b33721cc31384c87612525974dabc47cd6b9b7a5adf61f1f695eb6c12ccd117804952cce2de51bc52a5ee86f9935", 0x87}, {&(0x7f0000003540)="9762d4d3c25a7c9f32b8c0c671e97b80a4c85fc8285418c44644adefbcb0e08d31326cfccd8c0279aea8d6004d299cb05897ccdbdc0e2d0cd7dee7d57e9e6de2fcc4fcebd3", 0x45}, {&(0x7f00000035c0)="418b583e8a4a8ad349413b55b05d87fd6c5dee182477f988a0da78b1f933d8732a24b2ae9148d346e255162c9fcc6a17daa8a05aa350ddcc9b0fcec0061a3b0c232a401873d7c3208d13a9ccf522177bde99d4b472be9f6666b18e4b05509002d32a5c24819284bcbd7d018fdc8a15884be6cc53ca3d59d7aee0a2b6fdddf38a5a8acf56bc6f457d22483322fda825d06e260a71ac5908e2dbd6ba118193b011a7c673c58293c9617b14146e481f9f2787455fa7db9d5d6fbaf941e0992bedc05b30b55ea8f41c87993429d7c87674182a8d74c27e9f82e3", 0xd8}, {&(0x7f00000036c0)="21ed41c7780a48010f4b5bbd064141c65f565a74eb6167fd2b657689e8169b6a7013029b6e0e", 0x26}, {&(0x7f0000003700)="f9affa8720a03136b1578819812784fbc2c0d0aa11e567a76276ea36b342b33c6b39bdb21c5b3c62bfa5b4be1e2046517b548f1f58c7ffc8d42cc06e3ca6c34d6544239677596cb3d561b89c84bb6d483a673cceca7dffc1fe8eac26d42fd1a4970d8afd4ce9115d5261988f2c1f1a927a2615c6dda4a1167c0f2cd7785e152e1dcbf3ed11d8d0103d8a14fac854d35a8cfef788fd27cce9f6c97f1388128d2012145cbd12945c456bfc75ff", 0xac}, {&(0x7f00000037c0)="87389e344140b9aa9c4b71309a61791e675cd3f6d39baa87ae16df03f8104732c298a03d51d83389db59c833a4b3899264887153ba04a6ff5f6d74a3ec9da295add3c83177bde6efbc7f76c4d2a12394cb3dde7a1f15e5c94f8cd92cf9577def2bb1baf592eaf574f4912ef6bad141eef6e53e40757270ae8ffc7b3a307a613270ec4bc6eee489580aefc11f6366f421937b1705e8b724a2dcd70138984c247c42ebd3261f5b734440c1053afa28dcf9f893c43b861006d3af1f858b1884c347f51b90952bd7c59b0a912bd4c2b3dfceacda4e6df81cf4d140e3e627078018b8b87ffb978efcdf99", 0xe8}, {&(0x7f00000038c0)="973824086d4732501f859ba7f4c10c0d455ead5dc600dfb27ac26fa1e06296fbff48292b2b6a1abc5bf1be4248862761fa7b802ecde8a5b5aba4b33d60858c0a6a5e82df9eef32de1d60990b5686837f99a2cabefa3fbe90532f90bfb881f31d864bb2106717409d29ac8cd25438dc1f9e4b1800ca6f689a", 0x78}, {&(0x7f0000003940)="57c5627a799a882a0cdc971fcd418ec613cc3c6a05462148", 0x18}, {&(0x7f0000003980)="9568211a4499929bd1c3f345787c707dcbaa520730aae9af6563ac80cb6320870904001c842195b6de727047ed42d175f2e65a46c08caaf697491ebb22add8bcb8636f4c6c77ad362609bc3f5b37ffb32fd843b28714285aaf46e9f2e3fa3049006a6ec5bf1bbca56ca35564ad", 0x6d}], 0x9, &(0x7f0000004040)=[@rights={0x18, 0x1, 0x1, [r2, r0]}, @cred={0x20, 0x1, 0x2, r35, r36, r37}, @cred={0x20, 0x1, 0x2, r38, r39, r40}, @rights={0x28, 0x1, 0x1, [r2, r2, r2, r1, r1, r0]}, @cred={0x20, 0x1, 0x2, r41, r42, r43}, @cred={0x20, 0x1, 0x2, r44, r45, r46}], 0xc0, 0x8080}, {&(0x7f0000004100)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000005340)=[{&(0x7f0000004180)="0b6bc7c5dc6d822fe778443c34813b248e03f0fd10a3bdfbf9d9e1bd1b06a9b1613937a08da8ebfef5c7283bdf1f171ccea94fe7048dab60055225ea61f793a7a53ca2882a8751f123c1ed822ca8547472dd3cf8ee8ae46ceaf52ff0d64a8878dbd1b8ddd4731ceea295878c488a905e97f03f0a36f098f4ff289f2d68a03babbe5bba8b934ddbe54b269e9c165a7816", 0x90}, {&(0x7f0000004240)="3b209d6c7b0daf01c37b2801599461407f7b58bdbfcedcbc07a34f9b1f7db1467f7d06b25c11669dac", 0x29}, {&(0x7f0000004280)="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", 0x1000}, {&(0x7f0000005280)="c05c84c8b11d7071355b2d1793fdd5c759355197db6baa19750f1a7c1227edddd194be0e5d56aeb8d1b81bee058483d6a92776c0015b871d09711deb25cfe9e374bdf043449582d97c6e45be824e974bdde356ba474f1bd346cad5c1c45ad732a22ac921f4bc3d02b84f4742921405d9633f61031ac59eed3ac97bec42db803c689324edcca2", 0x86}], 0x4, &(0x7f0000005580)=[@cred={0x20, 0x1, 0x2, r47, r48, r49}, @rights={0x38, 0x1, 0x1, [r2, r0, r3, r2, r0, r3, r1, r3, r3, r3]}, @cred={0x20, 0x1, 0x2, r50, r51, r52}, @rights={0x20, 0x1, 0x1, [r1, r0, r3]}, @rights={0x28, 0x1, 0x1, [r1, r2, r3, r3, r1]}, @rights={0x20, 0x1, 0x1, [r1, r2, r1, r0]}], 0xe0, 0x801}, {&(0x7f0000005680)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006800)=[{&(0x7f0000005700)="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", 0x1000}, {&(0x7f0000006700)="7c75655004ee70e69a726601710b8ce95f4bf68f", 0x14}, {&(0x7f0000006740)="00926c464b63e9e824e17a9b2e3def5a9e28a1f7bc650941f68898ff376b122db7d417a4b10ee4aed637d1a188ab3b0c6714da", 0x33}, {&(0x7f0000006780)="d887724c086aaecd837e9cec300a7170555f262b7592e17e885c82af9d369f9d8004b3f5c68f0d515354dc8a1d7eb35802543ee1997491954fa6b29ebaa13f0da30f63b8be944e443cccaa80414929b1d4eddb29e6577e6fd5809d85", 0x5c}], 0x4, &(0x7f0000006b00)=[@cred={0x20, 0x1, 0x2, r53, r54, r55}, @cred={0x20, 0x1, 0x2, r56, r57, r58}], 0x40, 0x20040000}, {&(0x7f0000006b40)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000006d40)=[{&(0x7f0000006bc0)="5bdef36559748354d71d407e36261193a17b29b27962bb832e0ec0b5622fb88164023635d79219c700e1f64e44073c84161b7a34da975d28a28f2035d0f1f698552a04b6805ec62fdf6a507ebaa5d0a44565be63", 0x54}, {&(0x7f0000006c40)="13bfcdad7616069ae3e74e9f44fe1574c0", 0x11}, {&(0x7f0000006c80)="f38e0cc8e30e39e2e0f07f0db48d419027c7b5ce2d53d729cbbad9e051a396c96af3ec6998999eba2510bb072b96e579e61c50964d54a30cdd556c2181f125e7eb4bffbac9efdb8dceb9c49b73ff1508bb8e5503e9fa986243107355531b49", 0x5f}, {&(0x7f0000006d00)="dbc2496e9d5677c1198995d18d64", 0xe}], 0x4, &(0x7f0000007bc0)=[@cred={0x20, 0x1, 0x2, r59, r60, r61}, @cred={0x20, 0x1, 0x2, r62, r63, r64}, @rights={0x38, 0x1, 0x1, [r2, r1, r1, r1, r0, r3, r0, r1, r2, r2]}, @cred={0x20, 0x1, 0x2, r65, r66, r67}, @cred={0x20, 0x1, 0x2, r68, r69, r70}, @cred={0x20, 0x1, 0x2, r71, r72, r73}, @cred={0x20, 0x1, 0x2, r74, r75, r76}, @cred={0x20, 0x1, 0x2, r77, r78, r79}, @cred={0x20, 0x1, 0x2, r80, r81, r82}], 0x138, 0x40000}], 0x9, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r83 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) write$cgroup_int(r83, &(0x7f0000000040)=0x3, 0x12) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:53 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) getpeername(r0, &(0x7f00000000c0)=@xdp, &(0x7f0000000180)=0x80) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair(0xd, 0x0, 0x10000, &(0x7f0000000000)={0xffffffffffffffff}) setsockopt$inet_opts(r4, 0x0, 0x9, &(0x7f0000000040)="89cc5eaa834c38261372356191975cf16027ad969264fce01be4a0959d7d7074180604e7c32257ef955ed2b2f34c5a307340244614656bba19272b60c964bbeeccf8b4e9f9c0c1ef90cc9468a70c839810811cd5950c93ff5a223741f01e6a964fc6aeaf76ccbf44db", 0x69) [ 743.154059] *** Guest State *** [ 743.157718] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 743.166859] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 743.175866] CR3 = 0x0000000000004000 [ 743.179633] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 743.187503] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 743.194296] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 743.200431] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 743.206671] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 743.213577] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 743.221799] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.229845] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 743.238078] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.246277] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.254523] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.262763] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 743.270842] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 743.279077] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 743.287283] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 743.295569] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 743.302184] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 743.309701] Interruptibility = 00000000 ActivityState = 00000000 [ 743.316213] *** Host State *** [ 743.319472] RIP = 0xffffffff812cfa68 RSP = 0xffff88809f1df378 [ 743.325768] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 743.332364] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 743.340221] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 743.346403] CR0=0000000080050033 CR3=000000010905c000 CR4=00000000001426f0 [ 743.353611] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 743.360351] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 743.366742] *** Control State *** [ 743.370264] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 743.377192] EntryControls=0000d1ff ExitControls=002fefff [ 743.382853] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 743.389830] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 743.396739] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 743.403530] reason=80000021 qualification=0000000000000002 [ 743.409905] IDTVectoring: info=00000000 errcode=00000000 [ 743.415735] TSC Offset = 0xfffffe6c972d9952 [ 743.420126] EPT pointer = 0x000000009f4e701e [ 743.574077] *** Guest State *** [ 743.577796] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 743.586987] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 743.596035] CR3 = 0x0000000000004000 [ 743.599810] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 743.606614] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 743.613503] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 743.619533] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 743.625744] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 743.632629] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 743.640703] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.648917] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 743.657113] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.665385] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.673682] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 743.681855] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 743.689923] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 743.698221] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 743.706438] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 743.714688] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 743.721162] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 743.728968] Interruptibility = 00000000 ActivityState = 00000000 [ 743.735409] *** Host State *** [ 743.738674] RIP = 0xffffffff812cfa68 RSP = 0xffff8881048bf378 [ 743.745001] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 743.751475] FSBase=00007fbb5ed7c700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 743.759574] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 743.765736] CR0=0000000080050033 CR3=000000010a05c000 CR4=00000000001426e0 [ 743.773032] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 743.779769] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 743.786116] *** Control State *** [ 743.789646] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 743.796629] EntryControls=0000d1ff ExitControls=002fefff [ 743.802308] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 743.809298] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 743.816259] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 743.823061] reason=80000021 qualification=0000000000000002 [ 743.829434] IDTVectoring: info=00000000 errcode=00000000 [ 743.835153] TSC Offset = 0xfffffe6c8f83da39 [ 743.839546] EPT pointer = 0x00000000a135801e [ 744.083656] *** Guest State *** [ 744.087252] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 744.096443] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 744.105564] CR3 = 0x0000000000004000 [ 744.109339] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 744.116120] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 744.122869] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 744.128973] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 744.135183] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 744.138628] *** Guest State *** [ 744.142067] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 744.142112] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.142183] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 744.145477] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 744.154009] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.162097] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 744.162119] CR3 = 0x0000000000004000 [ 744.162164] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 744.162193] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 744.162227] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 744.170218] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.179235] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 744.187436] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.187493] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 744.196491] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 744.200222] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 744.206830] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 744.206871] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.213503] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 744.219508] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 744.227610] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 744.233800] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.233842] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.242005] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 744.250016] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 744.256823] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 744.256851] Interruptibility = 00000000 ActivityState = 00000000 [ 744.256898] *** Host State *** [ 744.256943] RIP = 0xffffffff812cfa68 RSP = 0xffff88809f1df378 [ 744.257023] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 744.257059] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 744.257091] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 744.257128] CR0=0000000080050033 CR3=000000010905c000 CR4=00000000001426e0 [ 744.257178] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 744.257211] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 744.257229] *** Control State *** [ 744.257258] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 744.257292] EntryControls=0000d1ff ExitControls=002fefff [ 744.265422] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 744.273545] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 744.281547] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 744.289652] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 744.297631] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 744.305777] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 744.313923] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 744.322025] reason=80000021 qualification=0000000000000002 [ 744.322050] IDTVectoring: info=00000000 errcode=00000000 [ 744.322073] TSC Offset = 0xfffffe6c0e1eaa75 [ 744.322103] EPT pointer = 0x000000009de7101e [ 744.328534] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 744.496534] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 744.504248] Interruptibility = 00000000 ActivityState = 00000000 [ 744.510520] *** Host State *** [ 744.513953] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a34bf378 [ 744.520009] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 744.526683] FSBase=00007fbb5ed5b700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 744.534713] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 744.540653] CR0=0000000080050033 CR3=000000010a05c000 CR4=00000000001426f0 [ 744.547908] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 744.554774] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 744.560876] *** Control State *** [ 744.564558] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 744.571276] EntryControls=0000d1ff ExitControls=002fefff [ 744.577012] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 744.584179] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 744.590913] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 744.597717] reason=80000021 qualification=0000000000000002 [ 744.604231] IDTVectoring: info=00000000 errcode=00000000 [ 744.609730] TSC Offset = 0xfffffe6c2291b261 [ 744.614295] EPT pointer = 0x00000000a067001e 09:57:54 executing program 0: unshare(0x42000000) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, 0xfffffffffffffffe) 09:57:54 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0x6) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000280)={&(0x7f0000000040), 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="100028bd700052d29402e504e28b0c0008001f0000001800352f3b7d05000d010000000000000c00030001000000000000000c00060002000000000000000c0006000200000000000000966b9568f53f6f0726cc4e7b1b77ddce7cb1b0c398ec652b4c23d5c7dd79381299b3c38b7458c3f3df7b3f491ac6a68a48453afa8669fe5b39954b7fb2b509748af0c363dbc8144a66887815cf3c6afe1a351a1ae2"], 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x4) r4 = syz_open_dev$sndpcmp(&(0x7f00000002c0)='/dev/snd/pcmC#D#p\x00', 0x2000000000000000, 0x2) ioctl$NBD_SET_BLKSIZE(r4, 0xab01, 0xffffffffffffffff) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:54 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:54 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000080)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mq_open(&(0x7f0000000200)='lo\x00', 0x40, 0x5, &(0x7f00000002c0)={0x3, 0x3, 0xffff, 0x7fffffff, 0x7fffffff, 0x4, 0x80000000, 0x2}) ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000180)) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)=0xde) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_AEAD_AUTHSIZE(r2, 0x117, 0x5, 0x0, 0x100000001) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = mq_open(&(0x7f0000000000)='\x00', 0x800, 0x44, &(0x7f0000000040)={0x9, 0x9, 0x2, 0xe92, 0x1, 0x0, 0x9, 0x4}) ioctl$KVM_RUN(r3, 0xae80, 0x0) fcntl$F_GET_FILE_RW_HINT(r4, 0x40d, &(0x7f00000001c0)) 09:57:54 executing program 3: r0 = syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0xfffffffffffffffc, 0x140) ioctl$VIDIOC_G_STD(r0, 0x80085617, &(0x7f0000000080)=0x0) ioctl$VIDIOC_G_EDID(r0, 0xc0285628, &(0x7f0000000100)={0x1, 0x100000000, 0x1, [], &(0x7f0000000000)=0x8}) ioctl$VIDIOC_S_STD(r0, 0x40085618, &(0x7f0000000040)=r1) r2 = fcntl$dupfd(r0, 0x406, r0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000001900)={@loopback, @remote, 0x0}, &(0x7f0000001940)=0xc) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000001980)={'team0\x00', r3}) 09:57:54 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000000000)={0x5, [0x5, 0x7, 0x6, 0xfffffffffffffffe, 0x3f]}) [ 744.977942] IPVS: ftp: loaded support on port[0] = 21 [ 745.288252] *** Guest State *** [ 745.292116] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 745.301028] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 745.310223] CR3 = 0x0000000000004000 [ 745.314145] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 745.320710] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 745.327401] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 745.333605] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 745.339660] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 745.346587] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 745.354813] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 745.363040] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 745.371075] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 745.379746] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 745.387931] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 745.396103] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 745.404301] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 745.412465] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 745.420501] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 745.428685] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 745.435368] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 745.443047] Interruptibility = 00000000 ActivityState = 00000000 [ 745.449319] *** Host State *** [ 745.452736] RIP = 0xffffffff812cfa68 RSP = 0xffff88810482f378 [ 745.458884] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 745.465485] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 745.473489] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 745.479428] CR0=0000000080050033 CR3=000000010a36f000 CR4=00000000001426e0 [ 745.486684] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 745.493634] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 745.499758] *** Control State *** [ 745.503489] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 745.510256] EntryControls=0000d1ff ExitControls=002fefff [ 745.515952] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 745.523076] IPVS: ftp: loaded support on port[0] = 21 [ 745.528387] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 09:57:55 executing program 3: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x69d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = accept$inet(0xffffffffffffff9c, &(0x7f0000000200)={0x2, 0x0, @remote}, &(0x7f0000000240)=0x10) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={r0, 0x10, &(0x7f0000000540)={&(0x7f0000000500), 0x0, 0x0}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000005c0)=r2, 0x4) getsockopt$inet_dccp_int(r1, 0x21, 0x0, &(0x7f0000000280), &(0x7f00000002c0)=0x4) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x2a7c0, 0x0) r4 = accept$packet(0xffffffffffffff9c, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000001c0)={'vcan0\x00', r5}) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x40000, 0x0) ioctl$SG_EMULATED_HOST(r6, 0x2203, &(0x7f0000000040)) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000004c0)='ip6tnl0\x00', 0x10) ioctl$BLKROSET(r6, 0x125d, &(0x7f0000000300)=0xffffffff) close(r0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r6, 0x84, 0x1a, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="72000000afc03c5b1c962370e9eddf32c32be2bc893df4b16733895953bff2bf5b8fa8af22f4e71247226057599e6db6aab053a191aa8bbb8edb3f996a6cd0712c95e532e4919941c5e022b1e4a842cad12112c5ba10a0675b10230e321089df2aa6003536c2c5301dede749c026e62ec850745f0f2c"], &(0x7f00000003c0)=0x7a) lookup_dcookie(0x0, &(0x7f0000000440)=""/73, 0x49) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r3, 0x84, 0x10, &(0x7f0000000400)=@assoc_value={r7, 0x2d29}, 0x8) [ 745.535249] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 745.542044] reason=80000021 qualification=0000000000000002 [ 745.548409] IDTVectoring: info=00000000 errcode=00000000 [ 745.554115] TSC Offset = 0xfffffe6b79be5cad [ 745.558497] EPT pointer = 0x000000016b4ea01e 09:57:55 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20001, 0x8) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f00000001c0)={[{0x5, 0x4, 0x2, 0x100000001, 0x8, 0x3, 0x9, 0x3, 0x9, 0x5, 0x2, 0x0, 0x6}, {0x5b57, 0x2, 0x2, 0x2, 0x9, 0x1, 0xf8000000000, 0x2, 0x9, 0x4, 0x0, 0x9, 0x93}, {0x100000001, 0x7fffffff, 0x1ff, 0x7c, 0x9, 0x3334, 0x0, 0xffff, 0x6, 0x4, 0x4, 0xa9c7, 0x6}], 0x20}) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000280)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:55 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x400, 0x0) 09:57:56 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x8000, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:56 executing program 0: unshare(0x90041000900) r0 = socket$inet_dccp(0x2, 0x6, 0x0) r1 = memfd_create(&(0x7f0000000100)='/dev/autofs\x00', 0x4) socket$inet_smc(0x2b, 0x1, 0x0) readahead(r1, 0x730, 0x2) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000140)='tls\x00', 0x4) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6174000000000000000000000000f88571743a5f2190010000000000000083000000000000001c0000000000000000000000b18956cff8e7eab256dc95c3e1eb00000000000000000000000000000000000000000000000000000000000000000000000000000000000080040000ff0000000000", @ANYPTR=&(0x7f0000000000)=ANY=[], @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x3) fchdir(r0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x28000, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f00000000c0)) 09:57:56 executing program 3: socketpair$unix(0x1, 0x400000001, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @loopback}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000001c0)="7369743000000000eaff00", 0x10) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000080)={0x1}, 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x13, &(0x7f0000000100), 0x14) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x400000, 0x0) ioctl$GIO_UNISCRNMAP(r2, 0x4b69, &(0x7f0000000240)=""/251) close(r1) 09:57:56 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$nbd(&(0x7f0000000280)='nbd\x00') ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vsock\x00', 0x2, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000300)={0x3, 0x1, 0x0, 0x3, 0x6, 0x6, 0x81, 0x4, 0x2, 0xba23, 0xfffffffffffff8bd}, 0xb) socketpair(0x1b, 0x80a, 0x9, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$VIDIOC_S_PRIORITY(r2, 0x40045644, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)) write$P9_RAUTH(r4, &(0x7f0000000100)={0x14, 0x67, 0x2, {0x20, 0x1, 0x3}}, 0x14) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) syz_genetlink_get_family_id$nbd(&(0x7f0000000240)='nbd\x00') 09:57:56 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x220000, 0x2) write$P9_RRENAMEAT(r4, &(0x7f0000000040)={0x7, 0x4b, 0x1}, 0x7) 09:57:56 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0xffffffffffffff1d) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:57:57 executing program 0: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x40000, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=0x0, &(0x7f00000002c0)=0x4) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000180)={r2, 0x7}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000200)={r3, 0x80000000, 0x100000001}, 0x8) r4 = socket$inet_udplite(0x2, 0x2, 0x88) socket$xdp(0x2c, 0x3, 0x0) ioctl$sock_netdev_private(r4, 0x89fc, &(0x7f0000000040)="edefdfd763feba60578384e87bff2c2f7882cd1c75c293796f6935f766925bb4b25e1c15fd8ce6085af8278979a6e1cf2790d8161374349f98") fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) ptrace$poke(0x5, r5, &(0x7f00000000c0), 0x2) ioctl$FITRIM(r0, 0xc0184908, &(0x7f0000000280)={0x0, 0x1}) syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x210000) [ 746.956436] *** Guest State *** [ 746.959947] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 746.969106] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 746.978442] CR3 = 0x0000000000004000 [ 746.982421] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 746.988980] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 746.995769] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 747.002460] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 747.008491] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 747.015445] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 747.023618] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 747.031930] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 747.039972] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 747.048269] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 747.056486] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 747.064809] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 747.073004] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 747.081060] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 747.089475] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 747.097654] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 747.104323] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 747.111975] Interruptibility = 00000000 ActivityState = 00000000 [ 747.118246] *** Host State *** [ 747.121492] RIP = 0xffffffff812cfa68 RSP = 0xffff88810497f378 [ 747.127769] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 747.134436] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 747.142515] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 747.148463] CR0=0000000080050033 CR3=0000000105040000 CR4=00000000001426e0 [ 747.155753] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 747.162657] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 747.168769] *** Control State *** [ 747.172591] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 747.179346] EntryControls=0000d1ff ExitControls=002fefff [ 747.185040] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 747.192221] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 747.198946] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:57:57 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) ftruncate(r0, 0x4) r1 = socket$inet(0x2, 0x2, 0x0) sendto$inet(r1, &(0x7f0000865000), 0xebce, 0x0, &(0x7f0000fd9ff0)={0x2, 0x4e20, @loopback}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='bpq0\x00', 0x10) recvmsg(r0, &(0x7f0000000380)={&(0x7f0000000080)=@pppol2tpv3, 0x80, &(0x7f0000000340), 0x18c, 0x0, 0xffffffd4}, 0x0) [ 747.205772] reason=80000021 qualification=0000000000000002 [ 747.212390] IDTVectoring: info=00000000 errcode=00000000 [ 747.217890] TSC Offset = 0xfffffe6a8f712655 [ 747.222486] EPT pointer = 0x00000001577bd01e 09:57:57 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r2) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000040)) 09:57:57 executing program 0: r0 = socket$inet6(0xa, 0x806, 0x4) ioctl(r0, 0x1, &(0x7f0000000280)="b54d72baad24d82ca3dd31a9a27e06a108c93156ab88998471671172205483528ba4f36c5d94fd92ff8f999714429f673870332a379bb745120ae1a55c899db02547b170e618909b2c900f419f4092f8") bind$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xb}, 0x4}, 0x1c) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x900000000, 0x80000) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x84041, 0x0) ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000000c0)={0x1, r2}) 09:57:57 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x80, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000300)=ANY=[@ANYBLOB="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"]) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f00000001c0)={0x0, 0x7c, "48f80db9da00b585d3449169f4265b4179fb6c0ba1cedb7ab1c4ebcc95b759127afec8dc370830674f04262ecf5de7a1e8e02baf235b7cfcfc877f9a06c1c166c0c09ecd7e5d8cbcbdc0a126473c1a3890766612aac1c110592557cbbad27e266e8a3b0599867afce5b8ea3d5bd9c692726d25fd61192cf359a3236e"}, &(0x7f0000000100)=0x84) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000440)={r4, @in6={{0xa, 0x4e20, 0x100000000, @mcast2, 0x76}}, 0x1, 0x9, 0x800, 0xef1f, 0x20}, &(0x7f0000000280)=0x98) 09:57:57 executing program 3: r0 = socket(0x10, 0x2, 0x8000000) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x8, 0x121400) r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffff9c, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@getsa={0x28, 0x12, 0x401}, 0x28}}, 0x0) 09:57:58 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x2000, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000240)={0x0}, &(0x7f00000025c0)=0x8) connect$pptp(r4, &(0x7f00000026c0)={0x18, 0x2, {0x2, @rand_addr=0x3}}, 0x1e) sendmsg$inet_sctp(r4, &(0x7f0000002680)={&(0x7f00000000c0)=@in6={0xa, 0x4e20, 0x43, @local, 0x2535}, 0x1c, &(0x7f0000002540)=[{&(0x7f00000002c0)="03f7c2a97e9f03b942234fea819abfe6ba17484ee102739f340bc65704d23a1425af28de8cf57aa3786db2731807b2b9efaf976ae238c7f34e1fbd7f07ff12750b75de5a3ff2b48b6490010aaca6051bacb02064570698fd7d4d51216ca6886ee56b1e8f981684309605caa7a91a23cb447dcbf7d18c0934dbfd4ca51942cfd796a57a0047d292a3f32cec4ceb51c9bb9dcd1577262149fa4dc5b99e72f8e04a2935b1c56f91a531e508a28cedb5079a9e93460d5f55b3ce695f5fc3f14288b2f54bbbc52deba42e4ee374b5f3bd0f76cb1fccc41c66e464e8f709ab8940890c5ada0894b0bc0dc85247f2ed92132459479c20735d7deb87a9d8fac855728bc394bfb689db860328947d7385d92fe51b22e8975746fc0f78d2492836aea3f1ae7b19eafb422d5ca31375300c6c693ef52e4dda89a8f0b0696f70219c6cd9c8a149bb44ff11efbb6003d03c9315139311cf2dad204b5d5d4bda2a3fb080786649f7dc419a2892c9ebd75980d17f1622f9562e1444333e31b353dea0ebdde1ea9100be84c8f2e75739f4dff6331a4fd67a5b180c4be7e22b1264b3ce4eba3cb3753bd6565b1dd66f6c488f69c34b24fcc4b27248ada393075430eac06ced112016faa9817c1777d32cde1d588fdbc5d8f8970438f84f93b9b80cbba96b5ae02a19842ab0f83d4c0482a22c057c54806d3ce7a3d7fe6b9ab0d3a58f34f0a3e1857113f363ae4d10319f7e9102dce2274e555d91dd94504d89a0d28ed44f722f02f285c7e01e9cbd6ff3c25ef640e45b6f0d8aa61e00bd0de204b9a7c3ddaa25748492233f5c57c60fbc058d4246f0095a1623710532a648231126f317077c501b960892d62bbf4e179f6e2a15c04b3f5f2161402a229c9c32fdf69eb184a4b92b47a87f0ca039aee1a9200651b8f28f9ada4198286600b9daa658b25ffe332cc4e2ef3a734b3e9c6d90a366bd7af5c05860255c3aad61b5d3ecb999b1d669d493e22fd002e0c327c49d59fb92698611dc6593c6a0520821abaf2a2ac271d1ab9c6e9d120580cae236ace4f80895bd249bc7e799a2d61a874752485bca777534ca97719868479010cc95db481c22a5aa7b24055900c20300de9bffde54f31f6bda43a018570b7ff57bd8844744c80c81a6cd11528cfd85812257ebcb0980816e67c9e7933bcebdcbd6354cab9555f0ce7ebb21b2979cd9424eb895ff5697b97ccdefd6d9fbe1b8a971b88f9a79f037616b3e7ea0e91d27cfc6e9e89761c4643deeda3a4b3b6c50f93f457227aa1deee2ae5a948308b591ea17511942a2be92bb31e39685973956bb19de7695457511c63e940f9d5abfa99be748bbe2163ef35c09503c66f662402ba1aa45396b30ec8bcde9104414361ff4da177bf9e6704b71a3dd23188e923a605ba08f215eddc0a825f887a95dec62f6f59b5fb247c2d27099d79d3df4bfac89f38fe2b21f169b72f97c0aba460bda9764fd809cb40a33c6c076cd87d5183ad72dbcb8576d30b8f7637248d910a69e39ad87942eb29ea8369b2af8c14bca498a04c484f0485e00efaa4e6dbf92a6696d9e7bc4819c3836754091ae8460e4ac0be1cc4a97dc39bf07d12a80b36d4c2e424a434664e9eb203953f1055fbe86db97c28948dfd7461fd44a7981584cf87a32fef9ed360455436266407dd3df5f7ba0a71cde5c8993c8ecd254559bb73e8179cd40d28d9cc1c52d5d4726e6c8190dc03a5672d0a3627e527d6a90678892ff73289748f6be0fea17d376681de54ee4009efb1ecdb2d900e54be4754b7f8e4c1507b453ee1f9109858a1532fbf49b89d08698011d2d3c822ad0be33d7eb56758075ad29938889ea2f55294d0c9a0a339f35bef813063a1b102b543c6ddade39e58657e77bc83fdb556601844d59db89d4e592809cc36fc244fe82c39b98655190dc4c1f4f67be92ca861ce7d50722b635037ac3e1a341e2b29946ebaf4764e58aa6e1ab9f8bfba49a4b7243d7beed41aa1bce8a8b2cf56dc6076443915c4408fdeead55525f59b4869e320cbc2709c351684aa5828bf423c11e87f31470b9a1c9593c1c35f4420f95dba82e517d70e7f2315cda4b7ed323306bdce71004f0e8d4a923edd494089f6c2db8b6cbd4d98b3fb89abff314acf2997167f971d27639fb51b83dc08b449431c9e1690d84d54a66f47d499864315748199ab28cba9d377118417b185c21988c7a0d24293a2b81162abbe694c47414b818656d6242bafe0db6b0b7de8351abbeed4f6cca00143f94861578455989e7014eedaae239bcd17e704545c75f95e05c1b9cc0b85a45ee451fbefe3f6503318c4791d62de1e1b91b32831678ebd708a32966cdc1c7813b12475f3818d044f3080c934b537e5d26ef32b0fd3c29d52c09f100268e5ba6ce0cc1729e9db060485fd40bf29e63907662cc2ccb41bac26a6453cd0c53f81cc48396a4d4f86eb349e1bf5c5c9b9eacb3323578c1c3379f0d7621703ba697df87ab5ef202c51ab3dceae5af1003c44f0c8a38a5d1c348570f59daef3bd8d14e17e0183014c653543167861f7d214b064e17a6c60be55a295eb48f3f817ba6c85e71c88b121f7ada7416f70b75adbc399eaaae73b2a5a4ae8ce72e818352b027ba9d09d47e6ab78337f7a3639aeb594d2a4749d90497d6630e721780e99f7ec38c581772637304e2c0b01a4f74ab0fcfc564f3485287c8503286b5949e71371581eed92a971db307e734f866d4a79f0067c1692edb0157ac9a590990e0a52f08320c82b24dc0acec192b8cb59bbff3ad36ab59e1c1065c432bcf7bbbe1f9c119c579dc900d6f839c7504aa3e7c53b7dea76b6541445ff4124e945302341b88e056ce01bf03edb9a56614db650298ea9fdc7659b344621fce3a7a1cf26b370d88a074d4de275db86c192de0cd03ac917317711d3465080963e90d0fb471fa9233f8807481118ab97d5ac9907750856b8f9c0894b55fa7271a47a1ceaed64a87487857456d66c6529647fe4f28f355c9ea220c5546950aae4cb501d80d701fc1a3b31ec4927268c82eab270dc90ca33db534a59a928bbf949d6f3bbe3f79aed791e5f020dadd16fbdd094bec23f6e12b3623389f90091b6f5ec5d5836431d5bcdf95edd7e274348a3fade846b4731a610186a251c77aad568c4934c74c6ef604e2f35669572027098dcf726152e9c3db7a35f8fdf208f9468c409e6b77ff43d4f3f0efcb9d5a14a4e71b5a289f56b378afd0897ffefc2dc2e6ae571501f35e3fb9ac9ee9f751f5c2682e0e860f90cfc884ea6da19f20e21f23d06cfaed20fcc956f6ae15f12dd3bc5244a9696c5010a745652df935454929c6f47c3acc1de864f33afbfa967b795b04042d50dfb19b9993d2b1fd1630af1d61ef22ed8b01c4a4e0ca3b3d690de95ee0b33c20552ebc2510ba59e5d078cc9127e33b678e45b36b9c26fc31acb1069a08b4664633ec35e8763b9463d27f81c588c537cd6f76a608e6d32c0d1dfbc09ea65669381e508a22e626dec7db7a4a9798b2c5683054f1deee599d15b53a7f8f163d63843bf77dc6ca47e69fbbdee9783c148506ffc320d85c690e229510bc002ec03805401f9f443cb45a1da69fb2c03e4024eb094486bbaabb523cccbfa81adc113a0cb0c0e70b7664057fabfdad38ee37aaca670851e88dfdc6fdaf0ea47f95277bab7641d8da71c25cf05a5122e60ae797ac9e87d9f1fe1466edfd23ffee8fdbcfe13c650887416993ae3ff99b48957f201fbc17be233908a6902573e91b368ed0eff0389337bb51e870a272164c47edc3f19250c1ef1d912fdaf75a314aecf073b2b814b14208a4bbb29153d920e1aa82141c7e747e61ce8001ca98d1180d861460c1c53f912bf32873a228aa0d54a72e76a93d122ed505eb703a43427943c0c08f75d391a61294f330a074cf1dfe51fba2fdeacf0eacba67c07dd1dac6818800a9fce0ee57fb94089f2cb07f1bc603439d3615db7fda298c3d91db29f26e2687d95e23a687414d0d1ab77915346310d9867aa7c5caffcccd5da0d2073b086098fcb42ae3cc1d85fbb906a85530bf3493f2abba16cbcb608df94b6ff60901640f3603510088c1879365ea2ae6e59ce6f1d0d59ba4c234e0528bff34bb0377a4052faf8bdf420da7a946b007930ceca389be0fed01e92e6a67da9d762e6991f1572f41a2f706554b8a641f4084f83e682b40d0a078a47c039f522e0bafdd240ffb61c6b817075012cb973179b632082f74a0618569205c663092818c868ac090c884a5656322e82feabbe907d56a5c7e284ed4283f2dcd0fc6a0e2a70fd8d165982f8f33d2464a401e3940fe97638bb9566f1fa3e9d42a27a1269aec4f26712f3b62eec037c1a6b8f167b7dc73c2a5338fb72d4f0295e0df62c25536092c72c795147ef76d8f11e56c893c894b444f8e6798c0d50240352ca890c9c2a883f0f839d3124afe5280257e3498fd30344a2650197b890caa4314c360249245c2f7d6f3a191bda71a26395ffd89ad6da93a226f6c3801746c40d3a4595554862834674e00ffe8c772ac8a5ac12cc05d3851289df5b71b93f61abc3988871e2e14d40d4968a5d828ba0e10b2de4bc953445c452eb87884db510ff7a3f00a1a95ecc1d81e65d8f4bc257144d6d30497d9ce7784815ad5665580b3170ae1161a51c15bd031e062856a48d288c157f3bbc7f1825379b4ad03b13414cb41e8d21117a4e9a01917355f3514c7539b444e44faa3ce9fa6e49f00ee0cc791292baafa56b68365c2048bbff61429d41003372453087e6d6992ff4d06194a78a6e95b164fcccc50376479ae2cfed43ecbd44148dd6e8634966fe8edcad87c0c620f0fc2f09f5bd100af3c22104ef8512e7ada3ac7a8d3d05d6d495687a6e7f49600d091e9760ad31f23971ccd92f23c8dab01aa84465cc75af9ba15b492d23984a53122c95f9d605fa046b7a3557dae2123b36d04cafbc5de1f034a9b5c9a609cb21307cccbe86175de4357c7e8f8b93d53f79d2781904b962e52dadeeb8fd81f744932016abfceb3c3fdcd6daacc3e7c2a219b13902986110180db2ae74c71daef62a398ec007eb53f6cc50b0247df62736288441fd35e407b9c9e7f917bf8e51cd0d5cebb3497244b4a0223d73cb14d12327f64b335abb4972dcaedc323ef74f2aa46fd256d169df9c5d294515968b2e6e8f279da8522bf570862835726766565c1906f4e9ec296853020af70916d7319ec838595d2ea892dff3eb7f02d5a1383b1e366396f68e5db65b6e5998c537ed2891cd53804716cdff89a5c03be9bcd566daa2d753e969a6c44b96735b8506d1da361561385ee79db2a5262e769410f45b6f82ffca1ee676fdcaa64c196fa5e266081b107ed58ceaddfb8c408bc9d1293a87ec65be9de4b9516194c8a75ea9a4b34a66b52925dc36ade90c3886706c6044950afe79d73eeb6daa89638f8fe5026b8b6e7f5312e362ec448161bf9eacf6c8ef77505f8f1c3197059c4f0d552cbe9b4a9a3463fb6f1f9b2a083d6ef4693642d8440bf83668b171c9813bf4be54768ad71378079e7cb4afd7606a81c9b5084f7ff96637b9f39f5b63d774baac1bab4aabb333dee45a736861f2d7601bb991e13433a08fb95ef14edf553e1c43d5e4aa805ebe5a7d9fae4296cd02f12323dd9e9d9e8a1883cd6e58e259831428a6f0e9f4b19b4aad506835a0e92e3411a607de09300b2e5869db6fd3aa05a3897bce9807ea102ccfe5bb0c564514cb62dfb2fb749f7bbda0d7b65caad4bb7444a48143d2cc4232243d805ab", 0x1000}, {&(0x7f0000000100)="c4fa90cc6efe0508b3f2fe0a2282e54136882a79714d1aaaac7c92f2017505", 0x1f}, {&(0x7f0000000180)="b1632d8581d056a60c7a868c310fd5373dc70ab57905508e2015f34f4453c9f5c7141cb5136314f379efc61f4b50156b70b5ff40146a4594680cf3467f5f3126d4a90b465e38fe2e26380f09784d877f0eb20c3c1e6ac1bb1ad69435cef24390dd8b89787668d41291f139a9f769284fcecc9e78f66fb4af2c1cdfdab877d139300890a52a58fc44d3bfb7bdbd2998c41925cc63", 0x94}, {&(0x7f00000012c0)="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", 0x1000}, {&(0x7f00000022c0)="34bb4d742509ccfb81d7877cc65bf8ae20f853c6833ab54c75832568892ec956aaa411fc0552e1415ece5cc10a8b54271c57f18601476f38a1347bfad76505f5622983c1cd4812412af36dbb449e74883f779abf15abdb1f54e1925521b31dbfae832b6c1cdb90b0f6f539e486f042aa31c18a871322dac0c2e0cb4419761c17137f7a50b058282f5d15c53c05175aba3405026d737a046141972b177fedd366c171f4daaa98705a80c79e0e9579a55f32b4934406f785006785a43b85296c3a0d7e8175574a293deb7691056bea9d", 0xcf}, {&(0x7f00000023c0)="a3f42fa18a05364ea8b2de20e34349bfc0a95218f15cd78d9cfa7265a3d260dff1156d4d0042ff2e9b16ef2e30347f9838389e5ea4709ebbcb1d41d5ccd0f66641dbc88b08cf4f8a01fe09035d08220b84f1f94c8f4cbab2c85b10808ded3f352d995e08a967aff08b50354953816cde5c23e923a265fc833adffc35c104ca9ef2c00041233de9491554a237deb69382e192ba5fb36736dc431563acbb91092aeca66d10", 0xa4}, {&(0x7f0000002480)="156ca9d5eb7792cb69078b763567c7c5b4d30f24228e0ad76422bdaeeaeac06ba7db2fb23a5e8238b406b26e41342dc121de7081dba6db050b1f2773700f66a71c5f9b55170f6781a8bf1c47411014a943f38f6ed6324ce2c1e4f62cf1cc83e824fd643435d7e733ae9e232fd15e05a32ed09b8a8e2efa2bc3fee3b3a8ed71faf6f9a7001fda9e507a7c2a6f8b1cf82dc855a230b62a07c4ded3305ab08d2b4fc2e4addcdd6b2d9eee", 0xa9}], 0x7, &(0x7f0000002600)=ANY=[@ANYBLOB="1800000000280b2f0000008400000005000000000009000000300000000000000084000000010000000400f0b70200000080000000010400000000000006000000ff", @ANYRES32=r5, @ANYBLOB="18000000000000008400000000000000ff012f01ff0fff7f"], 0x60, 0x4}, 0x8010) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000002700)) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x0, 0x2000) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0xc028ae92, &(0x7f0000000040)={0x10000, 0x400000}) 09:57:58 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0x0, 0x6}, 0x0, 0x4, r0, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:57:58 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$inet6_int(r4, 0x29, 0xcf, &(0x7f0000b67000), &(0x7f0000000040)=0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:57:58 executing program 3: keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="4d65772064656661756c7420757365723a6e6576203030303030303034301f3030303030203030353700"], 0x2c, 0x0) r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0x1f1, 0xfffffffffffffffe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair(0x3, 0x6, 0x5, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="7f000001ac1414bbb0a66eb5fb0fbc469f0000000001000000e0000001"], 0x14) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$update(0x2, r0, &(0x7f0000000000)="ae", 0x1) [ 748.585822] encrypted_key: keyword 'Mew' not recognized [ 748.722181] encrypted_key: keyword 'Mew' not recognized 09:57:58 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x101000, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = gettid() ptrace$setopts(0x4200, r4, 0x3, 0x24) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:58 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x0, @loopback}, 0x10) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0) mprotect(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x1, 0x2) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="0c8577ac06e1247dfa0eee45d8f74fd6e29574af609cd27355e40b60287a8d92a0486c710ed87f2db359ee092b6c388caeb42560c15f08fceb9c35f642c884c9f6d51e08ee7dfbfb0e6e4272b91010e17f4a3936c51a8789eed59a3d861040894c3ea15cacfe2c342d5204a8a6086357634a00ec85c9257014926a1ded1aaa4e6c1b2a18b584ad", @ANYRES16=r2, @ANYBLOB="02082dbd7000fddbdf2506000000080006000800000008000400700000007800030008000500ffffffff08000800cb000000140002007465616d5f736c6176655f300000000008000100020000001400060000000000000000000000ffff00000002080003000300000008000500ac14141b08000500ac1414bb08000300010000001400020069726c616e30000000000000000000001c000300080008000000000008000300030000000800080000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x800}, 0x4) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffb000/0x2000)=nil, 0x2000}, &(0x7f0000000040)=0x10) 09:57:58 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x2, 0x2) ioctl$RTC_UIE_OFF(r0, 0x7004) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fc) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:57:59 executing program 3: keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="4d65772064656661756c7420757365723a6e6576203030303030303034301f3030303030203030353700"], 0x2c, 0x0) r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0x1f1, 0xfffffffffffffffe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair(0x3, 0x6, 0x5, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="7f000001ac1414bbb0a66eb5fb0fbc469f0000000001000000e0000001"], 0x14) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$update(0x2, r0, &(0x7f0000000000)="ae", 0x1) 09:57:59 executing program 4: r0 = syz_open_dev$amidi(&(0x7f00000003c0)='/dev/amidi#\x00', 0x22e3, 0x101000) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x12715, 0x1, 0x4000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) r1 = socket$inet6(0xa, 0x3, 0x2) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000240)=0x0) rt_sigqueueinfo(r3, 0x5, &(0x7f00000002c0)={0x38, 0x0, 0xf6, 0x2}) io_setup(0x2820, &(0x7f0000000380)=0x0) io_submit(r4, 0x93, 0x0) r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) openat$cgroup_procs(r6, &(0x7f0000000340)='cgroup.threads\x00', 0x2, 0x0) sendfile(r5, r2, &(0x7f0000000100), 0x1) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, r7, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r8 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x3f, 0x80) r9 = fcntl$getown(r2, 0x9) ptrace$pokeuser(0x6, r9, 0xac4, 0x10000) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000040)={0x0, 0x1, 0x101}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r8, 0x84, 0xf, &(0x7f0000000180)={r10, @in={{0x2, 0x4e21, @rand_addr=0x7}}, 0x80, 0x4, 0x1, 0x1f3, 0xad6}, &(0x7f00000000c0)=0x98) [ 749.257517] encrypted_key: keyword 'Mew' not recognized 09:57:59 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x220000, 0x2) write$P9_RRENAMEAT(r4, &(0x7f0000000040)={0x7, 0x4b, 0x1}, 0x7) 09:57:59 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x4, 0x1) ioctl$KVM_NMI(r3, 0xae9a) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:57:59 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xfffffffffffffcf3, 0x0, 0x0, 0xfffffd89) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000000)={0x9, 0x0, 0x1, 0x4}) ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000040)={0x5, r4}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:57:59 executing program 3: ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000003c0)={0x0, {0x2, 0x0, @rand_addr}, {0x2, 0x0, @remote}, {0x2, 0x0, @dev}, 0x40000001fd}) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000180)=@broute={'broute\x00', 0x20, 0x1, 0x1c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200002c0], 0x0, &(0x7f0000000000), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]}, 0x262) 09:57:59 executing program 2: r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001f9) r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f00000001c0)={0x4, 0x70, 0xa71, 0x59c7, 0x2, 0x0, 0x0, 0xfe, 0x10000, 0x1, 0x7, 0x4, 0x9, 0x100000001, 0x4, 0xffffffff, 0x6, 0x5, 0x6, 0x5, 0x1, 0x7, 0x4, 0x1, 0x6, 0x8, 0x16, 0x100000000, 0x4, 0x8001, 0x1f, 0x1, 0xe00000000000, 0x5, 0x7fff, 0x3f, 0x71, 0xff, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000100), 0x6}, 0x800, 0x6, 0x6, 0x7, 0x100000000, 0x0, 0x200}) ioctl$VIDIOC_TRY_ENCODER_CMD(r3, 0xc028564e, &(0x7f0000000080)) fcntl$setpipe(r2, 0x407, 0x3) [ 750.027686] *** Guest State *** [ 750.031077] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 750.040210] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 750.049370] CR3 = 0x0000000000004000 [ 750.053274] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 750.054184] kernel msg: ebtables bug: please report to author: Wrong len argument [ 750.059807] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 750.059834] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 750.059863] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 750.059898] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 750.059945] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 750.101319] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 750.109479] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 750.117646] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 750.120920] kernel msg: ebtables bug: please report to author: Wrong len argument [ 750.125885] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 750.125946] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 750.125983] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 750.126027] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 750.126078] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 750.126124] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 750.126208] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 750.126240] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 750.126270] Interruptibility = 00000000 ActivityState = 00000000 [ 750.126299] *** Host State *** [ 750.206771] RIP = 0xffffffff812cfa68 RSP = 0xffff88810a3df378 [ 750.212976] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 750.219437] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 09:58:00 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000100)) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200, 0x0) setsockopt$inet_dccp_buf(r4, 0x21, 0xcb5c9061252dd6d, &(0x7f0000000040)="f2356b294272deabf8d7940eea05efbfcf7a110f31ff1441a88fc2167900de88478ead4edbda243f228ff9017e30c1eb32a7922a3e23b9f119d096c080168f7c430e48af1c65cdba4ae52cedf9a33de6f26dce138624a6dda13eac8c3d683e319d263a9ef3a91fae07af4567bea73dd1349e1da4cff240bf00e497124a9a3a698a75afe4093573f8d64786c820d0dd1f80ab4fca", 0x94) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 750.227492] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 750.233545] CR0=0000000080050033 CR3=000000019e471000 CR4=00000000001426f0 [ 750.240668] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 750.247659] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 750.253876] *** Control State *** [ 750.257380] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 750.264308] EntryControls=0000d1ff ExitControls=002fefff [ 750.269817] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 750.276978] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 750.283878] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 750.290535] reason=80000021 qualification=0000000000000002 [ 750.297104] IDTVectoring: info=00000000 errcode=00000000 [ 750.302754] TSC Offset = 0xfffffe68e95ab7d0 [ 750.307126] EPT pointer = 0x000000018c56a01e 09:58:00 executing program 0: r0 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) r1 = socket(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) shutdown(r1, 0x0) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f000000eff4)) epoll_wait(r3, &(0x7f000000affb)=[{}], 0x1, 0xfffffffffffffef7) close(r3) setxattr$trusted_overlay_upper(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000080)={0x0, 0xfb, 0x83, 0x0, 0x3, "985e063d13b30b3f16bfac166e4b7c56", "8d95e5f553d7966936419d4aa28afdc1345a71a8d0cb402040a7129952547efaa1239db772571f49bcb9bb6b09e5264e964ee8c5263e44ad9f630477ba48b2324b890dabab979ea13f51c87b7c825d53888bc793d9d9d1bca61d8cefa5495ded2d3826e18f3d61e0c43ad039fe4c"}, 0x83, 0x2) shutdown(r1, 0x1) 09:58:00 executing program 3: syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x1, 0x2) capset(&(0x7f0000000240)={0x20071026}, &(0x7f0000000080)) shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x0) get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x3b2, &(0x7f0000ffd000/0x2000)=nil, 0x1) 09:58:00 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x8, 0x24100) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x3fd) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x7, 0x400000) fchmodat(r1, &(0x7f0000000100)='./file0\x00', 0x20) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000080)) 09:58:00 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000000)=""/159) r3 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x5, 0x400000) ioctl$TIOCLINUX6(r3, 0x541c, &(0x7f0000000100)={0x6, 0x80000000}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x1, 0x2) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x5, 0x40002) ioctl$KVM_HYPERV_EVENTFD(r2, 0x4018aebd, &(0x7f0000000040)={0x4, r3}) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000180)) r4 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0) fcntl$notify(r4, 0x402, 0x0) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000100)=ANY=[@ANYBLOB="c7030000000000000000000002000000000000000000000000000000020000000000000000000000007d0000000000000000000000000000"]) 09:58:01 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r0, 0x20000000008912, &(0x7f00000001c0)="0a5c2d0240316285717070") r1 = perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x1, 0x2) ioctl$KVM_REINJECT_CONTROL(r2, 0xae71, &(0x7f0000000140)={0x8f}) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x11, r3, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r3) r4 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x3, 0x200000) ioctl$FIGETBSZ(r4, 0x2, &(0x7f0000000180)) ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x8031, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f0000000040)="660f382b1a0f01dfdde80f32d9e90f086665676426f7c5000000000f2245deef0f23f5", 0x23}], 0x1, 0x0, &(0x7f0000000140), 0x0) 09:58:01 executing program 5: r0 = socket$inet6(0xa, 0x4, 0xfffffffffffffffb) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000100)="f30f70760b0066b80500000066b900a063cf0f01d9b897008ec00f07160f2045bad104ec2e0f005d000f01ca0f01cf", 0x2f}], 0x1, 0x13, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00', r1}) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', 0x0, 0x8}, 0x10) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:58:01 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x200000, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000080)={0xfa6}, 0x1) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:01 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)={0x0, 0x1}) 09:58:02 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:58:02 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a7c2d023c126285718070") r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000080)={{}, 'syz0\x00'}) r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x1, 0x2) ioctl$DRM_IOCTL_GET_MAGIC(r2, 0x80046402, &(0x7f0000000180)=0x7) ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x4, 0x0) ioctl$UI_DEV_DESTROY(r1, 0x5502) dup3(r1, r3, 0x0) 09:58:02 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x4c8002, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 752.252537] input: syz0 as /devices/virtual/input/input9 09:58:02 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x40000, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:58:02 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = memfd_create(&(0x7f0000000000)='\x00', 0x4) ioctl$PPPIOCGCHAN(r3, 0x80047437, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) fcntl$setflags(r2, 0x2, 0x40001) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 752.435091] input: syz0 as /devices/virtual/input/input10 09:58:02 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x4) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:58:03 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a7c2d023c126285718070") r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000080)={{}, 'syz0\x00'}) r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x1, 0x2) ioctl$DRM_IOCTL_GET_MAGIC(r2, 0x80046402, &(0x7f0000000180)=0x7) ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x4, 0x0) ioctl$UI_DEV_DESTROY(r1, 0x5502) dup3(r1, r3, 0x0) 09:58:03 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="b06672f30171bd9e42f05cc43ca973effe2943fa72a7c8da95aefcf66cc72015c0a0dbe5a79a8b3fe8e343b06ff6f8ca2942690b3e2924e3c9c3e602c402572485e00036182b8099ec19aa91b0aa59f0e07c2870742fe9c68e5854788fb8b6463344e0625c61c64d0aa32bfb8d1342d1cb82c153929bc9b3e4d105bf17915e37d2dff3474b603032e93f0d7913652062f50fd3c3ac34430d0dc2e094efae2c9ac5e2740dec09edf9f8bc34bc154889e7d274b1c4030e85f6f97724f69b5dc182ffea497cc607bc116c45be583ba0b470a7fcf198b3d7daba60", 0xd9, 0x0) keyctl$invalidate(0x15, r3) [ 753.459604] input: syz0 as /devices/virtual/input/input11 [ 753.546560] *** Guest State *** [ 753.549927] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 753.559093] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 753.568373] CR3 = 0x0000000000004000 [ 753.572335] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 753.578976] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 753.585715] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 753.591950] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 753.598281] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 753.605262] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 753.613456] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 753.621535] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 753.629917] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 753.638300] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 753.646495] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 753.654779] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 753.662954] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 753.670981] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 753.679259] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 753.687414] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 753.694083] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 753.701833] Interruptibility = 00000000 ActivityState = 00000000 [ 753.708155] *** Host State *** [ 753.711421] RIP = 0xffffffff812cfa68 RSP = 0xffff88810a0ef378 [ 753.717656] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 753.724294] FSBase=00007fbb5ed19700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 753.732375] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 753.738325] CR0=0000000080050033 CR3=000000010582e000 CR4=00000000001426f0 [ 753.745611] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 753.752475] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 753.758574] *** Control State *** [ 753.762352] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 753.769076] EntryControls=0000d1ff ExitControls=002fefff [ 753.774928] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 753.782060] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 753.788783] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 753.795651] reason=80000021 qualification=0000000000000002 [ 753.802164] IDTVectoring: info=00000000 errcode=00000000 [ 753.807661] TSC Offset = 0xfffffe67061ae193 [ 753.812264] EPT pointer = 0x00000000a2e6801e 09:58:04 executing program 3: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x8000, 0x0) sendmsg$nl_route(r0, &(0x7f0000003b40)={&(0x7f0000003a80)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000003b00)={&(0x7f0000003ac0)=@getnetconf={0x14, 0x52, 0x204, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", ""]}, 0x14}}, 0x4000) mount(&(0x7f0000000180)=ANY=[], &(0x7f0000000200)='./file0/../file0\x00', &(0x7f0000000540)="7379736673002a864f4bc00bce1bdb20637213b1e894d120715f9dc1125b042c7226eb0136d9624ea1d23374a660fe5ac173722fd367ad22e8553025a2e8be0bc5514379af7213d32b8d5d06dc8fbf2c849ed9cdefc74b03dfa9cb5a90b28b4b24d7862c3d66fca53167d5424235435a3dbb76bc7d3c42fc2e9c696114a6f888f0da85277683cfc1c4d2bf71c255a3134d64cc3fed8e97798deb8631cbf7682c9fa2ed031465aa191df922f764297cba22a8499d177f49fba940f55bbc8b723fd374f1fed78c8aeec6811d9b5879487387d56594a14c2588274de84fa27610302b3fb54172a8c910a07e7c76ea465aa68402", 0x3, &(0x7f0000000240)="7379736673002a864f4bc00bce1bdb20637213b1e894d120715f9dc1125b042c7226eb0136d9624ea1d23374a660fe5ac173722fd367ad22e8553025a2e8be0bc5514379af7213d32b8d5d06dc8fbf2c849ed9cdefc74b03dfa9cb5a90b28b4b24d7862c3d66fca53167d5424235435a3dbb76bc7d3c42fc2e9c696114a6f888f0da85277683cfc1c4d2bf71c255a3134d64cc3fed8e97798deb8631cbf7682c9fa2ed031465aa191df922f764297cba22a8499d177f49fba940f55bbc8b723fd374f1fed78c8aeec6811d9b5879487387d56594a14c2588274de84fa27610302b3fb54172a8c910a07e7c76ea465aa68402") r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x680002, 0x0) mkdir(&(0x7f0000003a40)='./file0\x00', 0x5) recvmmsg(r1, &(0x7f0000003880)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000040)=""/87, 0x57}, {&(0x7f00000000c0)=""/20, 0x14}, {&(0x7f0000000340)=""/243, 0xf3}, {&(0x7f0000000440)=""/100, 0x64}, {&(0x7f00000001c0)=""/30, 0x1e}], 0x5, 0x0, 0x0, 0x8}, 0x5}, {{&(0x7f0000000640)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000028c0)=[{&(0x7f00000006c0)=""/6, 0x6}, {&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/199, 0xc7}, {&(0x7f0000002800)=""/182, 0xb6}], 0x5, &(0x7f0000002940)=""/251, 0xfb, 0x8}, 0x1}, {{0x0, 0x0, &(0x7f0000002a80)=[{&(0x7f0000002a40)=""/1, 0x1}], 0x1, &(0x7f0000002ac0)=""/53, 0x35, 0x5e}, 0x5}, {{&(0x7f0000002b00)=@sco, 0x80, &(0x7f0000003100)=[{&(0x7f0000002b80)=""/64, 0x40}, {&(0x7f0000002bc0)=""/189, 0xbd}, {&(0x7f0000002c80)=""/211, 0xd3}, {&(0x7f0000002d80)=""/220, 0xdc}, {&(0x7f0000002e80)=""/108, 0x6c}, {&(0x7f0000002f00)=""/228, 0xe4}, {&(0x7f0000003000)=""/67, 0x43}, {&(0x7f0000003080)=""/67, 0x43}], 0x8, &(0x7f0000003180)=""/204, 0xcc, 0x2}, 0x51}, {{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000003280)=""/149, 0x95}, {&(0x7f0000003340)=""/54, 0x36}, {&(0x7f0000003380)=""/149, 0x95}, {&(0x7f0000003440)=""/133, 0x85}, {&(0x7f0000003500)=""/169, 0xa9}, {&(0x7f00000035c0)=""/78, 0x4e}], 0x6, 0x0, 0x0, 0xffffffffffffffa8}, 0x8}, {{&(0x7f00000036c0)=@can, 0x80, &(0x7f0000003800)=[{&(0x7f0000003740)=""/44, 0x2c}, {&(0x7f0000003780)=""/116, 0x74}], 0x2, &(0x7f0000003840)=""/23, 0x17, 0x1000}, 0xc5}], 0x6, 0x20, &(0x7f0000003a00)={0x77359400}) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)={&(0x7f0000000100)='./file0/../file0\x00'}, 0x10) 09:58:04 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x2, 0x240000) ioctl$UI_GET_VERSION(r3, 0x8004552d, &(0x7f0000000080)) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = dup2(r1, r4) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r5, 0x28, 0x6, &(0x7f0000000000), 0x10) 09:58:04 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) r2 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x6, 0x40000) fstatfs(r1, &(0x7f00000002c0)=""/188) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r2, 0x80dc5521, &(0x7f00000001c0)=""/214) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) 09:58:04 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000000)="66baf80cb840359c85ef66bafc0cb802980000efc401595c6800f30f58f9f345cb0f01cf400f01c90fc7a90a0000000f230966b8cc008ec82e652666430fe8d1", 0x40}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:58:04 executing program 0: mmap(&(0x7f000000c000/0x3000)=nil, 0x3000, 0x3, 0x31, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000048000/0x1000)=nil, 0x1000, 0x6, 0x31, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc)=0x4, 0xb, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0xe8abdfcefe3c1a56, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000080)=&(0x7f0000000040)) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) tkill(r1, 0x16) 09:58:04 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x108) accept4$alg(r3, 0x0, 0x0, 0x800) getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) fdatasync(r0) [ 754.933718] *** Guest State *** [ 754.937215] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 754.946336] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 754.955431] CR3 = 0x0000000000004000 [ 754.959215] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 754.965892] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 754.972645] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 754.978665] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 754.984889] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 754.991752] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 754.999969] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.008286] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 755.016553] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.024761] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.033001] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.041048] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 755.049298] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 755.057529] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 755.065767] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 755.073940] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 755.080406] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 755.088090] Interruptibility = 00000000 ActivityState = 00000000 [ 755.094499] *** Host State *** [ 755.097744] RIP = 0xffffffff812cfa68 RSP = 0xffff88810a2af378 [ 755.104023] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 755.110492] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 755.118624] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 755.124705] CR0=0000000080050033 CR3=00000001051cf000 CR4=00000000001426f0 [ 755.131947] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 755.138706] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 755.144995] *** Control State *** [ 755.148508] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 755.155417] EntryControls=0000d1ff ExitControls=002fefff [ 755.160932] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 755.168097] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 755.174967] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:05 executing program 3: r0 = socket$inet6(0xa, 0x80002, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000040)) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x35, &(0x7f0000000000), 0x4) 09:58:05 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_TRY_ENCODER_CMD(r1, 0xc028564e, &(0x7f0000000080)) openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x0, 0x0) [ 755.181830] reason=80000021 qualification=0000000000000002 [ 755.188215] IDTVectoring: info=00000000 errcode=00000000 [ 755.193904] TSC Offset = 0xfffffe6641af1a46 [ 755.198277] EPT pointer = 0x00000001910e801e 09:58:05 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x81000008912, &(0x7f0000000000)="085c4b023c0d6285718070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast5)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94", 0x5) accept$alg(r1, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e22, @multicast1}}, 0x4, 0x1, 0x5, 0x5bee, 0x8}, &(0x7f0000000040)=0x98) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={r2, 0x5}, 0x8) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) 09:58:05 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = getgid() r5 = syz_open_dev$dmmidi(&(0x7f0000000400)='/dev/dmmidi#\x00', 0xbd3, 0x10002) ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0) stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000100), &(0x7f0000000180), &(0x7f00000001c0)=0x0) r8 = getegid() stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x5, &(0x7f00000002c0)=[r4, r6, r7, r8, r9]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:58:05 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x40001000008912, &(0x7f0000000100)="0a5c2d023c126285718070") r1 = socket$inet6(0xa, 0x80002, 0x88) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='loginuid\x00') ioctl$VHOST_SET_VRING_NUM(r2, 0x4008af10, &(0x7f0000000140)={0x1, 0x1ff}) bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x10010000004e20}, 0x1c) syz_emit_ethernet(0x83, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd601bfc97004d8800fe800000000000000000000000000000ff02000000000000000000000000000100004e14004d9078e29607149378d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb1c373d6ea51369e92fb96cc7c6fe4e24d1fcafff87429e50b32881721afab69cc3712c37ed0"], 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000180)=0x1) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000000)=0x7fffffff, 0x4) ppoll(&(0x7f0000000040)=[{r1}], 0x1, &(0x7f0000000080)={0x0, 0x1c9c380}, 0x0, 0x0) [ 755.751042] *** Guest State *** [ 755.754818] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 755.764054] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 755.773062] CR3 = 0x0000000000004000 [ 755.776836] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 755.783570] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 755.790112] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 755.796322] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 755.802477] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 755.809208] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 755.817362] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.825522] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 755.833695] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.841851] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.849889] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 755.858046] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 755.866710] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 755.874888] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 755.883153] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 755.891199] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 755.897874] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 755.905509] Interruptibility = 00000000 ActivityState = 00000000 [ 755.911953] *** Host State *** [ 755.915213] RIP = 0xffffffff812cfa68 RSP = 0xffff8881049cf378 [ 755.921260] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 755.927926] FSBase=00007f2794fe3700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 755.935906] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 755.942029] CR0=0000000080050033 CR3=0000000157afa000 CR4=00000000001426f0 [ 755.949137] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 755.956052] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 755.962291] *** Control State *** [ 755.965815] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 755.972645] EntryControls=0000d1ff ExitControls=002fefff [ 755.978184] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 755.985296] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 755.992155] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:05 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x6, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(0xffffffffffffffff, 0xc1205531, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, [], [], [], 0x0, 0x0, 0x0, 0x6, "a60772703ec73d747562418e5da30bd5"}) ioctl(r0, 0x6b58c67d, &(0x7f00000001c0)="0079b6485d7b3d34edb118dd7b88175f7429305147c9898afe97e82a45eec856b1d46e23137aebe7acec60c999d7ea62b9d547179f979d4a193b3d1ece644670a16daf650773b8") 09:58:06 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) fsync(r1) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 755.998786] reason=80000021 qualification=0000000000000002 [ 756.005283] IDTVectoring: info=00000000 errcode=00000000 [ 756.010774] TSC Offset = 0xfffffe65dcfc1916 [ 756.015281] EPT pointer = 0x00000001091e001e 09:58:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='cpuset.memory_spread_page\x00', 0x2, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x80000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000080)={{{@in=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@multicast2}}, &(0x7f0000000180)=0xe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0, 0x0}, &(0x7f0000000200)=0xc) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000003c0)={0x4, [0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000400)=0x14) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000300)=0xc) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000340)=0x4ae) write$P9_RSTATu(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="800000007d020000005100ffff81000000400300000005000000000000000000100007260000ffd50021f7ffffffffffffff12002e2f6367726f75702e6370752f73797a310008006b65797269bd8eb2c140bb248643a47908896e67080100280300407d251a006370754c3a918f6d656d6f72795f7370726561645f7061676500", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r6], 0x80) write$cgroup_int(r1, &(0x7f0000000380)=0x8, 0x12) ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f00000002c0)=r5) gettid() 09:58:06 executing program 3: r0 = socket$inet(0x2b, 0x801, 0x0) sendmsg$inet_sctp(r0, &(0x7f0000000300)={&(0x7f0000000000)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10, &(0x7f0000000280), 0x0, &(0x7f00000002c0)}, 0x20000081) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, 0x0, 0x6c2) r1 = request_key(&(0x7f00000000c0)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)=')self\',,/\x00', 0xffffffffffffffff) prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000180)) add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, r1) 09:58:06 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0xd, &(0x7f0000000040)={0x6, 0x0, 0x100000000e393, 0x4}, 0x8) 09:58:06 executing program 2: r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x0, 0x100) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$KVM_GET_CLOCK(r0, 0x8030ae7c, &(0x7f00000000c0)) sendmsg$nl_netfilter(r1, &(0x7f0000498000)={&(0x7f0000d55000), 0xc, &(0x7f00008b7ff0)={&(0x7f0000000040)=ANY=[@ANYBLOB="0471f0a62b0ddc227d416b1dd39d6ff37abfc6635640b5d177a5e4a42c9937b4097baf1ba143fb8a6c0dde507b6180bb179bf41f7a784869f52722ec2b813386aaf5ac87ee21424ea14d9fbd46750ccb25b2790c49b4dcb0a8a1215a0ec5d5c3bece"], 0x14}}, 0x0) 09:58:06 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2000000000002003) r4 = syz_open_dev$sndpcmp(&(0x7f0000008e80)='/dev/snd/pcmC#D#p\x00', 0x6, 0x101000) ioctl$sock_bt_hidp_HIDPCONNADD(r4, 0x400448c8, &(0x7f0000008fc0)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0180080000000000", @ANYPTR=&(0x7f0000008ec0)=ANY=[@ANYBLOB="ce07647f95c6a88fc9719b23d0aa3079e16070aff70c7302bc712e943ee48f79e8cfe3f899669e6c979050a4285f3dbb8293d4a511e27fae45d951cc18921ffa1d3f57f0c7d717efe17a5a86962a990080575b252143ff7248bdbc1b8719aef8925719a91d2211f88e40d4afd02e8e1f1ba2859a8cb7a25f14adb3f9977691046103c2c564be8eb70d73fd729e2a6cd7541df5818ad7f88bd459886e8f1031318b0a340dc3471831f0d879659c78de61c15e79ebd32883109f8b9176e6431774f2809e1d66192e0abe582697"], @ANYBLOB="036d010002000700090000004d23181232044a17f1a962a057ef205dbed92c1e417af67b1acd2b3859777ac596688bea691a0565072f9d190a69f468b8f55dfbee699f6f1c12e3911e580c3e5ea1ab869b1868342f5dfcc98fafecfd7d1026d535f641c174f5aaba966e6310b4ed85ec6faba5552fccebc25aa7f2d36286813025259fb159a8c6474da4b4953a5dc6ca51a461e31f18094a86f03c1dba2a299771fe0efcd356cd17015f16cc917a38ccea9aa63a748778a7f17c7aed006a4299c2111087f0cc8161884da4f8ebd10400e376bf5f7493b895057cf92e803e159067703aa0a16710b4500248d312bcff"]) 09:58:07 executing program 0: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x108) accept4$alg(r3, 0x0, 0x0, 0x800) getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) fdatasync(r0) 09:58:07 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x0, 0x0) fstat(r0, &(0x7f0000000280)) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x40000ffffff, 0x0) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/6, 0x12}], 0x1cf) 09:58:07 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0xffffffffffffffe, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x82, 0x0) ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x2) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x2400, 0x90000) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:07 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000080)="65f42406660f2a5f98b8c5008ec026a50f20c06635000000400f22c02664f3d9edba410066edba210066edf3ac", 0x2d}], 0x1, 0x10, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x400000, 0x0) ioctl$TCSBRKP(r4, 0x5425, 0x9) 09:58:07 executing program 2: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rtc\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x7003, 0x0) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000000)) close(r0) [ 757.434764] *** Guest State *** [ 757.438140] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 757.447285] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 757.456423] CR3 = 0x0000000000004000 [ 757.460195] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 757.467086] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 757.473839] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 757.479970] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 757.486263] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 757.493205] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 757.501245] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.509618] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 757.517885] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.526172] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.534403] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.542696] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 757.550763] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 757.559027] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 757.562391] *** Guest State *** [ 757.567261] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 757.567298] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 757.570682] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 757.578783] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 757.578828] Interruptibility = 00000000 ActivityState = 00000000 [ 757.578860] *** Host State *** [ 757.578907] RIP = 0xffffffff812cfa68 RSP = 0xffff8881619af378 [ 757.578956] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 757.579009] FSBase=00007fbb5ed3a700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 757.579043] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 757.579080] CR0=0000000080050033 CR3=000000015a45f000 CR4=00000000001426e0 [ 757.579137] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 757.579172] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 757.579191] *** Control State *** [ 757.579222] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 757.579248] EntryControls=0000d1ff ExitControls=002fefff [ 757.579283] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 757.579321] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 757.585889] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 757.595255] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 757.602432] CR3 = 0x0000000000004000 [ 757.602467] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 757.608709] reason=80000021 qualification=0000000000000002 [ 757.612059] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 757.612086] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 09:58:07 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x6, 0x0, 0x1, 0x8f}]}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f0000000000)=""/251, 0x0, 0x1}, 0x48) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x800, 0x0) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1b, &(0x7f00000001c0)={@empty, 0x0}, &(0x7f0000000200)=0x14) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1f, 0x6, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x7fffffff}, [@call={0x85, 0x0, 0x0, 0x5a}, @map={0x18, 0x1, 0x1, 0x0, r0}]}, &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41f00, 0x1, [], r1, 0xa}, 0x48) [ 757.612114] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 757.612170] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 757.612211] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 757.618194] IDTVectoring: info=00000000 errcode=00000000 [ 757.624769] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.632754] TSC Offset = 0xfffffe64ee406967 [ 757.638602] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 757.645743] EPT pointer = 0x000000015be5001e [ 757.785161] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.793410] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.801446] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 757.809647] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 757.817818] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 757.826049] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 757.834223] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 757.842452] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 757.848912] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 757.856604] Interruptibility = 00000000 ActivityState = 00000000 [ 757.863023] *** Host State *** [ 757.866803] RIP = 0xffffffff812cfa68 RSP = 0xffff88810ab3f378 [ 757.873050] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 757.879520] FSBase=00007f62c5ab0700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 757.887568] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 757.893638] CR0=0000000080050033 CR3=0000000161a50000 CR4=00000000001426f0 [ 757.900703] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 757.907588] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 757.913840] *** Control State *** [ 757.917343] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 757.924236] EntryControls=0000d1ff ExitControls=002fefff [ 757.929745] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 09:58:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x28, 0x0, 0x0) nanosleep(&(0x7f0000000300)={0x0, 0x989680}, &(0x7f0000000340)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet(0x2, 0x0, 0x0) r5 = add_key(&(0x7f0000000040)='rxrpc_s\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f00000000c0)="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", 0xfe, 0xfffffffffffffffd) r6 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) r7 = syz_open_dev$audion(&(0x7f0000000380)='/dev/audio#\x00', 0x5, 0x410040) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000540)={{{@in6, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@remote}}, &(0x7f0000000640)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xf, 0xd, &(0x7f00000003c0)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x7f}, @map={0x18, 0x5, 0x1, 0x0, r7}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1}, @map={0x18, 0xf, 0x1, 0x0, r4}, @call={0x85, 0x0, 0x0, 0x2d}, @call={0x85, 0x0, 0x0, 0xc}, @generic={0x8000, 0xfffffffffffffffa, 0x75b7, 0x40, 0x5}, @ldst={0x1, 0x0, 0x3, 0xe, 0xb, 0xffffffffffffffe2, 0xffffffffffffffff}, @generic={0x7, 0xfffffffffffffffa, 0xfffffffffffffffd, 0x1000, 0x8b}], &(0x7f0000000440)='syzkaller\x00', 0x46, 0x0, 0x0, 0x41100, 0x1, [], r8, 0x2}, 0x48) ioctl$KVM_REINJECT_CONTROL(r3, 0xae71, &(0x7f00000002c0)={0x7ff}) keyctl$link(0x8, r5, r6) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x400000000032, 0xffffffffffffffff, 0x0) [ 757.936902] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 757.943794] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 757.950422] reason=80000021 qualification=0000000000000002 [ 757.956995] IDTVectoring: info=00000000 errcode=00000000 [ 757.962665] TSC Offset = 0xfffffe64e9f8c187 [ 757.967033] EPT pointer = 0x000000010a2e801e 09:58:08 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x5c) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:08 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/fuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f0000002000), 0x1000) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) setxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='trusted.overlay.redirect\x00', &(0x7f0000000140)='./file0/file0\x00', 0xe, 0x0) read$FUSE(r0, &(0x7f0000001000), 0x4f68) write$FUSE_INIT(r0, &(0x7f00000002c0)={0x50, 0x0, 0x2, {0x7, 0x8}}, 0x50) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)=0x0) r2 = request_key(&(0x7f0000000040)='.request_key_auth\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)='\x00', 0xfffffffffffffffa) r3 = request_key(&(0x7f00000003c0)='id_legacy\x00', &(0x7f0000000480)={'syz', 0x2}, &(0x7f00000004c0)='\x00', 0xfffffffffffffffb) keyctl$reject(0x13, r2, 0x3, 0x7ff, r3) capset(&(0x7f00000001c0)={0x39980732, r1}, &(0x7f0000000240)={0x4000000000, 0x8001, 0x20, 0x7ff, 0x7, 0x8}) 09:58:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socket$l2tp(0x18, 0x1, 0x1) ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234418dc25d766070") ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xffffdffffffffe00) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x0) 09:58:08 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000040)={0x6, 0x2}) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000080)={r0, 0x50, &(0x7f0000000180)={0x0, 0x0}}, 0x10) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000100)=r2, 0x4) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 09:58:08 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x10000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000080)="baf80c66b85645d78d66efbafc0cedf40f5e950f800f520466b80500000066b9953000000f01d9ea020059000f01cabaa100b029eeeab34d2d000f32", 0x3c}], 0x1, 0x30, &(0x7f0000000100)=[@dstype3={0x7, 0x1}], 0x1) ioctl$SG_GET_VERSION_NUM(r3, 0x2282, &(0x7f0000000140)) openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x600000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:08 executing program 2: setsockopt$netlink_NETLINK_RX_RING(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000000)={0x1c2, 0x0, 0x29, 0x3}, 0x453) r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video37\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYSTD(r0, 0x8008563f, &(0x7f0000000080)) 09:58:09 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = accept4(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, &(0x7f0000000080)=0x80, 0x80800) ioctl$sock_inet_SIOCDELRT(r4, 0x890c, &(0x7f0000000180)={0x8, {0x2, 0x4e22, @rand_addr=0x8}, {0x2, 0x4e22, @rand_addr=0x8000}, {0x2, 0x4e20, @rand_addr=0x1}, 0x108, 0x8, 0x15de, 0x0, 0x3, &(0x7f0000000100)='irlan0\x00', 0x7, 0xa4, 0x8}) ioctl$PPPIOCSFLAGS(r4, 0x40047459, &(0x7f00000000c0)=0x100000) ioctl$KVM_SET_NR_MMU_PAGES(r2, 0xae44, 0x7ff) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:09 executing program 0: socket$xdp(0x2c, 0x3, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x800000000009031, 0xffffffffffffffff, 0x0) madvise(&(0x7f000066c000/0x2000)=nil, 0x2000, 0x3) [ 759.204535] *** Guest State *** [ 759.208102] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 759.217390] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 759.226500] CR3 = 0x0000000000004000 [ 759.230282] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 759.237008] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 759.243707] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 759.249760] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 759.256053] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 759.262981] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 759.271026] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 759.279318] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 759.287565] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 759.295895] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 759.304096] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 759.312361] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 759.320402] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 759.328804] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 759.337020] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 759.345243] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 759.351885] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 759.359388] Interruptibility = 00000000 ActivityState = 00000000 [ 759.365954] *** Host State *** [ 759.369208] RIP = 0xffffffff812cfa68 RSP = 0xffff888109eff378 [ 759.375419] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 759.382101] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 759.389972] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 759.396118] CR0=0000000080050033 CR3=000000015d10c000 CR4=00000000001426e0 [ 759.403404] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 759.410145] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 759.416521] *** Control State *** [ 759.420029] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 759.426965] EntryControls=0000d1ff ExitControls=002fefff [ 759.432633] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 759.439637] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 759.446582] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 759.453461] reason=80000021 qualification=0000000000000002 [ 759.459833] IDTVectoring: info=00000000 errcode=00000000 [ 759.465552] TSC Offset = 0xfffffe63f310a7e0 [ 759.469955] EPT pointer = 0x000000016541b01e 09:58:09 executing program 2: r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000480)='/dev/video0\x00', 0x2, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x40, 0x0) ioctl$TIOCLINUX6(r1, 0x541c, &(0x7f00000003c0)={0x6, 0x3}) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f0000000040)={0x0, @speck128}) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = add_key(&(0x7f0000000200)='rxrpc_s\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)="8e61d7b8307e21f0e2c639435cf33fe62f137eebacd4f5a38ce4804d238067a44c573acbd1c0ef582db16fe6d9525ea7283cf97f4226a5ce37c1501e0b6927ca1f3e036c4ca3ddbc9f74c4916d83df38557a96336b365f95bd37aa0cfad0723015a1618d052c5e9faac371cfcc714bace42b4b8a8d83474905495c712f1a291a9a6db76a1ece6dbbe5368bc2d57d9fa275c713863acb0cfc1b7493521270eaf083c63a097da89fb27ddfc9d256aaa042b79ddfd8d520c206067fe020a183bb1f39548f63acbdd649a9af9a63f18443c4c70072f672562126492288", 0xdb, 0xfffffffffffffffe) keyctl$get_keyring_id(0x0, r3, 0x1) add_key(&(0x7f0000000140)='logon\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)="a9ff583dfcd6a6e0c9e5cfa57f160f2ab099cd6e3a690cbf4356a1a77283852a269a7b12edbd21f8ea4060228777bb19ce5ab7861a8211a431d8b5b4", 0x3c, r3) ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000000000)={0x3, 0x1, [0x5, 0x100, 0xbe02, 0x7, 0x4, 0x10001, 0x401, 0x6]}) ioctl$VIDIOC_G_JPEGCOMP(r0, 0x808c563d, &(0x7f0000000580)) sendmsg$nl_route(r2, &(0x7f0000006680)={0x0, 0x0, &(0x7f0000006640)={&(0x7f0000005440)=ANY=[@ANYBLOB="2800000012002f0a000000000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000a1564bf64529902a83e2", @ANYRES32=0x0], 0x28}}, 0x0) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0], 0x1, 0x7, 0x6, 0x6, 0x400, 0x4, {0x800, 0x3, 0xffffffff, 0x10000, 0xcb6, 0x0, 0x5, 0xfffffffffffffff9, 0x32, 0x0, 0x5, 0x0, 0x2, 0x4, "d9d70a2eacbbd2c30bb24a50207e54b76ae43976b6b72e264f89272a5d8cafc5"}}) 09:58:09 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0), 0x8) syncfs(r0) 09:58:09 executing program 1: socket$inet6(0xa, 0x20000807, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000140)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0], 0x6, 0x2, 0x3, 0x3}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000200)={0x9, &(0x7f0000000180)=[{0x1f, 0x6, 0x1000, 0x5}, {0x6, 0x1000, 0x100000001, 0x1000000000}, {0x10000, 0x5, 0x8, 0x7f}, {0xfff, 0x401, 0x6, 0x7}, {0x6, 0x82, 0x0, 0xffffffffffff0001}, {0x3, 0x1, 0x9}, {0x3, 0x0, 0x7, 0x3}, {0x7, 0x4, 0x7}, {0x0, 0x2, 0x2, 0x2}]}, 0x10) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:58:09 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) geteuid() ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 759.848637] netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. [ 759.857753] netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. 09:58:10 executing program 3: r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f00000002c0)='X', 0x1, 0xfffffffffffffffe) keyctl$update(0x2, r0, &(0x7f0000002440)="bd2da453f568ada14adacb60ec721e0a9e7cc39eb1705c169cade5940a1a0dd0520eb190340fb75774cd31479cb5747b80681d0811ae946d8183d05eb24436a886e3eeb46833f96ca9292f3ce3c3c2de375bcf606f780516c43dab12ae305922846fba6addcfb294d1bdf5f4491c8a853638b83bd2e62b63bd9005771ad8c6011c6ccc7538104e9590748603954ee414f8ac6486534bd776eb2883f49bc13a84e2d2e0d7787cab3092f657daf3a7df7680b28ff01f836549d461ff5a0e6db308", 0xc0) r1 = add_key$user(&(0x7f00000001c0)='user\x00', &(0x7f0000000500)={'syz'}, &(0x7f0000000540)="670e1cc292", 0x5, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r1, r0, r1}, &(0x7f0000000400)=""/240, 0xf0, 0x0) socketpair$inet_sctp(0x2, 0x1, 0x84, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_proto_private(r2, 0x89ed, &(0x7f0000000100)="827b06eedae27301665d57ab4e04171692d9ae7dae00d86035eccead30947fd504744e38af1fee3c42de832f7948730790f28f9f26f0eb11294d13008ccdc46a48f38a130c1de26b1cd1207670ae4d5d9ea7") [ 759.993170] netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. [ 760.002539] netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. 09:58:10 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getpeername$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000040)=0x1c) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 760.334810] *** Guest State *** [ 760.338193] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 760.347354] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 760.356400] CR3 = 0x0000000000004000 [ 760.360187] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 760.366939] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 760.373637] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 760.379684] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 760.385975] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 760.393034] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 760.401078] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 760.409399] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 760.417713] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 760.425915] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 09:58:10 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0), 0x8) syncfs(r0) [ 760.434186] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 760.442364] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 760.450403] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 760.458652] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 760.466872] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 760.475073] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:58:10 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439efc53decf2f7ea39101d2da75af1f0200f5ab26d7a071fb35331ce39c5a") r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0) dup2(r1, r0) fcntl$setstatus(r0, 0x4, 0x10000000006810) pread64(r1, &(0x7f0000000300)=""/4096, 0x1089, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x0], 0x2}) [ 760.481760] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 760.489287] Interruptibility = 00000000 ActivityState = 00000000 [ 760.495713] *** Host State *** [ 760.498999] RIP = 0xffffffff812cfa68 RSP = 0xffff88816147f378 [ 760.505264] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 760.511908] FSBase=00007fbb5ed3a700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 760.519766] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 760.525932] CR0=0000000080050033 CR3=000000018d43c000 CR4=00000000001426e0 [ 760.533173] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 760.539921] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 760.546246] *** Control State *** [ 760.549772] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 760.556723] EntryControls=0000d1ff ExitControls=002fefff [ 760.562380] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 760.569365] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 760.576293] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:10 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x4000000000000006) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0a5c2d023c126285718070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000580)={0x26, 'aead\x00', 0x0, 0x0, 'aegis256-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000600)="b7dd8b55b062950bf62a55abc8464d025f8a0100000000c3b8f7c209d50b4f8e8a4d0b40665432279179906a219a1bdc76734d589df5a9721cfeaffce47d0900171b721a3fbd5724b6871733562cf3b7bc0c0762b30645f94e489a86191922f69574da943337fba90558b77e13ce544b45ebb35fcb6fe2c3acd30f", 0xd0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mixer\x00', 0x8040, 0x0) getsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000200)=0x30d9, &(0x7f0000000240)=0x4) r3 = accept$alg(r1, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f00000002c0), 0x0, &(0x7f0000000140)=[@assoc={0x18, 0x117, 0x4, 0x759a}], 0x18}], 0x1, 0x0) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmmsg(r3, &(0x7f0000008a00)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)=""/48, 0x7ffff000}, {&(0x7f00000000c0)=""/120, 0x78}, {&(0x7f0000000300)=""/230, 0xe6}], 0x3}}], 0x1, 0x0, &(0x7f0000008bc0)) [ 760.583098] reason=80000021 qualification=0000000000000002 [ 760.589483] IDTVectoring: info=00000000 errcode=00000000 [ 760.595219] TSC Offset = 0xfffffe636791510f [ 760.599608] EPT pointer = 0x00000000a2e9801e 09:58:10 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x4000, 0x0) write$FUSE_GETXATTR(r4, &(0x7f0000000100)={0x18, 0x0, 0x5, {0xe9b}}, 0x18) ioctl$KVM_RUN(r3, 0xae80, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$FICLONERANGE(r5, 0x4020940d, &(0x7f00000001c0)={r6, 0x0, 0xce53, 0x8001, 0x1000}) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000040)={r6, &(0x7f0000000380)="2e85b86d663723947dd925703e07633dada38d43907d65a0938a9a9394271e7c97bf47f08dbf8e7e3f3cef47592a84f6ca88d4c7ee6c1c6c978fe2550cd38478fbb97cba3bb4061fed94f54acc1ddd6b957f90e114f52d7db30758f65503c94d14dc251799d4ae491685f8b40ac72aed2962e85f379dd456c381589535adf97bd5a6ce6ecf89cb82a24b83f5419a646097f4e0344b0e47305d4032acecda25324ba798693a3a488352b7f67f921165c0e1350be72173457c6ce7d280555ef7dc80160b7d9aa0bb542a0056a348097fe9405d51aa7d9bb951ea82beb7392b4f8071a2f26b7698", &(0x7f0000000480)=""/219}, 0x18) ioctl$VHOST_SET_VRING_NUM(r5, 0x4008af10, &(0x7f0000000180)={0x3, 0x7}) 09:58:11 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00') preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xff03}], 0x1, 0x0) 09:58:11 executing program 2: r0 = syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000000c0)={0x14, 0x0, &(0x7f0000000100)=[@acquire_done={0x40486311}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x4, 0x0, &(0x7f0000000000)=[@register_looper], 0x1, 0x0, &(0x7f0000000040)="f0"}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f00000001c0)=[@reply_sg={0x40486312, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}}], 0x0, 0x0, 0x0}) 09:58:11 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000780)='/dev/snapshot\x00', 0x40900, 0x0) recvmmsg(0xffffffffffffff9c, &(0x7f0000005800)=[{{&(0x7f0000000e80)=@ax25, 0x80, &(0x7f0000003240)=[{&(0x7f0000000f00)=""/251, 0xfb}, {&(0x7f0000001000)=""/73, 0x49}, {&(0x7f0000001080)=""/174, 0xae}, {&(0x7f0000001140)=""/4096, 0x1000}, {&(0x7f0000002140)=""/199, 0xc7}, {&(0x7f0000002240)=""/4096, 0x1000}], 0x6, 0x0, 0x0, 0x401}, 0x6d1d}, {{&(0x7f00000032c0)=@nfc_llcp, 0x80, &(0x7f0000003600)=[{&(0x7f0000003340)=""/233, 0xe9}, {&(0x7f0000003440)=""/96, 0x60}, {&(0x7f00000034c0)=""/42, 0x2a}, {&(0x7f0000003500)=""/80, 0x50}, {&(0x7f0000003580)=""/54, 0x36}, {&(0x7f00000035c0)=""/32, 0x20}], 0x6, &(0x7f0000003680)=""/109, 0x6d, 0x9}, 0xd81}, {{&(0x7f0000003700)=@vsock, 0x80, &(0x7f0000004d00)=[{&(0x7f0000003780)=""/195, 0xc3}, {&(0x7f0000003880)=""/177, 0xb1}, {&(0x7f0000003940)=""/86, 0x56}, {&(0x7f00000039c0)=""/122, 0x7a}, {&(0x7f0000003a40)=""/68, 0x44}, {&(0x7f0000003ac0)=""/130, 0x82}, {&(0x7f0000003b80)=""/80, 0x50}, {&(0x7f0000003c00)=""/255, 0xff}, {&(0x7f0000003d00)=""/4096, 0x1000}], 0x9, &(0x7f0000004dc0)=""/122, 0x7a, 0x8}}, {{&(0x7f0000004e40)=@nfc_llcp, 0x80, &(0x7f00000050c0)=[{&(0x7f0000004ec0)=""/22, 0x16}, {&(0x7f0000004f00)=""/197, 0xc5}, {&(0x7f0000005000)=""/33, 0x21}, {&(0x7f0000005040)=""/100, 0x64}], 0x4, &(0x7f0000005100)=""/32, 0x20, 0x7}, 0x61c}, {{&(0x7f0000005140)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f00000055c0)=[{&(0x7f00000051c0)=""/160, 0xa0}, {&(0x7f0000005280)=""/14, 0xe}, {&(0x7f00000052c0)=""/134, 0x86}, {&(0x7f0000005380)=""/7, 0x7}, {&(0x7f00000053c0)=""/67, 0x43}, {&(0x7f0000005440)=""/193, 0xc1}, {&(0x7f0000005540)=""/84, 0x54}], 0x7, &(0x7f0000005640)=""/72, 0x48}, 0x73}, {{0x0, 0x0, &(0x7f0000005780)=[{&(0x7f00000056c0)=""/143, 0x8f}], 0x1, &(0x7f00000057c0)=""/10, 0xa, 0xffffffff}, 0x5}], 0x6, 0x2000, &(0x7f0000005980)={0x0, 0x989680}) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000059c0)={@remote, r1}, 0x14) r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x108) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = socket$inet6(0xa, 0x3, 0x2) ioctl(r3, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x200000, 0x0) [ 761.200631] binder: 21993:21995 ERROR: BC_REGISTER_LOOPER called without request [ 761.209142] binder: 21995 RLIMIT_NICE not set [ 761.213957] binder: 21995 RLIMIT_NICE not set [ 761.272701] binder: 21993:21995 got reply transaction with bad transaction stack, transaction 25 has target 21993:21995 [ 761.284048] binder: 21993:21995 transaction failed 29201/-71, size 0-0 line 2756 [ 761.295689] *** Guest State *** [ 761.299303] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 761.308420] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 761.317460] CR3 = 0x0000000000004000 [ 761.321387] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 761.328177] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 761.334928] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 761.340956] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 761.347248] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 761.354155] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 761.362425] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 761.370466] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 761.378729] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 761.386994] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 761.395316] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 761.403579] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 761.411781] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 761.419815] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 761.428114] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 761.436340] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 761.443021] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 761.450527] Interruptibility = 00000000 ActivityState = 00000000 [ 761.456961] *** Host State *** [ 761.460217] RIP = 0xffffffff812cfa68 RSP = 0xffff88809e70f378 [ 761.466517] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 761.473164] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 761.481022] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 761.487196] CR0=0000000080050033 CR3=00000001049fc000 CR4=00000000001426e0 [ 761.494434] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 761.501169] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 761.507482] *** Control State *** [ 761.510999] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 761.517998] EntryControls=0000d1ff ExitControls=002fefff 09:58:11 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0), 0x8) syncfs(r0) [ 761.523687] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 761.530676] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 761.537694] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 761.544488] reason=80000021 qualification=0000000000000002 [ 761.550885] IDTVectoring: info=00000000 errcode=00000000 [ 761.556630] TSC Offset = 0xfffffe62d9699a4e [ 761.561010] EPT pointer = 0x00000001091ee01e [ 761.582567] binder_alloc: binder_alloc_mmap_handler: 21993 20001000-20004000 already mapped failed -16 [ 761.616344] binder: BINDER_SET_CONTEXT_MGR already set [ 761.622095] binder: 21993:21995 ioctl 40046207 0 returned -16 [ 761.669658] binder_alloc: 21993: binder_alloc_buf, no vma [ 761.675609] binder: 21993:22011 transaction failed 29189/-3, size 0-0 line 2973 [ 761.714966] binder: 21993:21995 ERROR: BC_REGISTER_LOOPER called without request [ 761.722808] binder: 21995 RLIMIT_NICE not set [ 761.732831] binder: 21993:22004 got reply transaction with no transaction stack [ 761.740469] binder: 21993:22004 transaction failed 29201/-71, size 0-0 line 2741 [ 761.790051] binder: release 21993:21995 transaction 25 out, still active [ 761.797233] binder: undelivered TRANSACTION_COMPLETE [ 761.802710] binder: undelivered TRANSACTION_ERROR: 29201 09:58:11 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x10000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000000)=0x1, 0xff8d) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = dup2(r1, r1) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64) clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, &(0x7f0000000180), 0xffffffffffffffff) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000040)={@remote, 0x0, 0x0, 0x0, 0x0, 0x6979}, 0x20) accept4$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local}, 0x0, 0x0) 09:58:11 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 761.830660] binder: undelivered TRANSACTION_ERROR: 29201 [ 761.836452] binder: undelivered TRANSACTION_ERROR: 29189 [ 761.842346] binder: release 21993:21995 transaction 25 in, still active [ 761.849172] binder: send failed reply for transaction 25, target dead 09:58:12 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000c45ff6)=@abs={0x1}, 0x3) getsockname(r0, 0x0, &(0x7f0000000080)) 09:58:12 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0), 0x8) syncfs(r0) 09:58:12 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f00000002c0)=""/4096) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 762.421183] *** Guest State *** [ 762.424910] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 762.434088] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 762.443158] CR3 = 0x0000000000004000 [ 762.446928] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 762.453695] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 762.460261] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 762.466491] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 762.472680] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 762.479410] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 762.487679] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 762.495865] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 762.504144] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 762.512346] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 762.520385] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 762.528653] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 762.536836] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 762.545055] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 762.553260] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 762.561287] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 762.567951] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 762.575658] Interruptibility = 00000000 ActivityState = 00000000 [ 762.582126] *** Host State *** [ 762.585394] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a1eff378 [ 762.591440] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 762.598110] FSBase=00007fbb5ed3a700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 762.606173] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 762.612370] CR0=0000000080050033 CR3=000000018d43c000 CR4=00000000001426e0 [ 762.619467] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 762.626388] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 762.632690] *** Control State *** [ 762.636199] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 762.643101] EntryControls=0000d1ff ExitControls=002fefff [ 762.648703] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 762.655908] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 762.662797] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='coredump_filter\x00') preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xdc}], 0x1, 0x0) [ 762.669473] reason=80000021 qualification=0000000000000002 [ 762.676147] IDTVectoring: info=00000000 errcode=00000000 [ 762.681835] TSC Offset = 0xfffffe623a77f780 [ 762.686208] EPT pointer = 0x000000010a0ea01e 09:58:13 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0), 0x8) 09:58:13 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x800, 0x0) 09:58:13 executing program 3: init_module(&(0x7f0000000000)=':em0!em0\'\x00', 0xa, 0x0) r0 = socket$inet6(0xa, 0x3, 0x20000000021) sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) 09:58:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00') writev(r0, &(0x7f0000000340)=[{&(0x7f0000000240)=' ', 0x1}], 0x1) 09:58:13 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x3, 0x0) setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000040)=0x7, 0x4) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) time(&(0x7f0000000080)) r4 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$assume_authority(0x10, r4) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:13 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1}, 0x100) write$binfmt_elf64(r0, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4600706a5ce1a2ee467d3bca22f507643a066104010000000000000200000000000040000000000000000c0200000000a6d10000030038000200ffffffff468051e57464030000000300000000000000bc08000000000000f9ffffffffffff1e8e727b8485ad5216a03189d9ffff7f0000000000000600000000000000000800000000000005000000020000006f000000000000000000000000000000ea2b000000000000080000000000000003000000000000000800000000000000f8d1cf6bc8252c025b5f92a84bb4d5efd7201c0b3858f135eeae2dc7f0e87b4cb7c2ebe8e1bf26d90204e8796ae2234ab4507f89e0a927c56e06ac8486242f23306477b3ced713f3ccd7a0f1572c2cfeceaf21bfb67974157e7a4e10510b1d74ca0f796a92f62c8102c33ef139e0cf2ccd4388e8404194afc7dcb3c0580904a76736e493f5c3e2c8d91d510485793916f26e041f6b30857e8c9b55fe64259328116a71513c065b05319d42f98f000000000000000000000000000000000000000000000000000000000000000000100000"], 0x191) 09:58:13 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 763.588690] *** Guest State *** [ 763.592358] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 763.601260] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 763.610383] CR3 = 0x0000000000004000 [ 763.614311] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 763.620861] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 763.627757] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 763.633936] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 763.639972] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 763.646931] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 763.655147] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 763.663349] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 763.671388] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 763.679662] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 763.687921] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 763.696148] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 763.704419] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 763.712597] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 763.720653] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 763.728935] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 763.735549] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 763.743306] Interruptibility = 00000000 ActivityState = 00000000 [ 763.749581] *** Host State *** [ 763.753159] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a066f378 [ 763.759214] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 763.765916] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 763.773930] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 763.779899] CR0=0000000080050033 CR3=0000000105138000 CR4=00000000001426e0 [ 763.787204] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 763.794080] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 763.800188] *** Control State *** [ 763.803910] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 763.810632] EntryControls=0000d1ff ExitControls=002fefff [ 763.816367] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 763.823505] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 763.830229] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/sockstat\x00') preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/50, 0x32}], 0x1, 0x1e) 09:58:13 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) [ 763.837106] reason=80000021 qualification=0000000000000002 [ 763.843696] IDTVectoring: info=00000000 errcode=00000000 [ 763.849206] TSC Offset = 0xfffffe619ffe9e4e [ 763.853907] EPT pointer = 0x000000010a15501e 09:58:14 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, [0x6000000000000, 0x1000, 0x74, 0x48]}) syz_emit_ethernet(0x7b, &(0x7f0000000140)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "7fa4e3", 0x45, 0x11, 0x0, @remote, @mcast2, {[], @gre={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x1, 0x0, [], "f7"}}}}}}}, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:58:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='auxv\x00') preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xdc}], 0x1, 0x0) 09:58:14 executing program 4: r0 = socket$inet6(0xa, 0xa, 0x9) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x10000000000000) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:14 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) umount2(&(0x7f0000000200)='./file0\x00', 0x9) 09:58:14 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000000)="816000279500000fc7adcdcd924ec4e3fd00777b000f0f8e00000000aa0f01c80f01ca0f00d4c4e2bd9bc966660f43f6dacf"}], 0xaaaaaaaaaaaae87, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:14 executing program 3: getgroups(0x2, &(0x7f0000000000)=[0x0, 0xee00]) setresgid(0x0, r0, 0x0) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00') 09:58:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/netfilter\x00') fchmodat(r0, &(0x7f0000000000)='./file0\x00', 0x0) 09:58:15 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x5, 0xffffffffffffffbf) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:15 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/udplite\x00') preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xdc}], 0x1, 0x0) 09:58:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af300200f5abfb9845f9e19859c9693206f2c60b0000000719e1d66e970123d893d974e5b9c3285677b2139823e5500c92ab5b94da3a7de19f063bb765b02bd5b660fb7fa898c6f5c6369c3f363068d10af833f6475bbe8b7967255b177607ba100f6c4654718232dbda64aa1f69cf9ab5b3ea3ed63452b7ebd37c9dae664e322e08ad8f6029fe8fd0b34c7117480471aeca0a3fc9eceb28509ca8a83e4f8b85131808bc5cfb4cc24e1901769c084c082712b470666b6dddf74ced693973ba1ded8b") fcntl$setstatus(r0, 0x4, 0x6800) preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220}, {&(0x7f0000000000)=""/90, 0xfffffec3}, {&(0x7f0000006300)=""/247}, {&(0x7f0000006400)=""/4096, 0x1f6}, {&(0x7f0000007400)=""/204}, {&(0x7f0000007500)=""/192, 0x94}], 0x1000000000000212, 0x0) 09:58:15 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$VT_RELDISP(r0, 0x5605) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:15 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x9, 0x2) ioctl$DRM_IOCTL_GET_MAGIC(r1, 0x80046402, &(0x7f0000000100)=0x144d) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x200, 0x0) ioctl$RNDZAPENTCNT(r5, 0x5204, &(0x7f0000000040)=0x7) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:58:15 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) getgroups(0x2, &(0x7f0000000000)=[0x0, 0xee00]) setresgid(0x0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00') 09:58:15 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000100)={0x0, 0x7fff}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000180)={r1, 0x9}, 0x8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r4, 0xc0bc5310, &(0x7f0000000040)) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 09:58:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000000)="670f01c8660fd05bfd0f20e035000100000f22e0c4c2450a99faffffffc4e17911d10f08660f388167b92e0f0015105000000f00da670f00d4", 0x39}], 0x1, 0x13, 0x0, 0x0) ptrace$getenv(0x4201, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:16 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) [ 766.314382] *** Guest State *** [ 766.317746] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 766.326972] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 766.336176] CR3 = 0x0000000000004000 [ 766.339945] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 766.346621] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 766.353300] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 766.359421] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 766.365589] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 766.372480] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 766.380525] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 766.388747] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 766.396905] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 766.405033] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 766.413211] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 766.421231] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 766.429401] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 766.437574] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 766.445743] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 766.454184] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:58:16 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x7f) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x8001, 0x27, 0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x1) [ 766.460670] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 766.468363] Interruptibility = 00000000 ActivityState = 00000000 [ 766.474765] *** Host State *** [ 766.478014] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a058f378 [ 766.484275] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 766.490743] FSBase=00007f2795025700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 766.498775] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 766.504849] CR0=0000000080050033 CR3=000000015a6a4000 CR4=00000000001426f0 [ 766.512178] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 766.518947] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 766.525489] *** Control State *** [ 766.529029] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 766.535938] EntryControls=0000d1ff ExitControls=002fefff [ 766.541461] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 766.548685] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 766.555626] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 766.562449] reason=80000021 qualification=0000000000000002 [ 766.568825] IDTVectoring: info=00000000 errcode=00000000 [ 766.574564] TSC Offset = 0xfffffe602fc17c16 [ 766.578941] EPT pointer = 0x00000000a2e2401e [ 766.697148] ion_buffer_destroy: buffer still mapped in the kernel 09:58:16 executing program 3: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000000)='threaded\x00', 0xfffffdb9) fallocate(r0, 0x0, 0x0, 0xfffe) 09:58:16 executing program 2: r0 = socket(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendfile(r0, r1, 0x0, 0x81000001) 09:58:16 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:16 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x6, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$UI_END_FF_UPLOAD(r1, 0x406855c9, &(0x7f0000000340)={0x6, 0x4, {0x57, 0x9c8, 0x7d90, {0x4, 0x1}, {0x3, 0x4000000000000}, @const={0x3169, {0x5, 0x7, 0x0, 0x3}}}, {0x57, 0x5, 0x5, {0xfffffffffffffff7, 0x7830}, {0x7fff, 0x1}, @rumble={0x5, 0x100000000}}}) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000440)={0x0, 0x81}, &(0x7f0000000480)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f00000004c0)={r6, @in6={{0xa, 0x4e24, 0xaf, @mcast2, 0xe000000000000000}}, 0x6e2, 0xfff}, 0x90) sendmsg(r5, &(0x7f0000013000)={&(0x7f0000013fe4)=@in6={0xa, 0x4e23, 0x0, @loopback}, 0x80, &(0x7f0000000440), 0x0, &(0x7f0000000040)=[{0x18, 0x29, 0x5, "27020201"}], 0x18}, 0x0) getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000002c0)=0x14) connect$packet(r1, &(0x7f0000000300)={0x11, 0xff, r7, 0x1, 0x4, 0x6, @random="ad2cc2458a01"}, 0x14) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000180)={0xffffffffffffffff}, 0x2, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000200)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000080)=[{0x1c, 0x0, [0x7826, 0x6, 0x6a, 0xffff, 0x1, 0x4, 0x7fff, 0xffffffffa350ecba, 0x7ff, 0x7, 0x5, 0x9, 0xffffffff, 0x8, 0x1000, 0x6]}, {0xf, 0x0, [0x3, 0x1, 0x8, 0x6, 0x1, 0xfffffffeffffffff, 0x0, 0xffffffff, 0x8, 0x80, 0xfffffffffffffffb, 0x7fff, 0x3, 0x2fb, 0x7, 0xbda]}], r8, 0x1, 0x1, 0x90}}, 0x20) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:17 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:58:17 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) [ 767.522451] *** Guest State *** [ 767.525821] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 767.534969] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 767.544009] CR3 = 0x0000000000004000 [ 767.547785] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 767.554480] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 767.561041] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 767.567249] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 767.573486] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 767.580216] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 767.588434] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 767.596590] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 767.604787] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 767.612997] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 767.621034] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 767.629354] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 767.637521] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 767.645784] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 767.653973] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 767.662189] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 767.668653] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 767.676387] Interruptibility = 00000000 ActivityState = 00000000 [ 767.682817] *** Host State *** [ 767.686066] RIP = 0xffffffff812cfa68 RSP = 0xffff88809e70f378 [ 767.692339] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 767.698840] FSBase=00007f2794fe3700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 767.706909] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 767.713107] CR0=0000000080050033 CR3=000000015a6a4000 CR4=00000000001426e0 [ 767.720198] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 767.727143] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 767.733422] *** Control State *** [ 767.736933] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 767.743883] EntryControls=0000d1ff ExitControls=002fefff [ 767.749423] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 767.756610] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 767.763524] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 767.770178] reason=80000021 qualification=0000000000000002 [ 767.776786] IDTVectoring: info=00000000 errcode=00000000 [ 767.782452] TSC Offset = 0xfffffe602fc0e49c [ 767.786828] EPT pointer = 0x00000000a2e2401e 09:58:18 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x519e40, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x2f7) setsockopt$ALG_SET_AEAD_AUTHSIZE(r2, 0x117, 0x5, 0x0, 0x7) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x3, 0x0) 09:58:18 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='attr/keycreate\x00') preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/50, 0x32}], 0x1, 0x0) 09:58:18 executing program 4: r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x1, 0x70, 0x1, 0x3, 0x9, 0x81, 0x0, 0x2, 0x4, 0x1, 0x101, 0x7f, 0x0, 0x2, 0x0, 0x9, 0x3, 0x1, 0x3, 0x9, 0x0, 0xfffffffffffffffa, 0x3f, 0x3d, 0x9, 0x3399, 0x6, 0x7, 0x80000000, 0xfffffffffffffff9, 0xae43, 0x2, 0x1, 0x100000000, 0xea631fc, 0x0, 0x4, 0x7ff, 0x0, 0x4cd, 0x0, @perf_bp, 0x602, 0x9, 0xcba, 0x2, 0x200, 0x7, 0x10001}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x4) fcntl$setlease(r0, 0x400, 0x3) r1 = socket$inet6(0xa, 0x3, 0x2) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x101100, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e20, @rand_addr=0x6}}, [0x3, 0x198, 0x6, 0x8, 0x2, 0x7, 0x1f, 0x54b3, 0x5f, 0x29, 0x0, 0x2, 0x10, 0x20, 0x500000000000]}, &(0x7f0000000100)=0x100) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000002c0)={r6, 0x5}, &(0x7f0000000300)=0x8) 09:58:18 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:18 executing program 1: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:18 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0) 09:58:18 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00') preadv(r0, &(0x7f0000000740)=[{&(0x7f0000000140)=""/99, 0x63}, {&(0x7f00000001c0)=""/157, 0x9d}, {&(0x7f0000000280)=""/149, 0x95}, {&(0x7f0000000340)=""/243, 0xf3}], 0x4, 0x0) 09:58:18 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:18 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r4 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x5c4e, 0x200000) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r4, &(0x7f0000000180)="4d6507b363eae141076baebbfbe0bf06e22d47b8de579f91add13d3a3bb425699038ba9f4fc05df4e445fe228f6a632cab9209267f939c524cac0c2b2e9b7f6a293b8bf256018b8796668903d2abb9fac9e45f0b25dcaf8b9fd549fa2df20878eb2dcd4f401a5e3d321a8be42c780510276d8b16e104548298f075a4c455737a540ffcaf5205fb7775a936e196b8ca922ad4b61107ac8eb19ef3959b1715", &(0x7f0000000040)="a5b661273fa59fd15e6a3ed42b97614340bb9ab4faf6c04c6bea0625310d81c1d4981ab90dde2c74e1ac", 0x3}, 0x20) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 768.665436] *** Guest State *** [ 768.668986] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 768.678232] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 768.687329] CR3 = 0x0000000000004000 [ 768.691090] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 768.697855] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 768.704555] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 768.710597] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 768.716856] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 768.723740] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 768.732000] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 768.740042] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 768.748326] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 768.756529] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 768.764807] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 768.772982] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 768.781017] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 768.789291] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 768.797494] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 768.805763] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 768.812370] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 768.819867] Interruptibility = 00000000 ActivityState = 00000000 [ 768.826355] *** Host State *** [ 768.829600] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a042f378 [ 768.835789] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 768.842474] FSBase=00007fbb5ed3a700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 768.850324] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 768.856524] CR0=0000000080050033 CR3=000000010a0e2000 CR4=00000000001426e0 [ 768.863802] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 768.870519] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 768.876807] *** Control State *** [ 768.880318] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 768.887288] EntryControls=0000d1ff ExitControls=002fefff [ 768.892935] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 768.899928] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 768.906841] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 768.913666] reason=80000021 qualification=0000000000000002 [ 768.920031] IDTVectoring: info=00000000 errcode=00000000 [ 768.925710] TSC Offset = 0xfffffe5ef4c15415 [ 768.930091] EPT pointer = 0x00000000a2efd01e 09:58:19 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000100)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @loopback}) mount(&(0x7f0000000040)=ANY=[@ANYBLOB="2f64651b94e8153000"], 0x0, &(0x7f0000000380)='ext3\x00', 0x43000, &(0x7f00000003c0)='syz1') ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000280)={0x0, 0x4000000000088, 0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, 0x10e15}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000300)={0x0, @time={0x0, 0x989680}, 0x0, {0x1}, 0x0, 0x0, 0x3}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000c00)={0x6, 0xfff, 0x2, 'queue0\x00', 0x6}) userfaultfd(0x0) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(0xffffffffffffffff, 0x800455d1, &(0x7f0000000b00)) r1 = syz_open_dev$sndpcmc(&(0x7f0000000740)='/dev/snd/pcmC#D#c\x00', 0x4, 0x40) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) setsockopt$inet6_dccp_int(r1, 0x21, 0x10, &(0x7f00000002c0)=0x5, 0x4) clone(0x12000000, &(0x7f0000000840)="07a1a183729f1be807c06a8b68d05e2a1a1c2aea38fe587e869a56caf538b1e939fd72ed1b3f042ee242e40dfd633bc95addb17cbc5fa4cebad65735d681cb809d76", 0x0, &(0x7f0000000940), &(0x7f0000000980)="efa2077dd8b30cac091ba908d50a0b6a191bf7b7be1c32125e4b1b6806bfe20a5d8f3a7125b731d4726c9b3657b5838ed4739be3cce986cf7846b9ea2441c0421c5acf3509e0a300e8adf050ade5f84b5e267b1c0c8a67fec81aad23bf731ee9726f8f1c4280fc6ff2d39de166c9a117033057382dd890b61229c376fbc232ba9cb16f37b2b156bd34288d559cfa04a4b70d14582b7c2fbfd6bdd9868f6c0faba06eb201a0c128884ff655b3d14d0543555744c75d52fde65d23102cdb45013704bbe092088da677d5337584944204cfe81599546a476fef71c6212fd81c2bc37c72def0beb6e7d3e3c66f6eb617f05c") ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(0xffffffffffffffff, 0xc040564b, &(0x7f0000000180)={0xa8d, 0x0, 0x303f, 0x9, 0x0, {0x7fffffff, 0x1}, 0x1}) ioctl$sock_inet_SIOCGIFPFLAGS(r1, 0x8935, &(0x7f0000000a80)={'vlan0\x00'}) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) write(0xffffffffffffffff, &(0x7f0000000400)="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", 0x200) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='fdinfo/3\x00') exit(0x0) lseek(r2, 0x31, 0x0) 09:58:19 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000000)={0x7b, 0x0, [0x40000071, 0xff00000000007900, 0x1b]}) [ 769.162279] *** Guest State *** [ 769.165703] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 769.174904] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 769.183987] CR3 = 0x0000000000004000 [ 769.187870] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 769.194671] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 769.201842] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 769.208010] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 769.214250] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 769.220994] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 769.229247] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.237507] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 769.245764] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.253968] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.262187] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.270220] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 769.278365] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 769.286488] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 769.294678] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 769.302909] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:58:19 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) r4 = request_key(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)='/dev/kvm\x00', 0xfffffffffffffffc) add_key$keyring(0x0, 0x0, 0x0, 0x0, r4) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 769.309384] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 769.317096] Interruptibility = 00000000 ActivityState = 00000000 [ 769.323676] *** Host State *** [ 769.326986] RIP = 0xffffffff812cfa68 RSP = 0xffff888161a6f378 [ 769.333324] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 769.339797] FSBase=00007f2795025700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 769.347851] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 769.353983] CR0=0000000080050033 CR3=000000009df73000 CR4=00000000001426e0 [ 769.361059] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 769.367993] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 769.374321] *** Control State *** [ 769.377826] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 769.384792] EntryControls=0000d1ff ExitControls=002fefff [ 769.389960] *** Guest State *** [ 769.390302] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 769.394380] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 769.400776] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 769.409784] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 769.416602] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 769.416637] reason=80000021 qualification=0000000000000002 [ 769.425605] CR3 = 0x0000000000004000 [ 769.432318] IDTVectoring: info=00000000 errcode=00000000 [ 769.432369] TSC Offset = 0xfffffe5ea1bd05b2 [ 769.438700] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 769.442530] EPT pointer = 0x00000000a23e401e [ 769.463676] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 769.470215] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 769.476413] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 769.482584] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 769.489303] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 769.497489] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 769.505674] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 769.513833] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 769.521986] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 769.530021] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 769.538210] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 769.546383] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 769.554535] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 769.562692] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 769.570709] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 769.577350] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 769.585095] Interruptibility = 00000000 ActivityState = 00000000 [ 769.591384] *** Host State *** [ 769.594826] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a042f378 [ 769.600888] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 769.607564] FSBase=00007fbb5ed3a700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 769.615539] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 769.621481] CR0=0000000080050033 CR3=000000010a0e2000 CR4=00000000001426f0 [ 769.628855] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 769.635739] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 769.642027] *** Control State *** [ 769.645563] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 769.652533] EntryControls=0000d1ff ExitControls=002fefff [ 769.658061] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 769.665277] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 769.672111] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 769.678754] reason=80000021 qualification=0000000000000002 [ 769.685310] IDTVectoring: info=00000000 errcode=00000000 [ 769.690804] TSC Offset = 0xfffffe5ef4c0d723 [ 769.695381] EPT pointer = 0x00000000a2efd01e [ 769.850225] *** Guest State *** [ 769.853922] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 769.863082] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 769.872533] CR3 = 0x0000000000004000 [ 769.876317] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 769.883121] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 769.889689] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 769.895887] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 769.902042] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 769.908770] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 769.916984] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.925240] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 769.933426] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.941506] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.949728] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 769.957912] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 769.966052] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 769.974211] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 769.982335] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 769.990351] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 769.996943] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 770.004637] Interruptibility = 00000000 ActivityState = 00000000 [ 770.010919] *** Host State *** [ 770.014387] RIP = 0xffffffff812cfa68 RSP = 0xffff8880ad97f378 [ 770.020445] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 770.027187] FSBase=00007f2794fc2700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 770.035202] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 770.041188] CR0=0000000080050033 CR3=000000009df73000 CR4=00000000001426f0 [ 770.048447] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 770.055318] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 770.061410] *** Control State *** [ 770.065204] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 770.072064] EntryControls=0000d1ff ExitControls=002fefff [ 770.077579] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 770.084836] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 770.091681] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 09:58:20 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) [ 770.098339] reason=80000021 qualification=0000000000000002 [ 770.104919] IDTVectoring: info=00000000 errcode=00000000 [ 770.110422] TSC Offset = 0xfffffe5ea1bc999a [ 770.115036] EPT pointer = 0x00000000a23e401e 09:58:20 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) write$P9_RRENAME(r3, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0x7) 09:58:20 executing program 2: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) 09:58:20 executing program 3: syz_emit_ethernet(0x2c4, &(0x7f0000000540)={@local, @local, [], {@ipv6={0x86dd, {0x0, 0x6, "83e3ff", 0x28e, 0x0, 0x0, @ipv4={[], [], @rand_addr}, @ipv4={[], [], @broadcast}, {[@hopopts={0x0, 0x9, [], [@enc_lim={0x4, 0x1, 0x4}, @pad1, @calipso={0x7, 0x40, {0x3, 0xe, 0x2, 0x1f, [0x1, 0x9, 0x100000000, 0x7, 0x3ff, 0xdc1, 0x1f]}}, @jumbo]}], @gre={{0x0, 0x0, 0x1, 0xc82, 0x0, 0x2, 0x0, 0x1, 0x880b, 0x8f, 0x1, [], "6a0e8259bc4272e34cd9f40d9569a82aea147495c8e0885a6ee6aa3149939f8c3815105077c557c4c43e31fefeb0465fe6d889157eeba5a1324b52fdc1c3402cface9e1a0297d4cd97e70ea4a9bc4fd1ce222c1e799f182ef371a0ca392b3f2117256efe5b292e1e2b0f4374bbfd43a8fd3aa0f09ce453ac6df5a2540c242e37fdb8d275957057986d7ec1524bafc9"}, {0x2, 0x0, 0x146, 0x6, 0x0, 0x0, 0x800, [0x3, 0xfc], "bcdf8e39b4c9f6f1153feb97c58a82a986b4f99823d2a36aa251caa9ddcf75c95e5a26e1d6df69ecf4e2ac834081f04b1b2e48d3415b01672ba146250a60d61d277a3e4dee4eace0652ca92404f7fd5a03f7570e0efebea16e9da2a9af2c0b6fd84d45033a2b5c0cd2d2893b192bab0877fe58778eb5018d541877fe1678b38e6f4089f6e04b114a4b163894a9050e4de8"}, {0x0, 0x0, 0x80000000, 0x2, 0x0, 0x0, 0x86dd, [0x6], "566657a86b7c4c957304c92d045964678d66cab6f67caa801f6d237c6d6b5198b2224bf42c40353b81bfeb19fc9f3e8018b99b5ddf6dae208bd902c88f5febb4bc0dc83cf21ccb3bd7741ad2e36d8d2085c5c141548f904c52a62df04c5beaa747d4b54fc4b5c1d04edb4e60e33664fa1ae7f638ca40704da854f502d434a8e96e435943f635c6bed894c24ba8a5caf842654e1518a0c982455a0036526ed02ae01d7a1e55f8530def197f86a66c64287012d055f7a642cfbd68a1f2583785e45b"}, {0x8, 0x88be, 0x2, {{0x4e, 0x1, 0x0, 0x5, 0xfa, 0xfffffffffffff0b2, 0x1f, 0x4}, 0x1, 0x3}}, {0x8, 0x22eb, 0x0, {{0x1, 0x2, 0x8, 0xa7, 0x2, 0x8, 0xfff, 0x1}, 0x2, 0x7, 0xffffffffffffff21, 0x100, 0x5, 0xfff, 0x1, 0x3, 0x9, 0x7f}}, {0x8, 0x6558, 0x4, "df975e1f3a44daf0a30e43"}}}}}}}, 0x0) 09:58:20 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) writev(r2, &(0x7f0000000080)=[{&(0x7f0000000000)="47e88414ffa13ae19deffec450a2601c74a0e305441b57f43d9a00c77587c71620aadfddd94d36b678bca61b94106526ffef21f32716eb0b76f9600e406ababe44b633fd2cd2d633f4f3c1457b7c6fcad27d1721f1aa2eee033bdb9ca967f8d862fbfc047f772df6d07db26d3a54b9cd3a7b5b1eecd067afcb5b3b5218e2020f", 0x80}], 0x1) 09:58:20 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:20 executing program 2: clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xb) ptrace$cont(0x1f, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$cont(0x9, r0, 0x0, 0x0) 09:58:21 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f0000000000)) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 09:58:21 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2f, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 09:58:21 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:21 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x61, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:21 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af300200f5abfb9845f9e19859c9693206f2c60b0000000719e1d66e970123d893d974e5b9c3285677b2139823e5500c92ab5b94da3a7de19f063bb765b02bd5b660fb7fa898c6f5c6369c3f363068d10af833f6475bbe8b7967255b177607ba100f6c4654718232dbda64aa1f69cf9ab5b3ea3ed63452b7ebd37c9dae664e322e08ad8f6029fe8fd0b34c7117480471aeca0a3fc9eceb28509ca8a83e4f8b85131808bc5cfb4cc24e1901769c084c082712b470666b6dddf74ced693973ba1ded8b") fcntl$setstatus(r0, 0x4, 0x6800) preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xdc}, {&(0x7f0000000000)=""/90, 0x5a}], 0x2, 0x0) 09:58:21 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2f, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 09:58:21 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x400, 0x0) connect$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x2711, @host}, 0x10) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 09:58:21 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) [ 771.937986] *** Guest State *** [ 771.941470] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 771.950762] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 771.959780] CR3 = 0x0000000000004000 [ 771.963719] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 771.970275] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 771.976990] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 771.983193] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 771.989233] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 771.996158] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 772.004337] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.012568] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 772.020647] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.028915] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.037095] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.045374] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 772.053548] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 772.061803] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 772.069859] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 772.078094] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 772.084781] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 772.092477] Interruptibility = 00000000 ActivityState = 00000000 [ 772.098753] *** Host State *** [ 772.102193] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a258f378 [ 772.108247] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 772.114920] FSBase=00007fbb5ed7c700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 772.122947] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 772.128890] CR0=0000000080050033 CR3=00000000a066d000 CR4=00000000001426f0 09:58:22 executing program 4: r0 = socket$inet6(0xa, 0x800000006, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x3, 0x0) io_submit(0x0, 0x58b, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000100)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = fcntl$dupfd(r1, 0x0, r2) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) connect$can_bcm(r3, &(0x7f0000000080)={0x1d, r4}, 0x10) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f00000000c0)={0x8, 0x3f, 0x7ff, 0x4, 0xff}) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 772.136263] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 772.143273] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 772.149375] *** Control State *** [ 772.153113] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 772.159859] EntryControls=0000d1ff ExitControls=002fefff [ 772.165583] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 772.172693] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 772.179417] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 772.186245] reason=80000021 qualification=0000000000000002 [ 772.192773] IDTVectoring: info=00000000 errcode=00000000 [ 772.198268] TSC Offset = 0xfffffe5d2c58aef0 [ 772.202762] EPT pointer = 0x00000000a131f01e 09:58:22 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2f, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) [ 772.491252] *** Guest State *** [ 772.494861] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 772.504052] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 772.513085] CR3 = 0x0000000000004000 [ 772.516866] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 772.523781] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 772.530327] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 772.536506] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 772.542712] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 772.549453] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 772.557674] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.565867] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 772.574112] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.582356] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.590394] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 772.598618] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 772.606836] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 772.615066] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 772.623248] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 772.631256] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 772.637818] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 772.645460] Interruptibility = 00000000 ActivityState = 00000000 [ 772.652065] *** Host State *** [ 772.655332] RIP = 0xffffffff812cfa68 RSP = 0xffff88809decf378 [ 772.661376] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 772.668030] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 772.676052] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 772.682150] CR0=0000000080050033 CR3=0000000161a81000 CR4=00000000001426e0 [ 772.689227] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 772.696101] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 772.702446] *** Control State *** [ 772.705958] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 772.712926] EntryControls=0000d1ff ExitControls=002fefff [ 772.718442] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 772.725722] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 772.732647] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:22 executing program 2: ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0) r0 = openat$dsp(0xffffffffffffff9c, 0x0, 0x20000, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], &(0x7f0000000300)='ppp0\x00', 0x5, 0x0) sync_file_range(r1, 0x1, 0x3, 0x5) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000200), 0x4) syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r2, &(0x7f000047b000)={0xa, 0x4e20, 0x4000000000000}, 0x1c) listen(r2, 0x20000000) r3 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r3, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = accept4(r2, &(0x7f00004d4000)=@nl=@proc, &(0x7f0000000000)=0x80, 0x0) setsockopt$inet6_int(r4, 0x29, 0x0, &(0x7f0000000040)=0x100000000001f, 0x87) sendmmsg(r4, &(0x7f0000003d40)=[{{&(0x7f0000001b00)=@l2={0x1f, 0x1300000000000000}, 0x80, &(0x7f0000001d00)}}, {{&(0x7f0000002300)=@nl, 0x80, &(0x7f0000003740), 0x0, &(0x7f00000037c0)}}], 0x2, 0x0) [ 772.739288] reason=80000021 qualification=0000000000000002 [ 772.745920] IDTVectoring: info=00000000 errcode=00000000 [ 772.751463] TSC Offset = 0xfffffe5cd8a7a93e [ 772.756108] EPT pointer = 0x00000000a12c101e 09:58:22 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) [ 772.994626] *** Guest State *** [ 772.998491] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 773.007608] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 773.016612] CR3 = 0x0000000000004000 [ 773.020368] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 773.027152] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 773.033899] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 773.039946] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 773.046238] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 773.053147] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 773.061195] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 773.069486] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 773.077691] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 773.085979] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 773.094200] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 773.102493] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 773.110635] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 773.118944] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 773.127170] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 773.135389] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 773.142120] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 773.149680] Interruptibility = 00000000 ActivityState = 00000000 [ 773.156237] *** Host State *** [ 773.159496] RIP = 0xffffffff812cfa68 RSP = 0xffff88809f17f378 [ 773.165755] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 773.172408] FSBase=00007fbb5ecf8700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 773.180260] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 773.186436] CR0=0000000080050033 CR3=00000000a066d000 CR4=00000000001426e0 [ 773.193685] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 773.200408] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 773.206733] *** Control State *** [ 773.210264] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 773.217309] EntryControls=0000d1ff ExitControls=002fefff [ 773.223035] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 773.230012] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 773.236994] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:23 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x0, &(0x7f0000000000)="1235b4777f73d7c93f1457e667e7e30160853b459e3e750787b60045a2a10f714fb88c7bc1dc0844ad", 0x29) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 773.243789] reason=80000021 qualification=0000000000000002 [ 773.250205] IDTVectoring: info=00000000 errcode=00000000 [ 773.255910] TSC Offset = 0xfffffe5d2c581f91 [ 773.260282] EPT pointer = 0x00000000a131f01e 09:58:23 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2f, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 09:58:23 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000700)='/dev/kvm\x00', 0x80800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00') syz_open_dev$sg(&(0x7f00000002c0)='/dev/sg#\x00', 0xffffffffffffff82, 0x80000) r5 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00') sendmsg$TEAM_CMD_NOOP(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000740)=ANY=[@ANYBLOB="44020000", @ANYRES16=r5, @ANYBLOB="000927bd7000fddbdf250000000008000100", @ANYRES32=r1, @ANYBLOB="280202003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f696e74657276616c0000000000000000000000080003000300000008000400010100003c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000008000300050000000c00040068617368000000003c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB="4400010000000000000000006c6564000000afe61c3cc039bbd397950cda873361a534a96affffcc0800030006000000040024b4080006002105282e62ce0125125e480d9ae69c456e0a3871c229f9c5f42df1f3", @ANYRES32=r1, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004000100000008000600", @ANYRES32=r1, @ANYBLOB="400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004000500000008000600", @ANYRES32=r1, @ANYBLOB="3c000100240001006d6f64650000000000000000100000000000000000000000000000f2ffffffff07000300050000000c00040072616e646f6d000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r1, @ANYBLOB='\b\x00\a\x00\x00\x00\x00\x00'], 0x244}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r3, 0x4020565b, &(0x7f0000000280)={0x6, 0xbbb, 0x1}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) timer_create(0x5, &(0x7f0000000200)={0x0, 0x6, 0x7, @tid=0xffffffffffffffff}, &(0x7f0000000600)=0x0) timer_getoverrun(r7) ioctl$KVM_RUN(r6, 0xae80, 0x0) 09:58:23 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 09:58:23 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000000)='H', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:23 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) [ 773.940370] *** Guest State *** [ 773.943994] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 773.953123] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 773.962206] CR3 = 0x0000000000004000 [ 773.965973] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 773.972678] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 773.979220] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 773.985480] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 773.991518] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 773.998709] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 774.006902] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.015243] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 774.023435] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.031475] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.039680] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.047904] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 774.056094] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 774.064311] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 774.072562] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 774.080589] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:58:24 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 774.087217] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 774.094913] Interruptibility = 00000000 ActivityState = 00000000 [ 774.101198] *** Host State *** [ 774.104615] RIP = 0xffffffff812cfa68 RSP = 0xffff88810a13f378 [ 774.110731] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 774.117350] FSBase=00007f2795004700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 774.125358] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 774.131308] CR0=0000000080050033 CR3=000000010a161000 CR4=00000000001426e0 [ 774.138531] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 774.145454] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 774.151736] *** Control State *** [ 774.155258] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 774.162114] EntryControls=0000d1ff ExitControls=002fefff [ 774.167639] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 774.174774] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 774.181518] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:24 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) r4 = getpid() ptrace$setregset(0x4205, r4, 0x6, &(0x7f00000000c0)={&(0x7f0000000000)="89c9a300543cfd4827fd724b77763504a41ac21638821fd3d7eb0d892d1674f43124eb1dc6d9e09f8ac77a867e1cb15d72a15650dd5967062eeb6dbb6026f9577b752f380f1b5bed6f7d9c6f44b7e676afe230725721d3559f7b29d21c9bca0151e091a9de8241a20899f66066a980c47ee69bfe24203d3818c39968453b1a0231af8b10e7ef2ae2557e02fc6da6", 0x8e}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 774.188313] reason=80000021 qualification=0000000000000002 [ 774.194870] IDTVectoring: info=00000000 errcode=00000000 [ 774.200370] TSC Offset = 0xfffffe5c0f9e2aae [ 774.204879] EPT pointer = 0x00000000a04b401e 09:58:24 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) [ 774.566744] *** Guest State *** [ 774.570322] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 774.579479] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 774.588526] CR3 = 0x0000000000004000 [ 774.592454] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 774.599143] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 774.605890] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 774.612149] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 774.618192] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 774.625065] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 774.633279] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.641320] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 774.649510] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.657726] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.665924] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 774.674124] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 774.682328] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 774.690338] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 774.698518] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 774.706755] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 774.713379] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 774.720884] Interruptibility = 00000000 ActivityState = 00000000 [ 774.727393] *** Host State *** [ 774.730670] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a049f378 [ 774.736950] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 774.743650] FSBase=00007fc252661700 GSBase=ffff88821fd00000 TRBase=fffffe000003d000 [ 774.751509] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000 [ 774.757693] CR0=0000000080050033 CR3=000000010a2f0000 CR4=00000000001426e0 [ 774.764924] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b001260 [ 774.771858] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 774.777963] *** Control State *** [ 774.781468] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 774.788434] EntryControls=0000d1ff ExitControls=002fefff [ 774.794103] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 774.801101] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 774.808026] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 774.814841] reason=80000021 qualification=0000000000000002 [ 774.821246] IDTVectoring: info=00000000 errcode=00000000 [ 774.826988] TSC Offset = 0xfffffe5bbe5a7495 [ 774.831383] EPT pointer = 0x00000000a2ef201e 09:58:25 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) 09:58:25 executing program 0: socket$inet_sctp(0x2, 0x1, 0x84) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:25 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x400000, 0x0) write$nbd(r1, &(0x7f0000000040)={0x67446698, 0x3, 0x3, 0x4, 0x4, "8967bd0998ea9d44bae28693d8729cf7a5fd626aadff6f6a2f9c1cd6a56d1324c63dfc4a5625d4728949a1fa4b9ac082e2ee71b54b27f4a9f893df09b2939af5f010118095de3498f4c27035c92299af477d5c3a087f60728a8a1a2d5a205e4ed5ed2a8ea8fed2acc94d518e85a5723b8f40e6590cd0b80d9126b485bafb99a1ad4d76a99661bb9fdbe74431f1b7"}, 0x9e) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) ioctl$VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000100)={0x1, 0x8, 0x2}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000180)={0x877, {{0x2, 0x4e21, @local}}, 0x1}, 0x90) 09:58:25 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x111200, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e21, 0x7fff, @mcast1, 0x5}}, [0x7fffffff, 0xfffffffffffffc01, 0x2, 0x0, 0x0, 0xcc5, 0x0, 0x5, 0x80000001, 0x8, 0x7, 0x40, 0x401, 0x73601c73, 0x4a]}, &(0x7f0000000200)=0x100) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000240)={0x0, 0x8000, 0xfffffffffffff000, 0x840b, r3}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, 0xffffffffffffff9c, 0x0, 0xe, &(0x7f00000000c0)='/dev/snapshot\x00', 0xffffffffffffffff}, 0x30) r5 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x1, 0x101000) ioctl$LOOP_SET_BLOCK_SIZE(r5, 0x4c09, 0x9) sched_setscheduler(r4, 0x5, &(0x7f0000000140)=0x88d7) r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r8 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x18040, 0x0) write$P9_RSTATFS(r8, &(0x7f0000000040)={0x43, 0x9, 0x1, {0x101, 0x66b, 0x6, 0x8, 0x3, 0x4, 0x1ff, 0x401, 0x2}}, 0x43) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 09:58:25 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00'}) socketpair(0x1b, 0x20000000000003, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x10100, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="0f01d10f20070f06c4e229de5e3366ba4300b006ee0f08b805000000b9861400000f01d90f01d166ba4300ec0f01df", 0x2f}], 0x1, 0x9, &(0x7f0000000180), 0x0) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0xfffc, 0x0) fsetxattr$security_smack_transmute(r5, &(0x7f00000001c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000200)='TRUE', 0x4, 0x3) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffdd8) socketpair$nbd(0x2, 0x1, 0x0, &(0x7f0000000e80)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$F_SET_FILE_RW_HINT(r6, 0x40e, &(0x7f0000000280)=0x2) r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ppp\x00', 0x200, 0x0) ioctl$UI_END_FF_UPLOAD(r7, 0x406855c9, &(0x7f00000001c0)={0x5, 0x20007, {0x57, 0x0, 0x0, {0x0, 0x7}}, {0x0, 0xffffffffffffffff, 0x0, {}, {0x2000000}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0}}}) lstat(0x0, 0x0) chown(0x0, 0x0, 0x0) fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) rename(0x0, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000340)=0xc) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000003c0)={{{@in6=@remote, @in6}}, {{@in6}, 0x0, @in6=@remote}}, &(0x7f00000004c0)=0xe8) geteuid() getresuid(&(0x7f0000000700), &(0x7f00000006c0)=0x0, &(0x7f00000005c0)) quotactl(0x0, 0x0, r8, 0x0) io_setup(0x0, 0x0) io_submit(0x0, 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r9, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x8) bind$inet6(r7, 0x0, 0x0) sendto$inet6(r9, 0x0, 0xfffffca8, 0x200408d4, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) ioctl$VIDIOC_ENCODER_CMD(r7, 0xc028564d, &(0x7f00000002c0)={0x0, 0x1, [0x0, 0x6, 0x7, 0x7, 0x1000, 0x8000, 0x7, 0xfffffffffffffff7]}) 09:58:25 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x0, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 09:58:25 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:26 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x0, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 09:58:26 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x40, 0x3) write$UHID_INPUT2(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x1006) 09:58:26 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x11, 0x3, 0x0) socket$kcm(0x11, 0x2, 0x300) sendmsg(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@ipx={0x4, 0x80000001, 0x0, "0950fe4adba7"}, 0x80, 0x0, 0x0, &(0x7f0000000240)}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x6}, 0x2c) recvmsg$kcm(0xffffffffffffffff, &(0x7f00000038c0)={&(0x7f00000002c0)=@in6={0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000200)=""/22, 0x16}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/245, 0xf5}, {&(0x7f00000003c0)=""/61, 0x3d}], 0x4, &(0x7f0000001680)=""/154, 0x9a}, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x2b5) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000003840)=[{&(0x7f00000004c0)=""/158, 0x9e}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/98, 0x62}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/115, 0x73}], 0x5}, 0x0) sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f00000000c0)=@in6={0x31100, 0x0, 0x5, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x329]}}, 0x80, &(0x7f0000000340), 0x72, &(0x7f0000000380)}, 0x0) 09:58:26 executing program 1: socket$inet6(0xa, 0x0, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:58:26 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:26 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x0, 0x0, @local={0xfe, 0x80, [0xffffdd86, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 09:58:26 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) accept4(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, &(0x7f0000000080)=0x80, 0x80000) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vhci\x00', 0x101042, 0x0) ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f00000003c0)) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='@ \x00\x00', @ANYRES16=r4, @ANYBLOB="00032cbd7000fddbdf250100000008000500008000001c0001000800010002000000080001000a00000008000b00736970000800040007000000"], 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r8 = syz_genetlink_get_family_id$team(&(0x7f0000000440)='team\x00') sendmsg$TEAM_CMD_NOOP(r3, &(0x7f0000000e00)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000480)={0x940, r8, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r1}, {0x1f0, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r1}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0xc, 0x4, [{0x8988, 0x1f, 0xad2f, 0x2}]}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x80}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8}}}]}}, {{0x8, 0x1, r1}, {0x174, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r1}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r1}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0xe5}}, {0x8, 0x6, r1}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}]}}, {{0x8, 0x1, r1}, {0x1b0, 0x2, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x608}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x1135}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x75f}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x7ff}}, {0x8, 0x6, r1}}}]}}, {{0x8, 0x1, r1}, {0xc4, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x895}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x9}}, {0x8}}}]}}, {{0x8, 0x1, r1}, {0xc4, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0xdeed}}, {0x8, 0x6, r1}}}]}}, {{0x8, 0x1, r1}, {0xf0, 0x2, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x1}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r1}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r1}}, {0x8}}}]}}, {{0x8, 0x1, r1}, {0xa0, 0x2, [{0x5c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x2c, 0x4, [{0x7fff, 0x6, 0x9, 0xc2f}, {0x5, 0x100000001, 0xfffffffffffffffa, 0x200}, {0x5, 0x6, 0x1, 0x8}, {0xfffffffffffeffff, 0x0, 0x3, 0x9}, {0x1, 0x0, 0x5, 0x7f}]}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0xbbb}}, {0x8, 0x6, r1}}}]}}, {{0x8, 0x1, r1}, {0xc0, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r1}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x33}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r1}}}]}}]}, 0x940}, 0x1, 0x0, 0x0, 0x4000}, 0xd1) ioctl$KVM_RUN(r7, 0xae80, 0x0) 09:58:27 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_trie\x00') preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xdc}], 0x1, 0x3) 09:58:27 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) 09:58:27 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) mmap(&(0x7f00005a1000/0x200000)=nil, 0x200000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x3) 09:58:27 executing program 3: r0 = open(&(0x7f0000000040)='./file0\x00', 0x611, 0x0) pwritev(r0, &(0x7f00000000c0)=[{&(0x7f0000000440), 0xffffff05}], 0x10000000000000ff, 0x0) 09:58:27 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x2) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070") r1 = getpgid(0xffffffffffffffff) setpriority(0x2, r1, 0xfffffffffffffffd) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x0, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x200102, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 777.428183] *** Guest State *** [ 777.431859] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 777.440763] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 777.449837] CR3 = 0x0000000000004000 [ 777.453764] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 777.460313] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 777.467117] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 777.473311] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 777.479340] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 777.486398] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 777.494565] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 777.502699] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 777.510786] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 777.518985] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 777.527186] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 777.535321] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 777.543472] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 777.551498] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 777.559718] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 777.567872] EFER = 0x0000000000000001 PAT = 0x0007040600070406 09:58:27 executing program 1: r0 = socket$inet6(0xa, 0x0, 0x6) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000000)={{0x2, 0x4e22, @local}, {0x6, @local}, 0x22, {0x2, 0x4e23, @remote}, 'bpq0\x00'}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 777.574502] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 777.582155] Interruptibility = 00000000 ActivityState = 00000000 [ 777.588433] *** Host State *** [ 777.591873] RIP = 0xffffffff812cfa68 RSP = 0xffff8880a12ff378 [ 777.597920] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 777.604570] FSBase=00007f2795004700 GSBase=ffff88821fc00000 TRBase=fffffe0000003000 [ 777.612621] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 777.618566] CR0=0000000080050033 CR3=00000000a1205000 CR4=00000000001426f0 [ 777.625860] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b001260 [ 777.632747] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 777.638836] *** Control State *** [ 777.642509] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 777.649282] EntryControls=0000d1ff ExitControls=002fefff [ 777.654954] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 777.662041] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 777.668748] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 09:58:27 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00') preadv(r0, &(0x7f00000075c0)=[{&(0x7f0000006200)=""/220, 0xdc}], 0x1, 0x0) [ 777.675577] reason=80000021 qualification=0000000000000002 [ 777.682103] IDTVectoring: info=00000000 errcode=00000000 [ 777.687609] TSC Offset = 0xfffffe5a44862406 [ 777.692210] EPT pointer = 0x000000009f1ee01e 09:58:27 executing program 2: add_key$user(&(0x7f00000000c0)='user\x00', 0x0, 0x0, 0x0, 0x0) keyctl$dh_compute(0x1c, &(0x7f0000000080), &(0x7f00000000c0)=""/83, 0x53, 0x0) 09:58:28 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000100)={'team_slave_0\x00', {0x2, 0x4e23, @rand_addr=0x100}}) [ 778.095794] ================================================================== [ 778.101688] BUG: KMSAN: uninit-value in keyctl_pkey_params_get+0x29c/0x7d0 [ 778.101688] CPU: 1 PID: 22514 Comm: syz-executor2 Not tainted 4.20.0-rc3+ #95 [ 778.101688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 778.101688] Call Trace: [ 778.101688] dump_stack+0x32d/0x480 [ 778.101688] ? keyctl_pkey_params_get+0x29c/0x7d0 [ 778.101688] kmsan_report+0x12c/0x290 [ 778.139879] __msan_warning+0x76/0xc0 [ 778.139879] keyctl_pkey_params_get+0x29c/0x7d0 [ 778.139879] keyctl_pkey_verify+0x2e2/0x890 [ 778.139879] __se_sys_keyctl+0x112c/0x1af0 [ 778.139879] ? prepare_exit_to_usermode+0x182/0x4c0 [ 778.139879] ? syscall_return_slowpath+0xed/0x730 [ 778.139879] ? __msan_get_context_state+0x9/0x20 [ 778.139879] __x64_sys_keyctl+0x62/0x80 [ 778.139879] do_syscall_64+0xcf/0x110 [ 778.139879] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 778.139879] RIP: 0033:0x457569 [ 778.139879] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 778.139879] RSP: 002b:00007fc252681c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 778.139879] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457569 [ 778.139879] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 000000000000001c [ 778.139879] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 778.139879] R10: 0000000000000053 R11: 0000000000000246 R12: 00007fc2526826d4 [ 778.139879] R13: 00000000004c286f R14: 00000000004d4258 R15: 00000000ffffffff [ 778.139879] [ 778.139879] Local variable description: ----args.i@keyctl_pkey_params_get [ 778.139879] Variable was created at: [ 778.139879] keyctl_pkey_params_get+0xaa/0x7d0 [ 778.139879] keyctl_pkey_verify+0x2e2/0x890 [ 778.139879] ================================================================== [ 778.139879] Disabling lock debugging due to kernel taint [ 778.139879] Kernel panic - not syncing: panic_on_warn set ... [ 778.139879] CPU: 1 PID: 22514 Comm: syz-executor2 Tainted: G B 4.20.0-rc3+ #95 [ 778.139879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 778.139879] Call Trace: [ 778.139879] dump_stack+0x32d/0x480 [ 778.139879] panic+0x624/0xc08 [ 778.139879] kmsan_report+0x28a/0x290 [ 778.139879] __msan_warning+0x76/0xc0 [ 778.139879] keyctl_pkey_params_get+0x29c/0x7d0 [ 778.139879] keyctl_pkey_verify+0x2e2/0x890 [ 778.139879] __se_sys_keyctl+0x112c/0x1af0 [ 778.139879] ? prepare_exit_to_usermode+0x182/0x4c0 [ 778.139879] ? syscall_return_slowpath+0xed/0x730 [ 778.139879] ? __msan_get_context_state+0x9/0x20 [ 778.139879] __x64_sys_keyctl+0x62/0x80 [ 778.139879] do_syscall_64+0xcf/0x110 [ 778.139879] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 778.139879] RIP: 0033:0x457569 [ 778.139879] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 778.139879] RSP: 002b:00007fc252681c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 778.139879] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457569 [ 778.139879] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 000000000000001c [ 778.139879] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 778.139879] R10: 0000000000000053 R11: 0000000000000246 R12: 00007fc2526826d4 [ 778.139879] R13: 00000000004c286f R14: 00000000004d4258 R15: 00000000ffffffff [ 778.139879] Kernel Offset: disabled [ 778.139879] Rebooting in 86400 seconds..