Warning: Permanently added '10.128.10.19' (ECDSA) to the list of known hosts.
2019/04/09 07:23:25 fuzzer started
2019/04/09 07:23:30 dialing manager at 10.128.0.26:45151
2019/04/09 07:23:30 syscalls: 2252
2019/04/09 07:23:30 code coverage: enabled
2019/04/09 07:23:30 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/04/09 07:23:30 extra coverage: extra coverage is not supported by the kernel
2019/04/09 07:23:30 setuid sandbox: enabled
2019/04/09 07:23:30 namespace sandbox: enabled
2019/04/09 07:23:30 Android sandbox: /sys/fs/selinux/policy does not exist
2019/04/09 07:23:30 fault injection: enabled
2019/04/09 07:23:30 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/04/09 07:23:30 net packet injection: enabled
2019/04/09 07:23:30 net device setup: enabled
07:26:02 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/protocols\x00')
preadv(r0, &(0x7f0000002640)=[{&(0x7f0000000200)=""/97, 0x61}, {&(0x7f0000000280)=""/107, 0x6b}, {&(0x7f0000000340)=""/75, 0x4b}], 0x3, 0x0)

syzkaller login: [  248.573906] IPVS: ftp: loaded support on port[0] = 21
[  248.711837] chnl_net:caif_netlink_parms(): no params data found
[  248.772939] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.779464] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.787684] device bridge_slave_0 entered promiscuous mode
[  248.797653] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.804222] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.812473] device bridge_slave_1 entered promiscuous mode
[  248.849160] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  248.860557] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  248.890344] team0: Port device team_slave_0 added
[  248.898798] team0: Port device team_slave_1 added
[  248.996474] device hsr_slave_0 entered promiscuous mode
[  249.152887] device hsr_slave_1 entered promiscuous mode
[  249.429005] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.435637] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.442816] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.449349] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.517201] 8021q: adding VLAN 0 to HW filter on device bond0
[  249.534360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  249.545277] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.554757] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.566436] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  249.584221] 8021q: adding VLAN 0 to HW filter on device team0
[  249.599194] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  249.607646] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.614212] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.660360] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  249.670223] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  249.687745] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  249.696010] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.702582] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.712060] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  249.720852] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  249.729246] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  249.737634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  249.748204] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  249.756112] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  249.790179] 8021q: adding VLAN 0 to HW filter on device batadv0
07:26:04 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000100)={0x0, @in, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x98)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x2]}, 0x6}, 0x1c)

07:26:04 executing program 0:
openat$sequencer(0xffffffffffffff9c, 0x0, 0x410200, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="ba4300b00bee660f3a172e0010000f32652e0f0866b83c4a00000f23c80f21f866350c0030000f23f83e0b450eb804010f00d00f01f60f3800210f01cf", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000180))
setxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  250.924196] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
07:26:05 executing program 0:
openat$sequencer(0xffffffffffffff9c, 0x0, 0x410200, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="ba4300b00bee660f3a172e0010000f32652e0f0866b83c4a00000f23c80f21f866350c0030000f23f83e0b450eb804010f00d00f01f60f3800210f01cf", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000180))
setxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:05 executing program 0:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
inotify_init()
pipe(&(0x7f0000000340))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0)

07:26:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x200000002, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21}, 0x10)
syz_emit_ethernet(0x140, &(0x7f0000000000)={@random="7525820aedb8", @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0)

07:26:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x100000000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/148, 0x386}], 0xed, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_matches\x00')
preadv(r0, &(0x7f0000000480), 0x10000000000001f5, 0x0)

07:26:05 executing program 1:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x3})
ioctl$RTC_WIE_ON(r0, 0x700f)
fsetxattr$security_smack_transmute(r0, &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0x1)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000140)={&(0x7f0000000100)='./file0\x00', r0}, 0x10)
ioctl$CAPI_GET_PROFILE(r0, 0xc0404309, &(0x7f0000000180)=0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000001c0), 0x106, 0x5}}, 0x20)
ftruncate(r0, 0x6)
ioctl$CAPI_GET_PROFILE(r0, 0xc0404309, &(0x7f0000000240)=0x86cbf5e)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000280)={0xad8, 0x3ff, 0xa, 0x5, 0xffffffffffffffe1, 0x40, 0xef0c, 0x0, <r1=>0x0}, &(0x7f00000002c0)=0x20)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000300)={r1, 0x92, "f99fe8989bf8b7b64f0f9b14ee82e816915b107abc1749ae2b9732c6d191f431ab699063b7f04787b98bd27ee611f4ebe59a99dc2a926ea6b71863397080188dfb2f6bb5a5467525c8cbff34909b22a9a87d5c51f087790e8634126f2377f23383c9ac95685a88bc498e69f891e0aaabeee6ae50674f7998f4688ac55965015f8ec51af189e38c4448e57be499f51c612db6"}, &(0x7f00000003c0)=0x9a)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000400)={<r2=>0x0}, &(0x7f0000000440)=0xc)
sched_getattr(r2, &(0x7f0000000480), 0x30, 0x0)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f00000004c0))
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000580)=@get={0x1, &(0x7f0000000500)=""/84})
ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f00000005c0))
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000600)=0x6, 0x4)
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000640)={'filter\x00', 0x3e, "14f7e9499d7901e12892a3f78d43a5fba588ba75a35a113800bebd1372523c95401b26bc57c8f210bf648ac91d9da37ceb7ec950b60182926507ed4696c7"}, &(0x7f00000006c0)=0x62)
ioctl$TIOCSTI(r0, 0x5412, 0x80000000)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000700)={<r3=>0x0})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000740)={r3})
ioctl$GIO_FONT(r0, 0x4b60, &(0x7f0000000780)=""/242)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000880)={r1, 0x9}, &(0x7f00000008c0)=0x8)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000900)={0xaa, 0x4})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='/#\x00', r0}, 0x10)
getpeername$tipc(r0, &(0x7f00000009c0), &(0x7f0000000a00)=0x10)
ioctl$KVM_GET_REGS(r0, 0x8090ae81, &(0x7f0000000a40))
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000b40)={&(0x7f0000000b00)='./file0\x00', 0x0, 0x8}, 0x10)
socketpair(0x3, 0x1, 0x0, &(0x7f0000000b80)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockname$packet(r4, &(0x7f0000000bc0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000c00)=0x14)

07:26:05 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/ip6_tables_matches\x00')
lseek(r0, 0x4000400000, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x100000000, 0xd8, 0x4, 0x0, 0xd16, 0x3, 0x3e, 0x200, 0x1ad, 0x40, 0x1ef, 0x4, 0x3, 0x38, 0x1, 0x10001, 0x0, 0x100000001}, [{0x1, 0x1, 0x100, 0x6, 0x1, 0x0, 0xb2, 0x401}, {0x3, 0x4, 0x3ff, 0x88a, 0x6f, 0x71, 0x101, 0x10000}], "ba110ef2825f465e47b71744734fa57f61bcb6e745ec94f68bc883e56edef1d12d6ba65787901d82b03abe75cd5b1472e250cc2c5bd3b0d97f745c7b823914194c1576d58405a2b94e2cf9ecf7a49f3955caaa6d252d3c7c987175f58776023997f1015a6455860aa642709491e74de50224d661e8350ace1207aa8c19007c00d628f87074852e13ee45aec961abe77891e0912725f951881400c54f3af8e65e95cd3da289874059f1e75c9c9533a8947d548aaad8642b45e7d31206fadd345ad9144ba8309848d96c189402fcc5360fd486893b70", [[], [], [], [], [], [], []]}, 0x885)

07:26:05 executing program 0:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x100)
getsockopt$inet6_buf(r0, 0x29, 0x0, &(0x7f0000000080)=""/33, &(0x7f00000000c0)=0x21)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = dup3(r1, r1, 0x80000)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000000)=0x80000000, 0x4)
recvfrom(r1, 0x0, 0x0, 0x40000000, 0x0, 0x0)

07:26:06 executing program 0:
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x3}, 0x1c)
r0 = socket$inet6(0xa, 0x8000000000000802, 0x88)
sendmsg$inet_sctp(r0, &(0x7f0000a29000)={&(0x7f00000001c0)=@in6={0xa, 0x3, 0x0, @mcast2}, 0x1c, 0x0}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000001400)={0x0, 0x0, 0x0}, 0x0)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x20000, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000200)={{{@in6=@initdev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in6=@ipv4={[], [], @dev}}}, &(0x7f0000000100)=0xe8)
r3 = getgid()
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x201000, &(0x7f0000000300)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@blksize={'blksize', 0x3d, 0xc00}}], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@smackfsdef={'smackfsdef'}}, {@appraise_type='appraise_type=imasig'}]}})

[  251.959549] IPVS: ftp: loaded support on port[0] = 21
[  252.120692] chnl_net:caif_netlink_parms(): no params data found
07:26:06 executing program 0:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snapshot\x00', 0x10100a, 0x0)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, &(0x7f0000000100)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @loopback})

[  252.181315] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.187944] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.196074] device bridge_slave_0 entered promiscuous mode
[  252.232695] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.239265] bridge0: port 2(bridge_slave_1) entered disabled state
[  252.247914] device bridge_slave_1 entered promiscuous mode
[  252.627909] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  252.640210] bond0: Enslaving bond_slave_1 as an active interface with an up link
07:26:06 executing program 0:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000))
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400203)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@abs={0x1}, 0x8)
r2 = socket$unix(0x1, 0x2, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000000000)=@abs={0x1}, 0x3)
r4 = syz_open_procfs(0x0, &(0x7f00007a1ff6)='net/unix\x00')
sendfile(r2, r4, &(0x7f00004db000)=0x300, 0xfe)

[  252.675123] team0: Port device team_slave_0 added
[  252.683284] team0: Port device team_slave_1 added
[  252.746217] device hsr_slave_0 entered promiscuous mode
07:26:06 executing program 0:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x101000, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x23, &(0x7f00000000c0)="721690f4eeff8b42b7aa85b0aafc65fd0188f7b7d1f8334a75e97c0b6b2d29283fd5cabd198286", 0x27)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000000)=0x4)
r2 = openat$cgroup_int(r1, &(0x7f0000000240)='cpuset.memory\x9ft\x0e\xbd\x88\xca\xad\xd4W\xab\xde\xf6e\x00\xc5(\xa2\xf6\x83`lN\xba\xf0\xb1\x83tz\xd7\xe3\x03\xd2>\xf1\xd1\xfb\xf7|nj\xa4G)\xbb(\xe3_Mv\xdchf\xbdtd\xf5\a\x87\'8\x9dO\xcb\xc8\x1c\xcb\vE\x908`c{\x0f\x01\xdf\xc55\xbe\\\xc1\xf7\xdd\xf3\xc3 \x16\x8cp\x8do\v\x80\xca\xfaw\xa0c\xf6\xb1\x1c\xbf}\xc08\x03\xc7VJ\xf2\xedQ\xdf\x17\xc2\x87>e\xd9\x9e\xd8\xe6\xd3\xecpx\xfb\xcb\xd2q\xa7\b\xa5\x19\x0f\"\x13R\xe9\xa4\xb8\x0e1M\x13\"\xbe\xfaT\x9f\xb4\x83qY\xbdEN\x95\xd3\x9a\x87d\x91\x8f\xe2\xab\x0f\xb2\xfd\x1ex\xa4\xae\xa5\xc7g!F\"\xf0\xfc\x80\x1dBa\x96\x8e\a\xbdrB\x895\x1b\x1b\xd6\xca\x97~\x0fk\xf8\xdf\xbdR\x90\xe5C\xdcz\x0e2Ux\x84\xc1,%\x05\v\xd9\x91\xa0\f\xc2\xcaY\x87\xb0\xe9\xfa\fB\xcd\x1d20\x7fI\v2\x80\xfc$\xdf\xcf\x15NR\xdbL8\xb3\xd1', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x4)

[  252.793277] device hsr_slave_1 entered promiscuous mode
[  252.848566] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.855159] bridge0: port 2(bridge_slave_1) entered forwarding state
[  252.862334] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.868869] bridge0: port 1(bridge_slave_0) entered forwarding state
07:26:07 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26)
r2 = syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x0, 0x2)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f00000001c0)={<r3=>0x0, 0x80000, 0xffffffffffffff9c})
r4 = syz_open_dev$media(&(0x7f0000000200)='/dev/media#\x00', 0x0, 0x400)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r2, 0xc00c642e, &(0x7f0000000240)={r3, 0x80000, r4})
ioctl$PPPIOCGCHAN(r1, 0x80047437, &(0x7f0000000000))
read(r1, &(0x7f0000000040)=""/228, 0xe4)

[  252.963520] 8021q: adding VLAN 0 to HW filter on device bond0
[  252.980652] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  252.989846] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.002767] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.022929] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  253.050166] 8021q: adding VLAN 0 to HW filter on device team0
[  253.073915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  253.083021] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.089502] bridge0: port 1(bridge_slave_0) entered forwarding state
[  253.145631] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  253.155537] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  253.185848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  253.194563] bridge0: port 2(bridge_slave_1) entered blocking state
[  253.201052] bridge0: port 2(bridge_slave_1) entered forwarding state
[  253.210479] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  253.219323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  253.227725] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
07:26:07 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop-control\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
close(r1)
r4 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x2)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r6 = dup3(r5, r4, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r6, 0xc1205531, &(0x7f0000000200)={0xfffffffffffffffb, 0xff, 0x3, 0x6, [], [], [], 0x6, 0x6, 0x1, 0xaf, "eaa60db73016aac87795e54dfb8413b5"})
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe93)

[  253.236058] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  253.277617] 8021q: adding VLAN 0 to HW filter on device batadv0
[  253.300769] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  253.308839] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
07:26:07 executing program 1:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000280)={0x60, r2, 0x218, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x4c, 0x9, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x88}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x11}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbc}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4b1}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040000}, 0x40000)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="02050609100000000000004c9e0000000200130002000000000000000000000105000600200000000a00000000000000000500e50008070000001f000000000000032000000000000200010000000000000000020000000005000500000000000a00000000000000ff170000000000000000001700"/128], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400000000000117, 0x0)

07:26:07 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x8100, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000140))
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000180))
r1 = socket$inet6_sctp(0xa, 0x20000000000001, 0x84)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x4})
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000080)={'veth1_to_bond\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="24000000b54cf9f1cbf43f3cd8a40800"]})
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000040)={0x0, {0x10001, 0x8001}})

07:26:07 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)=<r1=>0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000000c0)=0xc)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={<r3=>0x0}, &(0x7f0000000140)=0xc)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000180)=<r4=>0x0)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000001c0)=<r5=>0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@initdev, @in6=@ipv4={[], [], @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8)
lstat(&(0x7f0000000240)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000440)={<r8=>0x0}, &(0x7f0000000480)=0xc)
sendmsg$nl_generic(r0, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000004c0)={&(0x7f0000001780)={0x146c, 0x39, 0x20, 0x70bd25, 0x25dfdbfc, {0x14}, [@nested={0x1148, 0x36, [@typed={0x8, 0x5b, @str='\x00'}, @typed={0x8, 0x62, @pid=r1}, @typed={0x8, 0x27, @pid=r2}, @generic="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", @generic="77bd4da36da0364c5d9582399ee641962f9b87effae694d97746895c78069d94affad73d2a0762fed21634ae2bbae8140432348d6ef19b904f419df135b2c395f1168d56253b736926344481d752887e6712732bc93c007ec97d30322c5b68241c42678d3145fa6aa2d649a4933c766297108f1d0505d672", @typed={0x8, 0x74, @fd=r0}, @generic="a44ef977c2649408ba3875b3cce22f9a819291add4fd76cac0ce226f40e933d225ffc16ed36bbc256225602e435257c95accb09a61b1a10e469697fdc5c3fc39bc58f8b5a9c2d87fe16deb99e95ab597ba207fe788a98cfe917d7e4989a1b9d7038f15a15344355212e89c44a57e923b289e368ce042440055823d9ceb50648b3b38657eb16d", @typed={0x14, 0x12, @ipv6=@remote}, @typed={0x8, 0x64, @pid=r3}, @typed={0x8, 0x330a, @pid=r4}]}, @typed={0x14, 0x49, @ipv6=@local}, @nested={0x70, 0x1b, [@generic="be005a1929", @generic="dc917c1476b7fc2bee479b436380996589fd90aa910800fb89a0aa1578286415cd05d40348104011b9004e50684a54338c0c0a998f485771e06e500e1afb0a53f727608f327aab1dc1110a80778c688207e1fa2d0406926475482c440f", @typed={0x8, 0x3, @pid=r5}]}, @typed={0x8, 0x9, @u32=0x2}, @typed={0xc, 0x37, @u64=0x1}, @typed={0x20, 0x38, @str='keyring,ppp1)#nodev(system\x00'}, @typed={0x14, 0x73, @ipv6=@dev={0xfe, 0x80, [], 0x29}}, @nested={0x50, 0x8, [@typed={0x24, 0x31, @str='em0\nnodev\x02selfposix_acl_access\x00'}, @typed={0x8, 0x52, @uid=r6}, @typed={0x14, 0x96, @ipv6=@loopback}, @typed={0xc, 0x12, @str='^em1\x00'}]}, @typed={0x14, 0x67, @ipv6=@ipv4={[], [], @loopback}}, @nested={0x1e0, 0x27, [@typed={0x8, 0x5e, @fd=r0}, @generic="44e81d40da87b1aab9c4eb2bfd3d959137d85fdfeb028eb3e543183f19179b2cf2c520a1228c8ffa0105b5737eedd5855218414ba3a3d259a274f1890cf944724b239dd070ca949992d31168e91cb68270ecab5871a71799f65ce4fcb6", @typed={0x8, 0x9, @uid=r7}, @typed={0x8, 0x6b, @pid=r8}, @generic="2ab3edfd55279baa83e76bfd9255284f318d91867108e429edb84f56db76d3938d398324e5ba18ed19a021a97a97095b74cb826abed25639e5f41b78e38a815fe8aaeca659d75213f67abd60f189ae59f11c85d1d85990a8be4a5e2ab62b2505", @typed={0x4, 0x84}, @generic="01ffdb3b1eab9f293d8c12e02128b55feb2b933f63befffef9b0ee578b052aff89322fb9833e084a0f42c17bd58e45958dc0780af5632af2c9b249ed436227db3dacc66ff28bd7e42e8d12bf0d0e352df63387925abd9fdcad", @generic="183f73f08f0d34a751e857fc1c9ab40c95ee2248e7e534d89d81f91e3bd4dfea08c5ee825c3bcba836b83f0f0ccf8e32c443608c10e29ea6f2ff2b5b34fdc0fea04444318bc523214a0fc5686be1245fb4", @generic="02bf5206396e576bc780b1ab280998c761e3c8df433b3b51823e6de9f442002f0395df5ba926d34336a9a18e28e6678895b6655d56884372ddbb356a6b59b13e2b264924485763ee5dadb370a742c2211a28fb9345d2c8dda5"]}]}, 0x146c}, 0x1, 0x0, 0x0, 0x40004}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000540)=ANY=[@ANYBLOB="180000001d000100558e5df4100000001800000004000f0036f12fff2118909823ae6e276bdce148f9ee9c50fe01ea"], 0x18}}, 0x0)

07:26:07 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xe34, 0x400000)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
fanotify_mark(r3, 0x50, 0x1000, r4, &(0x7f0000000140)='./file0\x00')
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0)
setsockopt$inet_msfilter(r1, 0x0, 0x15, &(0x7f0000000100)={@multicast2, @initdev}, 0x10)

07:26:07 executing program 0:
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000000)=0x1)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2282, &(0x7f00000000c0))
r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x2, 0x400000)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xc, 0x80111, r0, 0x0)
ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f0000000180)={0x0, 0x0, [], @raw_data=[0x5, 0x100000000, 0x5, 0x0, 0xfd, 0x100000001, 0x4, 0x2, 0x10000, 0x7, 0x2, 0x5, 0x10001, 0x2, 0x0, 0x80000000, 0x400, 0x6, 0x9, 0x2, 0x7, 0x7bf9, 0x100000001, 0x2, 0xdb1, 0x8, 0x100000001, 0x6, 0x3e8, 0x9, 0x6, 0x200]})
readv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)=""/33, 0x57}], 0x1)

07:26:08 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x80, 0x0)
ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000200))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x2000, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000180)=0x7)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup\x00\x06\xe8\x00a\x9e\xdfl0\x00', 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
sendfile(r5, r4, 0x0, 0x8000008407)
r6 = open(&(0x7f00000000c0)='./file0\x00', 0x100, 0x1)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000100)={0x0, r6, 0x0, 0x3}, 0x14)

07:26:08 executing program 0:
r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x2, 0x300)
setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f00000000c0)={0x5, 0x0, 0x8, 0x932}, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000300)=ANY=[@ANYRES32=<r2=>0x0, @ANYBLOB="f000000089defc9eb423f17986b445a66e4322a796852e9b6e78dfdbc1d950d30da2309212bf2edd99707240700c1817a6d8ba6a0789e765e8f2b40ce1b4631f141bc041c1575b01f78f0c604a1b797d88a4baf27b0f1f38a768248c99a5c60566dcadd10d0c528964bc1176f28e2e7c7d29abdcfbb43061f07e3ac09edd407ff7add62262083c5d1904015ade9caa7880d37663f0f1cd7b1a7b78226a6ba1a97cb205144efac1f4938b3f304ccb0804464ae0fd2f3beb46d64fc39bcafc6ee4f503224b3838b5b4f08af39d065df963841df90e832ec526fe37d3934f8c1b8425eeaf5f6494057e0000000000000000000000009dcdb7a2d2087cf8d56ab69860df7a85d09836a09829207db6f6bcc9f79f04142264739f3259f6903ec2a182bbd072e576fe4137fe6d9ef53d1c4aa0cc930c774f9809503dc3980d9b5fb0a4113d5051ecd24431a47a280459341c161c"], &(0x7f0000000280)=0xf8)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f00000002c0)={r2, 0x5}, 0x8)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f0000000100)=0x4)
ioctl$DRM_IOCTL_GET_CAP(r1, 0xc010640c, &(0x7f0000000080)={0x13})
ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000140)={0x1, 0xf2c})
ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040563d, &(0x7f0000000180)={0x0, 0x0, 0x103, 0x5, {0xecfb, 0x9, 0x200, 0x1000}})

07:26:08 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0), 0xffffffffffffffb1)

07:26:08 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x6)
listen(r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010006081000418e00000004fcff", 0x58}], 0x1)

07:26:08 executing program 1:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=<r1=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000100)={{0x0, 0x4, 0x2, 0x3, 'syz0\x00', 0x3}, 0x4, 0x10000401, 0x6, r1, 0x2, 0x7ff, 'syz1\x00', &(0x7f00000000c0)=['^\x00', '-md5sum:em0\x00'], 0xe, [], [0xffffffffffffffc0, 0x7, 0x9, 0x6]})
r2 = socket$netlink(0x10, 0x3, 0x4)
write(r2, &(0x7f0000000000)="270000001500a10707030e000012498e2addff914a97ccb4b247bce248b52a114e250000f5fed5", 0x27)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000240)={0x2a, 0x2a, 0x5, 0x1d, 0x2, 0xffffffff00000001, 0x1, 0x149, 0xffffffffffffffff})

07:26:08 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x1, 0x0)
setsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000100)=0x2, 0x4)
r2 = socket$inet6(0xa, 0x2, 0x0)
getpeername$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x4d4, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5}}, 0xe8)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0xffffffffffffffff, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x18}}}, 0x1c)
sendmmsg(r2, &(0x7f0000000240), 0x5c3, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02080c1ac8b4ae9bc800000000000000"], 0x10}}, 0x0)

07:26:08 executing program 1:
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x80000001}, 0x4e)
bind(r0, 0x0, 0x0)
close(r0)

07:26:08 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f3188b070")
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x640000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000000040))
accept$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000001c0)={@rand_addr="a3b8dbe0b032d4b51ad1b4467395d3b4", @rand_addr="3d5e5883ccf563017776052fed23ad03", @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x5, 0x80000000, 0xc2, 0x400, 0x4, 0x10000, r2})
r3 = socket$inet6(0xa, 0x3, 0x2000000098)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000080)={'team_slave_0\x00'})
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000000c0)=0x2, 0x4)

07:26:08 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x1, 0x0)
setsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000100)=0x2, 0x4)
r2 = socket$inet6(0xa, 0x2, 0x0)
getpeername$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x4d4, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5}}, 0xe8)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0xffffffffffffffff, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x18}}}, 0x1c)
sendmmsg(r2, &(0x7f0000000240), 0x5c3, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02080c1ac8b4ae9bc800000000000000"], 0x10}}, 0x0)

07:26:08 executing program 0:
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080))
r1 = open(&(0x7f0000000040)='./bus\x00', 0x4000, 0x2)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r1, 0xc008551c, &(0x7f00000000c0)={0xfffffffffffffffe, 0x1c, [0x55, 0x7, 0x3, 0x3f, 0x6, 0x4b6, 0x5c51]})
r2 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000011000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r2, &(0x7f0000000100)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr="1397ce6eec52ad55955f773e16cdb51d"}}}, 0x38)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000000)={{&(0x7f0000011000/0x1000)=nil, 0x1000}})
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000140)={{{@in6=@mcast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@loopback}}, &(0x7f0000000240)=0xe8)
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000280)={@dev={0xfe, 0x80, [], 0x1f}, 0xb, r3})

07:26:09 executing program 0:
socketpair$unix(0x1, 0x1ffff, 0x0, &(0x7f0000000240))
syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x0, 0x82000)
ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f00000001c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$TCSETS(r2, 0x40045431, 0x0)
prctl$PR_MCE_KILL(0x21, 0x0, 0x1)
syz_open_pts(r2, 0x0)
ppoll(&(0x7f00000000c0)=[{}], 0x3e, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='lp\x00', 0x3)
open(0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
bind$rxrpc(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
nanosleep(0x0, &(0x7f0000000180))
ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000000))
recvfrom$inet(0xffffffffffffffff, 0x0, 0xfffffffffffffd14, 0x0, 0x0, 0xfffffffffffffff2)
ioctl$FICLONERANGE(r0, 0x4020940d, 0x0)
recvfrom$inet6(r1, &(0x7f0000001840)=""/31, 0x1f, 0x100, &(0x7f0000000040), 0x1c)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
sendto$inet6(r1, &(0x7f0000000500)="2ff6508a80367565414cb3bddeb37393bd3e2535e472e5e59baedfdd1d0ac1401a2138346b495b5dbff9d149f08a72eb767bc60fc316eb39ff6bac6ee61b9b5218633bff8baa12d376c07df8d83b741b3674a1a12360520fb4be2b77c44edfba8627e1bac6844f65f836b9e8d4486f816b8ddd2d784ccfe122dbd7480699260dfef9022faddd9be5d7cb274f49021610a819", 0x92, 0x0, 0x0, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet6(r4, &(0x7f00000000c0), 0xfffffdda, 0x0, 0x0, 0x0)

07:26:09 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f3188b070")
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x640000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000000040))
accept$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000001c0)={@rand_addr="a3b8dbe0b032d4b51ad1b4467395d3b4", @rand_addr="3d5e5883ccf563017776052fed23ad03", @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x5, 0x80000000, 0xc2, 0x400, 0x4, 0x10000, r2})
r3 = socket$inet6(0xa, 0x3, 0x2000000098)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000080)={'team_slave_0\x00'})
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000000c0)=0x2, 0x4)

07:26:09 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='io.max\x00', 0x2, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000140))
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x67c5d786346569eb, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x8, 0x80)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000340)={0x53, 0xffffffffffffffff, 0xffffffffffffff3f, 0x890e, @scatter={0x1, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/21, 0x15}]}, &(0x7f0000000140), &(0x7f0000000180)=""/110, 0x2, 0x4, 0x1ff, &(0x7f0000000300)})

07:26:09 executing program 1:
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00005d8000/0x3000)=nil, 0x3000}, 0x1})
fdatasync(r0)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000140)={<r2=>0x0, 0x1000, "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"}, &(0x7f0000001180)=0x1008)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f00000011c0)={r2, 0x8}, 0x8)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000000080)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
pwrite64(r0, &(0x7f0000000000)="c0f824d1b3eee4f6b647ae5cf0dbb6d3ca66", 0x12, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)

07:26:09 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x0, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x38)
ptrace$cont(0x18, r1, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x3, 0x8})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r1, 0x0, 0x0)
ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f0000000000)={0xfc, &(0x7f0000000180)=""/252})

07:26:09 executing program 1:
syz_emit_ethernet(0xfffffffffffffdb4, &(0x7f0000000000)={@empty, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x70}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x3, 0x2, 0x0, 0x0, 0x0, 0x2, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4029, 0x0, @local, @dev, {[@timestamp={0x8, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {[@broadcast]}, {[@multicast1]}, {[@dev]}]}]}}}}}}}, 0x0)

07:26:09 executing program 1:
r0 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000140)={0x0, 0x0, 0x10, 0x0, 0x9}, &(0x7f0000000240)=0x18)
preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001680)=""/132, 0x84}, {&(0x7f0000012000)=""/252, 0xfc}, {&(0x7f0000001740)=""/155, 0x9b}, {&(0x7f00000001c0)=""/11, 0xb}, {&(0x7f0000000300)=""/102, 0x66}], 0x5, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000280)=""/92, 0x5c}, {&(0x7f0000000080)=""/7, 0x7}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x3, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000015c0)=[{{&(0x7f0000001400)=@rc, 0xfffffffffffffc77, &(0x7f0000000200)=[{&(0x7f0000000180)=""/34, 0x22}], 0x1, &(0x7f0000001480)=""/174, 0xae}}], 0x1, 0x0, &(0x7f0000001640))
ioctl(r0, 0xc2604110, &(0x7f0000000000))
ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000380)={'vlan0\x00\x00\x00\b\x00', 0x9})

07:26:09 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000080)="9884b8316ce02705b94320efe2c05b05accb5fe623ff329c40cee82fcd19ab743bdcfe589a67ac1b75c768eda83e32501eb8aa421c97cf3181ff4618814b848395ffb020ee4dbd12ed145020d05132462c87cff54d2b4821b37aae670f5938f7c4be", 0x62)
r1 = dup2(r0, r0)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x8)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
r2 = dup2(r1, r0)
setsockopt$packet_int(r2, 0x107, 0x13, &(0x7f0000000480), 0x4)

07:26:10 executing program 0:
socketpair$unix(0x1, 0x1ffff, 0x0, &(0x7f0000000240))
syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x0, 0x82000)
ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f00000001c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$TCSETS(r2, 0x40045431, 0x0)
prctl$PR_MCE_KILL(0x21, 0x0, 0x1)
syz_open_pts(r2, 0x0)
ppoll(&(0x7f00000000c0)=[{}], 0x3e, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='lp\x00', 0x3)
open(0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
bind$rxrpc(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
nanosleep(0x0, &(0x7f0000000180))
ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000000))
recvfrom$inet(0xffffffffffffffff, 0x0, 0xfffffffffffffd14, 0x0, 0x0, 0xfffffffffffffff2)
ioctl$FICLONERANGE(r0, 0x4020940d, 0x0)
recvfrom$inet6(r1, &(0x7f0000001840)=""/31, 0x1f, 0x100, &(0x7f0000000040), 0x1c)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
sendto$inet6(r1, &(0x7f0000000500)="2ff6508a80367565414cb3bddeb37393bd3e2535e472e5e59baedfdd1d0ac1401a2138346b495b5dbff9d149f08a72eb767bc60fc316eb39ff6bac6ee61b9b5218633bff8baa12d376c07df8d83b741b3674a1a12360520fb4be2b77c44edfba8627e1bac6844f65f836b9e8d4486f816b8ddd2d784ccfe122dbd7480699260dfef9022faddd9be5d7cb274f49021610a819", 0x92, 0x0, 0x0, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet6(r4, &(0x7f00000000c0), 0xfffffdda, 0x0, 0x0, 0x0)

07:26:10 executing program 1:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100))
readv(r1, &(0x7f0000000840)=[{&(0x7f0000000780)=""/180, 0xb4}], 0x1)
clock_gettime(0x0, &(0x7f0000000080)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, r2+30000000}}, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r4 = syz_open_pts(r1, 0x0)
fcntl$setflags(r1, 0x2, 0x1)
r5 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0xc74, 0x280100)
r6 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000240)='NET_DM\x00')
sendmsg$NET_DM_CMD_START(r5, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r6, 0x400, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x40000)
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f00000000c0)={'icmp6\x00'}, &(0x7f0000000140)=0x1e)
dup3(r4, r1, 0x80000)
tkill(r0, 0x1000000000016)

07:26:10 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x42, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040)=0x4)
setsockopt$inet_tcp_int(r0, 0x6, 0x2c, &(0x7f0000000080)=0xfff, 0x4)
fsetxattr$security_evm(r0, &(0x7f00000000c0)='security.evm\x00', &(0x7f0000000100)=@v1={0x2, "01343e4802b00e6e38040844e54f19adde2c1d"}, 0x14, 0x2)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000140)=0x7)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e22, @loopback}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000001c0)={<r1=>0x0, @in={{0x2, 0x4e23, @loopback}}, 0x6, 0x81}, &(0x7f0000000280)=0x90)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f00000002c0)={<r2=>r1, @in={{0x2, 0x4e20, @empty}}, [0x10000, 0x9, 0x3, 0x0, 0x4c, 0x5, 0x3, 0x9, 0x1, 0x7, 0x5, 0x100, 0x1e9, 0x5f]}, &(0x7f00000003c0)=0x100)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000400)=0xffffffffffffffff, 0x4)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000480)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_TOL(r0, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8010}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x68, r3, 0x4, 0x70bd2d, 0x25dfdbfb, {{}, 0x0, 0x4107, 0x0, {0x4c, 0x18, {0x3, @media='udp\x00'}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x68}}, 0x4080)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000005c0)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@remote}, 0x0, @in=@multicast1}}, &(0x7f00000006c0)=0xe8)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000700)={@mcast1, @rand_addr="55ae204c84fc2ebbf845c235a88a7ae8", @local, 0x1, 0x3, 0x2, 0x100, 0x0, 0x40000000, r4})
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000780)={r2, 0xffffffffffff0001}, &(0x7f00000007c0)=0x8)
r5 = semget(0x1, 0x2, 0x202)
semctl$SETVAL(r5, 0x3, 0x10, &(0x7f0000000800)=0x8)
ioctl$VIDIOC_OVERLAY(r0, 0x4004560e, &(0x7f0000000840)=0x7)
ioctl$PPPIOCCONNECT(r0, 0x4004743a, &(0x7f0000000880)=0x4)
fadvise64(r0, 0x0, 0x4, 0x8805cfc0e98a3fd2)
getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000008c0), &(0x7f0000000900)=0x4)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x1000050}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x30, r3, 0x506, 0x70bd2d, 0x25dfdbfd, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x1, 0x7fff, 0x100}}}, ["", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getpeername$packet(r0, &(0x7f0000000a40)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000a80)=0x14)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000ac0)={0x0, r0, 0xb, 0x1}, 0x14)
ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000b00))
sendmsg$nl_route(r0, &(0x7f0000000c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x284004}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)=@ipv4_newaddr={0x6c, 0x14, 0x400, 0x70bd2a, 0x25dfdbfd, {0x2, 0x8, 0x8, 0xff, r6}, [@IFA_CACHEINFO={0x14, 0x6, {0xfffffffffffffffd, 0xf219, 0x400, 0xff}}, @IFA_FLAGS={0x8, 0x8, 0x100}, @IFA_LABEL={0x14, 0x3, 'bond_slave_0\x00'}, @IFA_BROADCAST={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @IFA_FLAGS={0x8, 0x8, 0x643}, @IFA_CACHEINFO={0x14, 0x6, {0x5, 0x1, 0xd1, 0x401}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40004}, 0x8040)
write$P9_RFLUSH(r0, &(0x7f0000000cc0)={0x7, 0x6d, 0x1}, 0x7)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000d00)=<r7=>0x0)
ptrace$setregset(0x4205, r7, 0x200, &(0x7f0000000dc0)={&(0x7f0000000d40)="e1040fb3159052f2c2ca61e1519a304e6ab2f2d8526ff7757f3bb19202ddab312a81f2b4c81037d134fa4236c681afb43640356f0e8a5ff93ab615f164990ec35047b8a750366f56acc98ec0190fb1d1360659ec0737c3e284bdda582b8f14674c02d3d12d57ff57f0d72d88ce0178d5313c8b29425ce65e", 0x78})
write$P9_RLOCK(r0, &(0x7f0000000e00)={0x8, 0x35, 0x1, 0x2}, 0x8)

07:26:11 executing program 0:
r0 = syz_open_dev$video(&(0x7f00000001c0)='/dev/video#\x00', 0x800, 0x2000)
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x9, 0x1)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000040)={0x5, <r2=>0x0, 0x0, 0x1})
syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x3, 0x1)
ioctl$DRM_IOCTL_SG_FREE(r1, 0x40106439, &(0x7f0000000080)={0x3c3, r2})
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000140)={0x400200000000037, 0x2, 0x0, "36aa5adb87cc7619bf420900000000e60004000000000000030400"})

[  256.992739] IPVS: ftp: loaded support on port[0] = 21
07:26:11 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000600)=0x74, 0x28)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x22200, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(r2, 0x5411, &(0x7f00000000c0))
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3)
write$binfmt_elf64(r0, &(0x7f0000000200)=ANY=[@ANYPTR64=&(0x7f00000002c0)=ANY=[@ANYPTR64, @ANYRES32=r0, @ANYPTR=&(0x7f0000000240)=ANY=[@ANYRESDEC=r1, @ANYRES32=r2, @ANYRES32=0x0, @ANYBLOB="7575efac93452b0a8727e953027df8027e177d200851b92ef9b42fd72edac4c34aebba84aa7dc41570af42d92e75e78174", @ANYRESOCT=r0, @ANYRES64=r0, @ANYRES32=r2, @ANYRES32=r1]]], 0x8)
sendto(r0, &(0x7f00000007c0)="7589f0da892457ee2c04b3303d1176a13baaebf2227828025640d922cab9eba23410a07246127b486e98e302910479646091dfef95b0368b0b19c338b1306db81cea8edfc66a6212607f01496a9963ef1a83caee01bd36339f26dd287a0755ca00801959badb1253ae3a85a47b0ec39b760f063d47566e4fc1d3bb64091fd37b447c97ad80e73770f7f4dd6eddb98a793ce81ea1c83b68403c1f384269c2c8525312a986d7d1d9fc03c44ab45bf6f90c00c2bfe29449ffb4fc7543122cb7f56fa5c504a9b565a44afe", 0xc9, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000e80)="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", 0x12d, 0x0, 0x0, 0x0)

[  257.177336] chnl_net:caif_netlink_parms(): no params data found
[  257.256912] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.263630] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.271802] device bridge_slave_0 entered promiscuous mode
[  257.281286] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.287929] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.296139] device bridge_slave_1 entered promiscuous mode
[  257.332884] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  257.343992] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  257.374462] team0: Port device team_slave_0 added
[  257.383131] team0: Port device team_slave_1 added
07:26:11 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x4000000004002, 0x0)
userfaultfd(0x80000)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000b, 0x13, r1, 0x0)
madvise(&(0x7f0000836000/0x400000)=nil, 0x400000, 0x2)
r2 = socket(0x1e, 0x802, 0x0)
getsockopt$SO_BINDTODEVICE(r2, 0x1, 0x2f, &(0x7f0000000000), 0x20a154cc)

[  257.456911] device hsr_slave_0 entered promiscuous mode
[  257.482468] device hsr_slave_1 entered promiscuous mode
07:26:11 executing program 0:
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2)
getsockname$unix(r1, &(0x7f0000000100), &(0x7f0000000040)=0x6e)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = getpgid(0xffffffffffffffff)
fcntl$lock(r2, 0x24, &(0x7f00000001c0)={0x1, 0x2, 0x400, 0xfffffffffffff000, r3})
sendmsg$nl_xfrm(r2, &(0x7f0000000080)={0x0, 0x19b, &(0x7f00000bfff0)={&(0x7f0000000400)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)

[  257.539258] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.545965] bridge0: port 2(bridge_slave_1) entered forwarding state
[  257.553515] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.561090] bridge0: port 1(bridge_slave_0) entered forwarding state
[  257.753556] 8021q: adding VLAN 0 to HW filter on device bond0
[  257.781141] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
07:26:11 executing program 0:
r0 = socket$inet(0xa, 0x801, 0x84)
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xffff, 0x101000)
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x2000001000008912, &(0x7f0000000100)="0adc1f123c123f3188b070")
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x5, 0x6}, 0x8)

[  257.801007] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.815815] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.851651] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  257.898081] 8021q: adding VLAN 0 to HW filter on device team0
[  257.917021] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  257.926211] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.932805] bridge0: port 1(bridge_slave_0) entered forwarding state
[  258.006950] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  258.015551] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.022113] bridge0: port 2(bridge_slave_1) entered forwarding state
[  258.031327] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  258.040090] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  258.048420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  258.065783] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  258.077181] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  258.115090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  258.143437] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  258.151190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
07:26:12 executing program 1:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100))
readv(r1, &(0x7f0000000840)=[{&(0x7f0000000780)=""/180, 0xb4}], 0x1)
clock_gettime(0x0, &(0x7f0000000080)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, r2+30000000}}, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r4 = syz_open_pts(r1, 0x0)
fcntl$setflags(r1, 0x2, 0x1)
r5 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0xc74, 0x280100)
r6 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000240)='NET_DM\x00')
sendmsg$NET_DM_CMD_START(r5, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r6, 0x400, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x40000)
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f00000000c0)={'icmp6\x00'}, &(0x7f0000000140)=0x1e)
dup3(r4, r1, 0x80000)
tkill(r0, 0x1000000000016)

07:26:12 executing program 0:
r0 = socket(0x200000000000011, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vcan0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000140)={0x11, 0x17, r1, 0x1, 0x0, 0x6, @dev={[], 0x27}}, 0x14)
fgetxattr(r0, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', &(0x7f0000000080)=""/66, 0x42)
dup(r0)

07:26:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
unshare(0x20400)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x0, 0x9ceb}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000001c0)={0x0, 0x0, @ioapic})
r2 = socket(0x8, 0x3, 0x6)
socket$unix(0x1, 0x2, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'btrfs.', 'lo\x00'})
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000000c0)={<r3=>0x0, @in6={{0xa, 0x4e24, 0x6, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x9}}, 0xffffffffffff4e86, 0x8000000000000000}, &(0x7f0000000180)=0x90)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000002c0)={r3, @in6={{0xa, 0x4e23, 0x3, @rand_addr="868f6e4c588e84af35d63dcef56f00a3", 0x6}}, 0x80, 0x100000001, 0x8, 0x9, 0x80}, &(0x7f00000003c0)=0x98)
ioctl$sock_bt_bnep_BNEPCONNDEL(r2, 0x400442c9, &(0x7f0000000000)={0x40, @random="0c4c948d2742"})

07:26:12 executing program 0:
r0 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000140)={0x0, 0x3, 0x4, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "1e083338"}, 0x0, 0x0, @planes=0x0, 0x4})

07:26:12 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x10)
writev(r0, &(0x7f0000fb5ff0)=[{&(0x7f0000fb4000)="1f00000002031900000007000000068100023b0509000100010100ff3ffe58", 0x1f}], 0x1)
r1 = socket$netlink(0x10, 0x3, 0xc)
r2 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0x0, 0x2)
ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000080))
close(r1)

07:26:12 executing program 0:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg(r0, &(0x7f0000000140)={&(0x7f0000fdbf80)=@generic={0x10000000001e, "02ff0100000001000000000000000ae77f5bf86c48020002000000f1ffffff009a480075e6a50000de010300000000e4ff064b3f013a000000080000008f00000000ac50d5fe32c4000000007fffffff6a008356edb9a6341c1fd45624281e00070ecddd0206c39750c40000fd00000900000000000b0000db000004da36"}, 0x80, 0x0}, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x3, 0x81, 0x6, 0xfffffffffffffffc, 0x100, 0xfffffffffffffffe})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x652100, 0x0)
write$UHID_INPUT(r1, &(0x7f0000003600)={0x8, "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", 0x1000}, 0x1006)
recvmsg$kcm(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002600)=""/4096, 0x1000}], 0x1}, 0x40000100)
write$binfmt_elf32(r0, &(0x7f00000015c0)=ANY=[@ANYPTR=&(0x7f0000000100)=ANY=[@ANYRES16]], 0xfffffd6d)
write$binfmt_elf32(r0, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x58)
openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x18402, 0x0)

07:26:12 executing program 2:
r0 = syz_open_dev$sndtimer(&(0x7f0000000180)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000100)={0x0, 0x1ff, 0x0, 0x0, 0xe})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
r1 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x0, 0x121000)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)

07:26:12 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000588ff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$lock(r1, 0x7, &(0x7f0000002000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
fcntl$lock(r1, 0x26, &(0x7f0000000080)={0x0, 0x0, 0x2000000000})
fcntl$lock(r1, 0x26, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2})
dup3(r0, r1, 0xfffffffffffffffe)

[  258.882426] Subscription rejected, illegal request
07:26:13 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x0)
io_setup(0x0, &(0x7f00000001c0)=<r2=>0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000000)={<r3=>0x0, @local, @remote}, &(0x7f00000000c0)=0xc)
bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x4, r3, 0xad}, 0x10)
io_submit(r2, 0x1, &(0x7f0000000600)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

07:26:13 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'ip6gretap0\x00', &(0x7f0000000080)=@ethtool_eee={0x45, 0x2, 0x5, 0x1, 0x200, 0x1, 0x60d9493f, 0x4, [0x10000, 0x5]}})
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x80, 0x0)
ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f0000000140))
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'batadv0\x00', &(0x7f0000000000)=@ethtool_pauseparam={0xa}})

07:26:13 executing program 0:
r0 = memfd_create(&(0x7f0000000040)='-vmnet0\',^]$\x00', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000240)='/dev/snd/seq\x00', 0x0, 0x20000057d)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)={0x0}, 0x357)
r2 = dup2(r1, r0)
set_robust_list(&(0x7f00000001c0)={&(0x7f0000000100)={&(0x7f0000000080)}}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f00000003c0)={0x4, 0x9, 0xeb, 'queue1\x00', 0x5})
write$P9_RLINK(r2, &(0x7f0000000000)={0x7}, 0x285)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000340)={0x322})

[  259.067471] Unknown ioctl 21523
[  259.074160] Unknown ioctl 21523
07:26:13 executing program 2:
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffff9c)
fcntl$setstatus(r0, 0x4, 0x42400)
ioctl$KVM_INTERRUPT(r0, 0x4004ae86, &(0x7f0000000000)=0x5)
mlock(&(0x7f0000b61000/0x12000)=nil, 0x12000)
mlock2(&(0x7f0000638000/0x2000)=nil, 0x2000, 0x1)

07:26:13 executing program 1:
r0 = socket(0x10, 0x802, 0x0)
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video37\x00', 0x2, 0x0)
write(r0, &(0x7f0000000180)="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", 0xfc)

07:26:13 executing program 0:
r0 = memfd_create(&(0x7f0000000040)='-vmnet0\',^]$\x00', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000240)='/dev/snd/seq\x00', 0x0, 0x20000057d)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)={0x0}, 0x357)
r2 = dup2(r1, r0)
set_robust_list(&(0x7f00000001c0)={&(0x7f0000000100)={&(0x7f0000000080)}}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f00000003c0)={0x4, 0x9, 0xeb, 'queue1\x00', 0x5})
write$P9_RLINK(r2, &(0x7f0000000000)={0x7}, 0x285)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000340)={0x322})

07:26:13 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
sendmsg(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)="de", 0x1}], 0x1}, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in={{0xa, 0x0, @loopback}}, 0x4, 0x0, 0x0, 0x0, 0x4d}, 0x98)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00')
fchmod(r0, 0x10)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, r1, 0x401, 0x70bd2d, 0x25dfdbfc, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x100, 0x81, 0x3, 0x3f}}}, ["", "", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x44004)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000200)=[@in={0x2, 0x4e24, @broadcast}, @in6={0xa, 0x4e23, 0x8000, @dev={0xfe, 0x80, [], 0x23}, 0x8}], 0x2c)

[  259.386313] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.1'.
07:26:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000180)={0x79})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$sock_timeval(r3, 0x1, 0x0, &(0x7f00000000c0)={0x77359400}, 0x10)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000000)={0x7b})

[  259.428906] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.1'.
07:26:13 executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x106}}, 0xc0)
r2 = accept4(0xffffffffffffffff, &(0x7f0000000040)=@xdp, &(0x7f0000000200)=0x80, 0x800)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000240)='htcp\x00', 0x5)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1}}, 0x10)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0x2, 0x0, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000]}}, {0x2, 0x0, 0x0, @remote}, r1}}, 0x48)

07:26:13 executing program 1:
rt_sigaction(0x41, &(0x7f00000000c0)={&(0x7f0000000040)="28f0c441f8ae5306c403754687f49800003426f3f2650fb06332c401816b487f642ef040801204f2460f1b15060000008f28d4a2d300c4c2b9b6e5d92449", {0x8001}, 0x1, &(0x7f0000000080)="80060065def6f3de16c4617a2c9808000000c4217b702f000f0d9100000000f247de463ec4c1d85de62ef34e0f2ccac4a1916ddc"}, 0x0, 0x8, &(0x7f0000000100))
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x805, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000400)={'syz1\x00'}, 0x45c)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x11)
ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000880)={'syz1\x00', {}, 0x11}, 0x45c)

[  259.638962] input: syz1 as /devices/virtual/input/input5
[  259.644672] input: failed to attach handler leds to device input5, error: -6
07:26:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000180)={0x79})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$sock_timeval(r3, 0x1, 0x0, &(0x7f00000000c0)={0x77359400}, 0x10)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000000)={0x7b})

07:26:13 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x1e628281cc4f499f, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x80800)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x7, 0x105082)
r1 = memfd_create(&(0x7f0000000140)=',!\x00', 0x0)
pwritev(r1, &(0x7f0000000400)=[{&(0x7f0000000340)="a8", 0x1}], 0x1, 0x81003)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
r2 = dup2(r0, r1)
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000000000)=0x4)
mmap(&(0x7f0000008000/0x1000)=nil, 0x1000, 0x4, 0x2183f, r0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x8002)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x0, 0x0, @buffer={0x5, 0xee, &(0x7f00000002c0)=""/238}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
semget(0x3, 0x3, 0x400)
sendfile(r0, r1, 0x0, 0x80003)
readv(0xffffffffffffffff, 0x0, 0x0)

07:26:13 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x480, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000d0fff5)='/dev/audio\x00', 0x42801, 0x0)
write$tun(r1, &(0x7f0000000240)={@val, @void, @mpls={[], @ipv6={0x0, 0x6, "148923", 0x10, 0x0, 0x0, @empty, @remote, {[], @dccp={{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "91d1e6", 0x0, "e34edf"}}}}}}, 0x3c)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000000200)=0x10000)

[  260.005338] hrtimer: interrupt took 29688 ns
07:26:14 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x2, 0x3, 0x19)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@loopback}}, 0xe8)
r2 = socket(0xa, 0x1, 0x0)
ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000100)={0x0, @bt={0x80000000, 0x7ca, 0x1, 0x1, 0x3f, 0x0, 0x3, 0x3, 0x4, 0x3, 0x52, 0x8fd, 0x3, 0x20, 0x4, 0x20}})
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000340)={0x6, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_mreqn(r1, 0x0, 0x100000000000025, &(0x7f0000000380)={@multicast2, @local}, 0xc)

07:26:14 executing program 2:
stat(0x0, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffff9c)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000)=0x5, 0x4)

07:26:14 executing program 0:
r0 = memfd_create(&(0x7f0000000100)='-vmnet0\',^]$\x00', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000240)='/dev/snd/seq\x00', 0x0, 0x20000057d)
r2 = dup2(r1, r0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00'})
socketpair$unix(0x1, 0x20000000001, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
accept4$inet6(r3, 0x0, &(0x7f0000000040), 0xb035ae3d33cdcdd2)
r4 = userfaultfd(0x0)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000))
write$P9_RLINK(r2, &(0x7f0000000000)={0x7}, 0x285)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000340)={0x23e})

07:26:14 executing program 1:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0xc00, 0x0)
ioctl$NBD_DISCONNECT(r0, 0xab08)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x2, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000000))
pread64(r1, &(0x7f0000000040)=""/12, 0xc, 0x0)

07:26:14 executing program 2:
r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f00000002c0)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce0000b4ec24c53d3d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0xc0, 0xfffffffffffffffe)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x10002, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f00000003c0)={0x2, [0x5, 0x5]}, 0x8)
r2 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000005c0)={'syz'}, &(0x7f00000000c0), 0x9a, 0xfffffffffffffffd)
r3 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x5, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r3, 0xc0106426, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{}]})
keyctl$dh_compute(0x17, &(0x7f0000000380)={r2, r0, r0}, &(0x7f0000000080)=""/107, 0x6b, &(0x7f0000000280)={&(0x7f00000001c0)={'rmd320\x00'}, &(0x7f0000000240)})

07:26:14 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000640)={'vcan0\x00', <r1=>0x0})
connect(r0, &(0x7f0000000300)=@hci={0x1f, r1}, 0x2b)
r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x10000, 0x0)
clock_gettime(0x0, &(0x7f0000000180)={<r3=>0x0, <r4=>0x0})
futimesat(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000400)={{}, {r3, r4/1000+10000}})
sendmsg$can_bcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x1, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "9b5117f117e9a7f4"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0100"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000080010000829c115d4a80194b00263135faeea98bd3"], 0x48}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000480)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x50, r5, 0x0, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x48000}, 0x4041)
sendmsg$can_bcm(r0, &(0x7f00000002c0)={0x0, 0xfffffffffffffee6, &(0x7f0000000880)={&(0x7f00000001c0)={0x1, 0xa77, 0x0, {}, {0x77359400}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "712434898683e4b1dc4a24f8a4195961cd51c774e37f236d70e6439a5e16261a0f4a5a02eaa9af95646d8b8d88263e9a1ac10922d0057816ca9d08f6290c04a1"}}, 0x80}}, 0x0)

07:26:14 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x9, 0x2)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x20000, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000b, 0x17, r1, 0x2)
setsockopt$inet_dccp_int(r0, 0x21, 0xb, &(0x7f0000000000)=0x9, 0x4)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f00000000c0)={0x16, @dev={0xac, 0x14, 0x14, 0xd}, 0x4e21, 0x1, 'rr\x00', 0x10, 0x7, 0x48}, 0x2c)
ioctl(r0, 0x40084149, &(0x7f0000001f64))

07:26:14 executing program 2:
r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f00000002c0)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce0000b4ec24c53d3d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0xc0, 0xfffffffffffffffe)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x10002, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f00000003c0)={0x2, [0x5, 0x5]}, 0x8)
r2 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000005c0)={'syz'}, &(0x7f00000000c0), 0x9a, 0xfffffffffffffffd)
r3 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x5, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r3, 0xc0106426, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{}]})
keyctl$dh_compute(0x17, &(0x7f0000000380)={r2, r0, r0}, &(0x7f0000000080)=""/107, 0x6b, &(0x7f0000000280)={&(0x7f00000001c0)={'rmd320\x00'}, &(0x7f0000000240)})

07:26:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0)
unshare(0x20400)
r1 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x7fe, 0x10b3ff)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x18}, 0x10)
vmsplice(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000001780)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="bb92df6bf68729978253e875e00f2003bbb1b406eb1fc97ebd5ea64c20632db0d4093b13ee63fe", 0x27}, {&(0x7f0000000100)="5de38ca1731f5aaf7ebdf32d8f45ca998cf9c4764c37294b553a832fdea30498c2eff336d5d8b274b75a2765ce724af44571b25d9ff5253ccd6f297a3507e2b968386a94582c226c58d158f8fb1ae524b2f43540e88aa18dc773fbdb35726abd1e43c96d5e60c00c0e61e025b094cd3aee731f00c7af25617aad4df7be57fcb180130e5199db9c5dafd6deb8ee9feee6ec00fcf80dc6e701eb7db5b487effc51a972b5", 0xa3}], 0x2, &(0x7f0000000200)=[@assoc={0x18, 0x117, 0x4, 0x3}], 0x18, 0x800}, {0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000240)="265eb19a92b58b531ef91b26503177f20f16eed3fc08025edc2584a77f6825900930322523a48b72558308970bf7cc4203cf90668202b0ec56d82268bbc4fe2f7fce91baca781df1c231fda748de6aa8fb578c0ce721d786e4ce28e08076c6dd2c508ea1", 0x64}], 0x1, &(0x7f0000000300)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x80}], 0x30}, {0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000003c0)="452ef147f2c6459d0244be6c864b834377b3225bb472a2605e7ef601deef59b9e2fa2541c23c2330f4af5d4aa20cdfd344f9a7b145bc770976be5669616e96891fb5a34d3ca94900ef994aa9e7b858c4c43b3449739cad08b91a7b6a0e6e5a5bad3fe5e12132beb5d1a7d12f33b156bdc9fea2657977a9352f779b5898d09d5cf89bc8fda6643ccd9f1dececccdb736f985112bccc85c796ba36c4a208636330ed73a3588e4e1a3e7e9c35e836f1fb16e9555bbd84fe3560e1127feb6123eda43ed72e40ff04c70ba64583e9d8504ac411a6b8a35eb3d25ee262dd84efd0aa33ac67576155c30fe526e97a1ca046339bdcd5356977051bd71e53bd36f96f70629b0a01b3d09ffc3fad343d77ff440245929916662702e74959b3f8c558a6140201d5596f7b189f523567ba0aef42ee27fb865809ce64af428aa32e1b3ed09c249dde86a175bb09ae32c11491ed904c398db8779241727e22b36451a5d14d86cb0fb881a5fbd13ca22ef5e8eb9389a4623e66a81d4cb68bebd73dffa2882bac71a2edb1969aba6034d7bd3e0f53730610c6b5b90bc614c29d8eac2c4dccf18c073dd24085dbcc4d77bb1bb072efff21bb2d9ef4b766e0e7f6dbdb4b0bc7eedf9b04d0425bba7c0bfb47e2fefda115aadda09080a1f6f4115583610982b889303121bf0bb007841284f8751868d70ec9c65afc99cf5464dafdb922f27c7a7d6cb8425b3e5bfa80354efd42f848a94ff379faa602cdf6d46f8da63037ee63561d25ad4d5e1495a6d07803242b16b61ad711a94ab4c417776f2b5f1c899290d31016087bfd1ee7fab53ee4182d1148ef1fb37a76826a158eaeab0c3ecad16a9aa192687eff6a598610806671d0d8f05491fd7f321435179d319b2125f7c7daed42865c64a76b596fe67f9a3588a2af67fef16a4a9ff65211c3d6f22e269f7de9fd25c56a02f6b41014b236d855140625b65143711bb32288d507923785bfe04a5bcffb128015ea2595b89dad0b7ebc1daca899a636bcd363b13b72e33a96ce3e72a278698d270532c1b073704dd65e2bf9c983347bd736cf1bccbabd1720cc3b3eb63afe55271d6fa35899ee0b286d7693560e9e19c25a2fe117607d2e596b96f4325028e701d1bddf15d22a19103eae1a2fcb66f1bcc86804b3dbe0a81be6614e837901ac0a88265d9515d9382ad8c46fedec3de5752302d2d391a14e2780b952babd7b2a530912ce5be04ab5ca166ce0332b7ee4276d40cf6a335f37297e045792d3d8a18f4eb7f06603db30e609c8143d0db46d76cf09b17123c950c6724b8c9cd0f1eb15b25cc0f69807bf1330ca238ade3dfc43693332c816887d26618cf0c60ac41716845f2b04fc7a22194884ac9a35a32fcccc76106df59d5093aa698e4f964a3dd076349889f8b0f28e09d44f39573274543bc7cf4f5c9fbd1ac8ea33369bc3b957a48446d7e76a300720edf76c552eb5bb0704657f34e5f9d2174d11972650fad33e652a29fa5e7acf6f157495c2d1caddf5e3136376dcadd2996fdf3ceed617f940dbecfd29f3498029b027a88012d0016f632416b80756b3a7447cb2492a99dff65950cf1689eaf77774324c61bf482027799f758b1738182033918d8189937ace3eb9d38e5e75ed43561601dc879db807bee250838d6dc1b91adf1db90bd354718447958a51da99b692fe0613525b01a36007cc3463d829aed15d8b09dea856ca79b3993ae7606e7bf2896ff81efa2eb4b6fa4c29f442fd068a0b09fedd0f883cb2f6aba37e3ffffaa85bf999364190e23a0b8ab71e50707806fa15a35a282964507a0628b2b4c33f7f3c76a7b677dce0798bd90f6d2a10517cbdf37ed644a0e19dbd032c4064b6f0c3f6ab3e5c0ccd37f0a09d0c35f4490de1b8ecfe50f8cf10b79386d3c4b20bfe923862706aae4ec95ca8a6bb401415bb686761a6d53aee7012bbbe05c42fc3293b9b8a5062edf30ed770b14c44e3568e6ca6837548c11ade078e719fa52777c73b625df473465ce2d2f294b336795c4e92da8f02889126df6454f72abcb746852907cb5a9e80f6574358d837d8785b52084dbc813da5651372bbe716ea2eee968e05880aee0515979ae4e6f87110df72d2855d489aae48e5a51dfd285ada4bc61bc819bd6b54df91ee241974f444b24b86452ceb854bf3eca230a3927732803a9b91d8529f9e915c9718908fa5d815502f45463bbecdfb3c0c7e885431867295fd16f297ada31016f10bb3a07cd40e207f128cf57c2d8302cf7a994dffc3fe1d5d1a0f1e73a43397e006f02691de7af631c9d4262ac252d210339011eb483403b3d4bd905c9142f3d692f0a3ff9746113bd3c1db4a362b5939016a10c713526c030168543f26b7fdf16b054d4c77c1e6a67851340b6c8638ced01b88fcb6a20c763a5aa2d3890189037b0dfe806f5f8b02db50f6f47e764fa7126f6222d0f0cf8555ae7cca5ecddfb2e747ff4f024f22281c87129e68d453506e72456e5f533589d361e5e653b506c8f5a08a951b9466a538812491c0c563d984ae6a4f8dfa444a8d587e4786ee53f36f65076ba0e15298269bb7fbf5690b10305277f0145408da9f3e6435ed81b23658a87c962f8dfda00714d0a636dfc30c9cae31e07ccfb77c79acc2370c0fbd0d5a31b89e6f3b051772be6a479d098411e62ea2da551dfa32a8718a9d07a2cc5de942fd3bfb99b0c0a65293d5fd72dfb0d9be3007b6870a07e6111ee7186e1cfad60e9f0510213424ef00b84c0e366e90783ec9005875541f09e9bce25936e3e0758b5c9c11720b73d7e130dcc1fa1445c180d12e43999a268d2bb3e3e78d4ec0595eb345785f5c7508caf73de43dd56d2487ed26c6c98a848511fa59fa4ba745e521a9becaaee61018d6ea770c321a5abf1f5d42dba1bd6d709320a4871708bcb2bb87e3aae00392060f9624ad9a610fdb854f355a367057213189bd108c04eff628c487cf86268e37e8d8127dd327cf34810256e2f5a8c5b9c57f2485c8cde82611a27692c755fca864310e2af8b2eeb1eda8ea1faad797f0c55d08d8faa09ca275d47bf0a54d3f78e32f589943af4ae53d7483ae9097c6b33d0037e51364ea637a3b0416d6071d94dc8d4c6b1a3e9693240d63042d7e4f340e735d80a51674819ed0a77b4ea71df330147e342b4616708777a4d01525df30683ec21eb4d0a6356580687555d46de76975ea0f40c6502b6926c698e5625ede5c0a1ef4e12e407272d464e8ac7003d6ba1c67e0331977616d1d6061d724216abaa9747896369567be9fcca266a398be66879f1bd7bf1a2b14de58d37965594082d9f5f28c4d4857dad552847c5e8ddf34cff29164dd72613b9723db050ffaf01cce2bc8849b1c70bf161deb489ae147de5640e9e9a1519691603071d711e35527abb8fd7eec2153b95849cc7142fd32a7c05371e30ad0ef1966e8cff97fec7edd181dda4b7a08f262d3a411ab319eda84e33716a9200099955ab7d4cd5280c957139a5c282899c84bc27d9e0945f10d9e55116704b7fda2237925c57581508e7ecd1c2100892f596dc2723e81d5cb32c43d3b35fe64aa65666d36f07f5cbb7f06518e582b3a9d5ecb6f36e8cc09525e97a919546272a77f3b722cda3ccc7aed929d769dc3138f03bd092fd26c4afc029b976a6e8cdbf81639ece3663c8c31c4724a6f2c69971879df5957b830ef6d2338c0be32c8f971d044019b1c0f01e49ed98dc93d38aac2930bfa61d1c11528d0da93db5ee3df5b3ccd01f2bea8b50b756882dd57f2a6530d1d740a10746918f2ec4b59525e8dc7a7a2eeb2803cc9632ebc65d1e075d300f9b3a1356ff687b7d456f096f1011bae89f4b9b599b971eb645aa868ffe49147113c0bed7e29cafbe5fb653e930e16da867136e22776a135b66aa62e0b07a15973779f6acb12b5f933bed66660d04b6f6ccef17103d647880933fb234f99e9c824a06b830cf79df0970d53bca897c1cec16c2e7364661b3d60d2f42abf6bd7f44650e3ed7b825abfaa0111d1a2e3da83167a61da44f84c7b64415eb61e3e32115d96a161383aaa749a3a5c59aff3bac282a0a5f13c1b8ecdca2e56b4a061096ce3a4a9e9488c13d79fbb416dfc57b00b30b16b5b39f5e380e3794e0b7195784719db9aa35862417471fc079eb4170dd168ec76488375cdaa9bcce13ee59fa7e5a17cf4732edfc9a897fdaff635bee7353c90d67d3b7ff177d3a382b81a8d1d8c6e9f12a4fe349bb9c9ba9b9252a13628d8716c7cc4900d1f2291b462bc7f2f6a93deba02536973d4dd76be171216d89073d95f6e634bff33d74cdcb0b1dad83dd14072021c3574220cec6a12cd709a825d7f573f515f786747aba7afe4d1308a1984e9cd7da95728dbb6e35b2f76697918bf75a862fcd2e93d781d32d22c1333f1d9eda05b1ac47f40a17d94b483e89777cacd92e195f5297bebc8b584ea90188df1d78dbe456dec647447ab17130888a855d08426140700693c31de3010e6b3c83ae03dc884f1e61c7be4bd974c8d8f8006bf00e0e59406e6bb6c34084c3086b0c1432e7972e3f1e35b8a1406df117729a21710832fc4688225c7ed2fdf817b4036f2a73f50a7c152667ee19bfae8595a6f91d14db33f10214c97f384f8f544464d7c7df12ea8ff0b6eea06c04a47d60c82903b3f1dcda29142479f8de517d144140fcf65eb02d48ac7e3cdb1cd8961328bf60bbc8e20d97db55569f65eb7acbf696dd5691b5a5e63ade93abdfbabb6fb4f6610431edf0e9381e5ef63d1cfddf1b72941ba17f606a814de7d031d9b8001e34af076a3a3cdb23bc5cc2d9e4b0d37e24eda8a7f858d37cea7714c46b85185bc643bf4d982cebf599e0617ee074ed98b424b0680d4b2017b0dd3c20b94fd2d2a14253615ff55277b3102fbc95eeb262268f83b8a5a2e4042151b27c20eb22756b37f490740ad20390f2a75104bf41bd28c609d96076323c392c444dfeab12cab922b9d22d18b3ba172ef7614410235f413ea348f28b10d29ea4c0a91c95d30bc9500f2bed843cbedaccfa6672fe95301f5bf1a08c664a040397c5d751a53621a924a4e5663d5770d80fe5acf59f701442ff53f5847e9931848a70b2d868f1e2be53266763b7cef170fa6baed663e95b652b97ab7f3bc845299f7053b6143b751268d8cba4bcd5384c49058dc5b6dc074e66725ebc5b0ba1c4d923cc820a98d8e229f3a02e6cd39de7e8c427dd0d2d56e89e1e54c025e85a2b5cd7d81681f0e4e33a547d969122a1faee0ffd53e85d61aca703ffa943ff7a40fe585e461d5b6f3b4498d31b4d51a08f79906b8db9ca3fee472c5b7f4a42167e5273e7e98f34aec56b275a596719f54a1c3d52b92b3eb0de95baf8e08ee061f5e0a3c03a4c109f4f5f3cfc8950e6d795ef2983a187a1f74eb0e73d5b0bb9e5601b3aeb7de588c6a1178efdf71488a682d685cdef05a8954c2d19bf518b63cf5ee1cf84328b36792167ca97e6868352b0bcc9f0071ccdd9aa8d7600e7647ead91dd0f001c472c026f191d7475984ffccf127dd1c0ca658c6208b798e8ed5953652755de13e8df8b77fa3f546c443650f8644f1f474e013fa648bba9460497a22183b88ed34cb213b7fcc00c45b96e06a92189e4d5e59d63890eebd3ee01126099db2fe9b554069210b4013e2c7467bbd713d84d1f298b804ce3ec813beeba4c27944dfbe096058083ad94b4885b3fec06efd1545cd727f8d375d32495898ecad2864ce6929bfdd00321f70afe42f6937225ad49aeecbe471ed307e2af7d55182", 0x1000}], 0x1, &(0x7f00000013c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x8001}, @assoc={0x18, 0x117, 0x4, 0x7}], 0x48, 0x10}, {0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000001440)="940b1c2d7247468f1d061c805ff36d815457afe564313a455ea77a7d4a0cd13076922077165e695da289729a9b953952413497a9c4371feb1773b6e60c9a9dacfac4", 0x42}, {&(0x7f00000014c0)="9cf8706fc0ea116ee2dd6306e31535ac45b6d93fd227acbffb3c2f575cadb791717784920bf92dca01f61150608ac8d329ee2cc98174f5fa84f381dfe879629754009016aafdc61ca9080b3396ea", 0x4e}, {&(0x7f0000001540)="590816b44f88312bd9928163c84fad05a47b7f27daa30841afe0f7ca224ebcc1b091dfcfe2ea1f264ea60a56b38eeb7e7d64dcc0b3327f369c5b83b79a8e28390def00daa770721905efdcd4781da83e3570a4bf99bb7a61330011de491b9b3e9044903eb544b9ec0a58a538dbd5bff55ceef6e682ca4054a567e1e9ade0029edaf97b2aef772feefc5b8773b5b9", 0x8e}, {&(0x7f0000001600)="fc4e529d6e4d12a1df9deff012105176e47c1674810d7146f5f098354b587b16787782852fd5eb0be53663f2a1a52d8d53fac383bcad64fa93a0fcd1312def6d6940d2e9a4553e64a56582677a5791e344612cb4d08dd9773dfc2a7e5ab9d5ed61ecf07305cd41de7781abdaa13fb461a7e8ddca893faa37dea06ae860f6d7cde701ce34f27d77ef1cf891e90d40a279858e7a8c655e9da2f85b1ae35ed7a9f67bb21b4eafebe481e48675e8cc2d38ddd73b1451a2efbe17ae828c554c8cc48e4e5821e5e78454e14b6a9945b5a17930ce28a98dd8", 0xd5}], 0x4, &(0x7f0000001740)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18}], 0x30, 0xc1}], 0x4, 0x4)

07:26:14 executing program 0:
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/btrfs-control\x00', 0x840, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000280)={0x0, 0x5, 0x1})
clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = getpid()
r2 = open(&(0x7f0000000000)='./file0\x00', 0x410002, 0x46)
ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000000040)=ANY=[@ANYBLOB="de00000037835a4fe0887c0248931e8d76e494e7d7e9ef2636c09931792aa09f2ccde71eba2098e4ec7a79becbfd27ca88844e5ead3848133df990bcfa4c8d9c1274a8f0e13e549cb16440242de3cd6fdfe6db8cfe4b794bdbaebb756c3094f0a1acf336048d529422d93b9a040aa23482646938eea9b398f7dc1ac5a45da4e5a8c8d8e97a5b2859573c7c3278d863b0363eb81556d92838be15370df91cb28ed2060918489151e1e50e89c6ec3f748a99ab94fc1d03cb930c72ea6c8ca7fb2fae2a739e3de85888b8e67aa3008259d9c05400dcdc71f154a29e0a179ac9b202c576"])
rt_tgsigqueueinfo(r1, r1, 0x25, &(0x7f0000000180)={0x0, 0xfffffffffffffffc})
ioctl$IMGETCOUNT(r2, 0x80044943, &(0x7f0000000200))
ptrace(0x10, r1)
ptrace$getregset(0x4204, r1, 0x1, &(0x7f0000000140)={0x0, 0xfffffdd8})

07:26:14 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000080))
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000040)=0x1)
read(r0, &(0x7f00000001c0)=""/196, 0xc4)

07:26:14 executing program 1:
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f00000000c0)='~', 0x1}], 0x1)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f00000002c0)={<r1=>0x0, 0x9, 0x7fff, 0x7}, &(0x7f0000001340)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000001380)={r1, @in6={{0xa, 0x4e20, 0x0, @empty, 0x7}}}, &(0x7f0000001440)=0x84)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000340)="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", 0x1000, 0xfffffffffffffffa)
keyctl$KEYCTL_PKEY_QUERY(0x18, r2, 0x0, &(0x7f0000000080)='\x00', &(0x7f0000000100))
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="757365018000"], &(0x7f00000001c0)=""/242, 0xf2)

[  260.837663] ptrace attach of "/root/syz-executor.0"[10427] was attempted by "/root/syz-executor.0"[10431]
07:26:14 executing program 0:
timer_create(0x5, 0x0, &(0x7f0000001240))
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000001280)='/dev/btrfs-control\x00', 0x101000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0xf, 0x8, &(0x7f0000000040)=@raw=[@map={0x18, 0xa, 0x1, 0x0, r0}, @generic={0x48, 0x3, 0x4b, 0x8, 0x3}, @generic={0x8, 0x6, 0x2ea4, 0x1, 0x8}, @call={0x85, 0x0, 0x0, 0x48}, @alu={0x7, 0x3, 0x0, 0xb, 0xa, 0xffffffffffffffe2}, @map={0x18, 0xf, 0x1, 0x0, r0}], &(0x7f0000000080)='GPL\x00', 0x20, 0x1000, &(0x7f00000000c0)=""/4096, 0x41000, 0x1, [], 0x0, 0x6, r0, 0x8, &(0x7f00000010c0)={0x8, 0x8}, 0x8, 0x10, &(0x7f0000001140)={0x7ff, 0xffff, 0xffffffff, 0x80000000}, 0x10}, 0x70)

07:26:15 executing program 0:
r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80000, 0x0)
lsetxattr$security_smack_entry(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='security.SMACK64\x00', &(0x7f0000000580)='priority\x00', 0x9, 0x1)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00')
accept4(0xffffffffffffffff, &(0x7f0000000180)=@ll={0x11, 0x0, <r3=>0x0}, &(0x7f0000000200)=0x80, 0x80800)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000240)={'ip_vti0\x00', <r4=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@dev}, 0x0, @in=@multicast2}}, &(0x7f0000000380)=0xe8)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000003c0)={{{@in6, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in=@broadcast}}, &(0x7f00000004c0)=0xe8)
accept$packet(0xffffffffffffff9c, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0}, &(0x7f0000000640)=0x14)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000680)={@rand_addr, <r8=>0x0}, &(0x7f00000006c0)=0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000700)={'veth0\x00', <r9=>0x0})
clock_gettime(0x0, &(0x7f0000002140)={<r10=>0x0, <r11=>0x0})
recvmmsg(0xffffffffffffff9c, &(0x7f00000020c0)=[{{&(0x7f0000000840)=@ll={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f0000000ac0)=[{&(0x7f00000008c0)=""/79, 0x4f}, {&(0x7f0000000940)=""/127, 0x7f}, {&(0x7f00000009c0)=""/200, 0xc8}], 0x3, &(0x7f0000000b00)=""/94, 0x5e}, 0xfffffffffffffff8}, {{&(0x7f0000000b80)=@ax25={{}, [@rose, @rose, @remote, @null, @bcast, @rose, @default, @bcast]}, 0x80, &(0x7f0000001f40)=[{&(0x7f0000000c00)=""/233, 0xe9}, {&(0x7f0000000d00)=""/4096, 0x1000}, {&(0x7f0000001d00)=""/53, 0x35}, {&(0x7f0000001d40)=""/168, 0xa8}, {&(0x7f0000001e00)=""/38, 0x26}, {&(0x7f0000001e40)=""/227, 0xe3}], 0x6, &(0x7f0000001fc0)=""/230, 0xe6}, 0x1a}], 0x2, 0x40, &(0x7f0000002180)={r10, r11+10000000})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002280)={{{@in=@remote, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0}}, {{@in6=@initdev}, 0x0, @in=@empty}}, &(0x7f0000002380)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000002480)={'vcan0\x00', <r14=>0x0})
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000002900)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000028c0)={&(0x7f00000024c0)={0x400, r2, 0x702, 0x70bd25, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x164, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x3}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0xffffffff}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r6}, {0xb8, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r7}}, {0x8}}}]}}, {{0x8, 0x1, r8}, {0x80, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x7bf3}}, {0x8, 0x6, r9}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}]}}, {{0x8, 0x1, r12}, {0x130, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r13}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r14}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x400}, 0x1, 0x0, 0x0, 0x40}, 0x40)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0xfffffffffffffffc})

07:26:15 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x2, 0x46c0)
ioctl(r0, 0x20, &(0x7f0000000100)="da559bb768c132e8417dfa86d0091f4a00968841d14255f2f549197aacba5a94873326650d484bda84d9dc13088dfcd296ff68446054f067f72995b70f6954074ed45daa16ec2f8b62004f40374180a59c62e25dbf6d277dda3f7bdbb3157ed937a6031bf351fbcab422a41c45ea65c7ae70162fd0c8daaa2102ecc42c9115ec83330bb3411837a47b2148ceee06d236d7469cef8caca6acdda196390bd866d59eabd29d585e53d8e09489d28c10c7160fc629379657cc29326933a12288d056b83e7a2739ff226b85d946f227fd70711b586ba27f86e7d0e647c9f1656c")
r1 = syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x1, 0x0)
r2 = dup(r1)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000000)={0x0, 0x2000000013})

07:26:15 executing program 0:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1001, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000002000))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x2000000000000004, &(0x7f0000013ff4)={@local}, 0xc)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x2})
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0)
ioctl$NBD_DISCONNECT(r4, 0xab08)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
dup3(r2, r0, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x24080, 0x0)

07:26:15 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x2, 0x46c0)
ioctl(r0, 0x20, &(0x7f0000000100)="da559bb768c132e8417dfa86d0091f4a00968841d14255f2f549197aacba5a94873326650d484bda84d9dc13088dfcd296ff68446054f067f72995b70f6954074ed45daa16ec2f8b62004f40374180a59c62e25dbf6d277dda3f7bdbb3157ed937a6031bf351fbcab422a41c45ea65c7ae70162fd0c8daaa2102ecc42c9115ec83330bb3411837a47b2148ceee06d236d7469cef8caca6acdda196390bd866d59eabd29d585e53d8e09489d28c10c7160fc629379657cc29326933a12288d056b83e7a2739ff226b85d946f227fd70711b586ba27f86e7d0e647c9f1656c")
r1 = syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x1, 0x0)
r2 = dup(r1)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000000)={0x0, 0x2000000013})

07:26:15 executing program 0:
r0 = socket(0x15, 0x80005, 0x0)
getsockopt(r0, 0x200000000114, 0x2715, 0xffffffffffffffff, &(0x7f0000000080)=0x3a6)
setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4)
r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x8, 0x0)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000040)=0xb1)

07:26:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x18880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f00000000c0)={0x7, 0x5, [{0x9, 0x0, 0x5}, {0x400, 0x0, 0x8}, {0x9c04, 0x0, 0xa1}, {0x1f00, 0x0, 0x5}, {0x9, 0x0, 0x2}, {0x9, 0x0, 0x3}, {0x3ff, 0x0, 0x213}]})
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x100, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@mcast1, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000240)=0xe8)
sendto$packet(r3, &(0x7f0000000040)="929e5e4b4f2949a37d58b2563d1e74adf37f88dcacd7", 0x16, 0x8001, &(0x7f0000000280)={0x11, 0x17, r4, 0x1, 0x4e7, 0x6, @broadcast}, 0x14)

07:26:15 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x18008, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x402000, 0x0)
execveat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000140)='\x00', &(0x7f0000000180)='sysfs\x00'], &(0x7f0000000300)=[&(0x7f0000000200)='\x00', &(0x7f0000000240)=':-user\x00', &(0x7f00000002c0)='sysfs\x00'], 0x1500)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
flistxattr(r1, 0x0, 0x0)

07:26:15 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0xfdff)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20}, 0x1b)
listen(r0, 0x43)
listen(r0, 0x6)
syz_emit_ethernet(0x74, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}}, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1, 0x0)
ioctl$CAPI_NCCI_GETUNIT(r1, 0x80044327, &(0x7f00000000c0)=0x70)
syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x80000001, 0x10040)

[  261.623226] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
07:26:15 executing program 1:
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000806, &(0x7f0000001180)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='sit0\x00', 0x10)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000040)=0xc924, 0x4)
sendto$inet(r0, &(0x7f00000003c0), 0xed5f0dd4, 0x0, 0x0, 0x184)
shutdown(r0, 0x400000000000001)
setsockopt(r0, 0xfb2, 0x9, &(0x7f0000000100)="457032d0079fcd1be99f668d3182c6838bec0c41ee5f6bf25d7c1b5d4b11dec47d4b1490a9df3370aa70e2c3e8b339f590d4d025e0ca824e970582b74c1265345eb393899e94e54fdcebf42dde01fbcd5c3956edbe63643a47b687fb359095bd8626a4f4215e4f93809aba04407cdbadd99087e9a333a6e5abcd6d71148346f636c649c14d9f1b5445f7bb", 0x8b)

07:26:15 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f00000004c0)='NET_DM\x00')
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400000001)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='stat\x00')
preadv(r0, &(0x7f0000000480), 0x1000000000000237, 0x0)

07:26:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x4058534c, &(0x7f0000000140)={0x5, 0x3, 0x7, 0x5, 0x8001, 0x200})
syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="aaa8aa"], 0x0)
fcntl$dupfd(r2, 0x406, r2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffbfffffc)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f000003b000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000040)={&(0x7f0000001000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f000003d000/0x3000)=nil, &(0x7f000004c000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f000003f000/0x3000)=nil, &(0x7f000004a000/0x1000)=nil, &(0x7f0000044000/0x2000)=nil, &(0x7f0000002000/0x1000)=nil, &(0x7f000004d000/0x4000)=nil, 0x0}, 0x68)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  261.923994] syz-executor.1 (10484) used greatest stack depth: 53728 bytes left
07:26:16 executing program 1:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x807, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000140)={0x9, @pix_mp={0x0, 0x0, 0x32314742}})
accept4$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x80000)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', r2})
ioctl$DRM_IOCTL_ADD_BUFS(r1, 0xc0206416, &(0x7f0000000040)={0x0, 0x5, 0x3, 0xfffffffffffff1f5, 0x9})

07:26:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, 0x0)

07:26:16 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f00000000c0)={0x18, 0x0, {0x1, @broadcast, 'ip6_vti0\x00'}}, 0x1e)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x40047452, &(0x7f0000000040)={0x18, 0x4, {0x0, @local, 'ip_vti0\x00\x00\x00\x01\x00\x00\xf9\xff\x00'}})
r1 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, &(0x7f0000000080)=0x1c)
getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=<r2=>0x0, &(0x7f0000000140)=0x4)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000180)={r2, 0x6c, "0b0f083605376bbfb9f1b681892555d5a9da8b34360ed486d8843d83108d4792782820e31f51a680e08df66472b84974d44a3e70f3124f116c90bd58802a5efc0cbab0799660004bd4af8ba48c79a073f2e8a1f630fa082b41d6b5cfec663cb5c882fd441588374c22356684"}, &(0x7f0000000200)=0x74)

07:26:16 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000100), &(0x7f00000000c0)=0xffffff94)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r2 = gettid()
ioprio_set$pid(0x1, r2, 0x3)
r3 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x6, 0x44280)
ioctl$RTC_PIE_ON(r3, 0x7005)
write$binfmt_misc(r0, &(0x7f0000000140)={'syz1', "b983c34e22a4324939f09e328c44c6fa6f6b5a5cca21872dfd7b5c49c7ebcfdb383b9829f7d04f838ff7ad351e911b9367273542bf3b288353f2baa5"}, 0x40)
getsockopt(0xffffffffffffffff, 0x114, 0x2711, 0x0, &(0x7f0000000000))

07:26:16 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f00000004c0)='NET_DM\x00')
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400000001)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='stat\x00')
preadv(r0, &(0x7f0000000480), 0x1000000000000237, 0x0)

07:26:16 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000040)={&(0x7f0000006240)=@newlink={0x3c, 0x10, 0x707, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @ipip6={{0xc, 0x1, 'ip6tnl\x00'}, {0xc, 0x2, [@tunl6_policy=[@IFLA_IPTUN_FLOWINFO={0x8, 0x14}]]}}}]}, 0x3c}}, 0x0)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x20000, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000200)={<r2=>0x0, @in={{0x2, 0x4e20, @empty}}, 0x4, 0x8}, &(0x7f0000000080)=0x90)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f00000000c0)={r2, 0x1200000000000}, &(0x7f0000000140)=0x8)

07:26:17 executing program 1:
r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x34, 0x3)
ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f0000000080)={0xc021})
fchdir(r0)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x32, 0xffffffffffffffff, 0x0)
ioctl$int_out(r0, 0x5461, &(0x7f0000000200))
pread64(r0, &(0x7f00000000c0)=""/241, 0xf1, 0x0)

07:26:17 executing program 2:
r0 = syz_open_dev$swradio(&(0x7f00000002c0)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0xfffffffffffffffb})
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)=<r1=>0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=<r2=>0x0)
kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r0, &(0x7f00000000c0)={r0, r0, 0x5})

07:26:17 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa)
getsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000140), &(0x7f00000001c0)=0x8)
keyctl$get_security(0x11, r1, &(0x7f0000000240)=""/57, 0x39)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000d8e3e7c95c26db966e0a5ac4fc1d9290e4c672b5fc8b2e9fe5bcd096f62c4297d2ca93c14510b0d641e296d2957612954303780f74064b471669993c653956af628aa292f4a1c4c747762df6afee90ca7f0d7b7064a5e37bf6ebbadf270b53d1cb3e9edc0878b4ae5d7418f7837e", @ANYRES32=<r2=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYBLOB="e4ffbfff"], &(0x7f00000000c0)=0x8)

07:26:17 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000d06000)=0x1, 0xc8)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x6, 0x10000)
ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f0000000180)={0x3, &(0x7f0000000100)=[{0x1000}, {0x8, 0xffffffffffffffff, 0x81, 0xd5bc}, {0x5, 0x80000000, 0x5, 0x1}]})
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f00000002c0)={<r2=>0x0, 0x86, "914b6ad8f44c46c25e471b6da9a41cc6c046c337f0c32552fd8b84d8b26a9032e60aabde526f197aa2902ca5df74fd3c66d629a3276b6133012e3d18ea6f90c8cd19fee2ba29843de312d4bb6f385a70563bfedc7de003fcd8194a59bbae5027906bc3c5130de6d3681e78ca2f50d0a93cd21ef29810f7373c5eb474810ad7bd63d1101e5059"}, &(0x7f0000000040)=0x8e)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000380)={r2, 0x5, 0x7a, "39df9039b3d51ae1301e12d268ea83a84d46b91ea99cbd751077e9d270eb9ea68a9062036f225a53aca3904f3c1f987e3f4e4798cf34d85ed1d9f7b74bb74cfa4d75122e816c5bec502e93e90e2d4e37eaa15b2655db7e2a8763fc55626c651823c659f211c62e7918ea8da3837187ae7177cd42d39d952816fa"}, 0x82)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="c3d464c31261c06051854d9c73a6bd6fb98225542f0f2fc6db0cc3382e7755e4da62a062ea32428b6dbef6a5a4d5370d690c6915df5bb0c5e2a4"], 0x1}, 0x0)
sendmmsg(r0, &(0x7f0000000140)=[{{&(0x7f00000001c0)=@l2, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000000200)}}], 0x400001f, 0x0)

07:26:17 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000000), 0x262)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/snmp6\x00')
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendfile(r0, r1, 0x0, 0x88002)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000340)='nbd\x00')
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000440)={&(0x7f0000000300), 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000180)=0x5)
ppoll(&(0x7f0000000400)=[{r0}], 0x1, 0x0, 0x0, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="8d", 0x1}], 0x1)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00')
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r4, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x40, 0x5, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x810}, 0x4)

07:26:17 executing program 2:
setxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.selinux\x00', &(0x7f00000000c0)='system_u:object_r:crond_unit_file_t:s0\x00', 0x27, 0x3)
r0 = socket$inet(0x10, 0x3, 0xc)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
sendmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="24000000030307031dfffd944ef20c0020200a0009000100021d85680c1baba20400ff7e28000000110affff82aba0aa1c0009b356da5a80918b06b20cd37ed01cc000"/76, 0x4c}], 0x1}, 0x0)

07:26:17 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
mincore(&(0x7f0000ffe000/0x2000)=nil, 0x2000, &(0x7f0000000100)=""/59)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  263.383814] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[  263.437527] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
07:26:17 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0xe74})
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={'bridge_slave_1\x00', {0x2, 0x4e20, @loopback}})
sendmmsg(0xffffffffffffffff, &(0x7f0000001e80)=[{{&(0x7f00000002c0)=@in={0x2, 0x4e21, @broadcast}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000fa007407ff160032200000"], 0x18}}], 0x1, 0x0)
sendmmsg(r0, &(0x7f0000000440), 0x400000000000211, 0x0)

07:26:17 executing program 0:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video35\x00', 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x400002, 0x0, 0x0, {0x8, @sdr}})

[  263.649851] capability: warning: `syz-executor.2' uses deprecated v2 capabilities in a way that may be insecure
07:26:17 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x14, 0x31, 0x119, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)

07:26:17 executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x1, 0x6, 0x2, 0x7}, 0x2c)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000000c0)={{{@in, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@local}, 0x0, @in=@dev}}, &(0x7f0000000040)=0xe8)
r2 = syz_open_dev$admmidi(&(0x7f00000001c0)='/dev/admmidi#\x00', 0x1, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0xf, 0x0, 0x9, 0xfff, 0x22, r0, 0x1, [], r1, r2, 0x4, 0x64}, 0x3c)
bpf$MAP_CREATE(0x15, &(0x7f0000000000)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2c)

07:26:18 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
mincore(&(0x7f0000ffe000/0x2000)=nil, 0x2000, &(0x7f0000000100)=""/59)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:18 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000600)={0x2, 0x4e20, @multicast1}, 0x10)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000018c0)='/dev/audio\x00', 0x1, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)={<r2=>0x0, 0x5}, &(0x7f0000001940)=0xab)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000001980)={r2, 0x80000001}, &(0x7f00000019c0)=0x8)
setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r0, 0x111, 0x4, 0x1, 0x4)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20008800, &(0x7f00000000c0)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r0, &(0x7f0000000180)="4e9e1562147aab77cf5b1f5ac4bbddf3a1b17bfaae9d994913c869d8ee8f980aa5a5235655efc8422eedd5e7c53a51dffa6c4642e0e50f330037cb64b98eb991b2b33bcca6", 0x45, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000003a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)

07:26:18 executing program 0:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000100)='\xc9lS\x867\xe6\\&\'xr\x84z', 0x0, &(0x7f0000000200)="e2c3", 0x2, r0)
r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x16fe5bfd, 0x41)
ioctl$TIOCSWINSZ(r1, 0x5414, &(0x7f0000000040)={0x5, 0x552, 0x1, 0x6})

[  264.155536] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
07:26:18 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000340)="0f20d835080000000f22d8410f0174b13764660fdc4f8c0f20c3400fbf370f00145b0f013d897a15332e460f01f8b8010000000f01c166baa100ec", 0x3b}], 0x1, 0xa, &(0x7f00000003c0)=[@cstype3={0x5, 0xd}, @dstype3], 0x2)
ioctl$RTC_WIE_ON(r3, 0x700f)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:18 executing program 3:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80000, 0x0)
ioctl$KDDISABIO(r0, 0x4b37)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000000080)={0x0, 0xb7a, 0x6, &(0x7f0000000040)=0x1000})
syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0x1000, 0x200)
ioctl$ASHMEM_GET_PROT_MASK(r0, 0x7706, &(0x7f0000000100))
ioctl$RTC_RD_TIME(r0, 0x80247009, &(0x7f0000000140))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc4, 0xdc, 0x9, {"989fd49b294190f3ec080879411062190e5444ad5ba62eec5dea6eb9ef36750544c1c4d86cddc855c8de83ffe576dd957d3b16bb0017b102623776b98340111bee3a75672c0c966bc0fe4c9d82410b8c6c8838546debf15af5b9db59674cc1cd0e2271cc3a6f15c8370f21de5dfd1d87f10b5877009598b708302a362850560773779e251d454f5da9c42dfcda676ebedfa7f3385a2ad98c6756265244a3faede58d23c7c593c3910f311f3a7c6bb7a13429135a9a81ae9fb4deb7f4af33d7ab32f4"}}, {0x0, "a8778f7ee074e5fc32aa212d9df249829663a88ec6c795e968990635e6aeb113d0696ba49e399c8c36870693785962cc04df72bbd6a773268321e583ea7d4a0fb5d7d2ab6962b01a91968725d5c30cf68fd16a2b78954ec567247fe4a23d04b670fd5e0a49c9978c46a73eb8a4235a3db651ee666f4d4ed2f12277297ca39157ef3c94750c0c5fab4b08716b8e783e2c23959efc9eb6777e051393e89b8458c848e529b699661be2e31dc381282da025d4f0106a43041e4eb38d7d8fc64cc04daf5c6e34b3c34f5ab2be2d9c9dd24a1dbd9d0b8dec60e9980f362384f82e33a1aa7bf9a0e797f2ef13162e5a8baf575dc5e4f8d23590"}}, &(0x7f0000000380)=""/213, 0x1d4, 0xd5, 0x1}, 0x20)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000001600)={0x53, 0xfffffffffffffffb, 0x4d, 0x1f, @buffer={0x0, 0x1000, &(0x7f00000004c0)=""/4096}, &(0x7f00000014c0)="ae5fa4bcae40a1885dc1d508ed15eccccb96466068dd2fc6393178311a5d457598b95f8ddb9b0776aed7b59fc0d467966c8394ad20af73248b9038982a313665e539af9eb43ed8633c4646ed21", &(0x7f0000001540)=""/71, 0x683, 0x10, 0x3, &(0x7f00000015c0)})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000001680)={<r1=>0x0, 0x5cf1}, &(0x7f00000016c0)=0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000001700)={r1, 0x8ab9}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000001740)={r1, 0x4}, &(0x7f0000001780)=0x8)
symlinkat(&(0x7f00000017c0)='./file0\x00', r0, &(0x7f0000001800)='./file0\x00')
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000001840)={<r2=>r1, 0x2}, &(0x7f0000001880)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000018c0)={r2, 0x80, 0xb3df, 0xfff}, 0x10)
recvfrom(r0, &(0x7f0000001900)=""/87, 0x57, 0x40000000, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000001980)={r2, 0x0, 0x400, 0x2, 0x0, 0x10001}, 0x14)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0)
ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f00000019c0)={0x7, 0x1, 0x1f, 0x53ee})
ioctl$UI_DEV_CREATE(r0, 0x5501)
r3 = syz_open_dev$usb(&(0x7f0000001a00)='/dev/bus/usb/00#/00#\x00', 0x2, 0x8000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000001a40)={r2, 0x1}, &(0x7f0000001a80)=0x8)
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000001ac0))
setsockopt$RDS_GET_MR(r3, 0x114, 0x2, &(0x7f0000001c40)={{&(0x7f0000001b00)=""/254, 0xfe}, &(0x7f0000001c00), 0x27}, 0x20)
ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000001c80)={0x2, 0x1, [0xb67, 0x1, 0x20, 0x7, 0x2, 0x4, 0x3ff, 0xfff]})
syslog(0xb, &(0x7f0000001cc0)=""/63, 0x3f)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r3, 0xc008551c, &(0x7f0000001d00)={0x1f, 0x10, [0xffffffff80000000, 0x1, 0x8000, 0x1]})
socket$pptp(0x18, 0x1, 0x2)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0xa46)
ioctl$VT_WAITACTIVE(r0, 0x5607)
syslog(0xf, &(0x7f0000001d40)=""/145, 0x91)

07:26:18 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
mincore(&(0x7f0000ffe000/0x2000)=nil, 0x2000, &(0x7f0000000100)=""/59)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  264.456937] *** Guest State ***
[  264.460361] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  264.469385] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  264.478405] CR3 = 0x0000000000000000
[  264.482217] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  264.488325] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  264.494482] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  264.501256] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  264.509473] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.517624] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.525758] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.533872] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.542438] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.550470] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  264.558579] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  264.566672] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  264.574799] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  264.582874] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  264.589331] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  264.596928] Interruptibility = 00000000  ActivityState = 00000000
[  264.603249] *** Host State ***
07:26:18 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r2, 0xc0205647, &(0x7f00000000c0)={0xfffffff, 0x97, 0x4, [], &(0x7f0000000080)={0xbf0b7f, 0x7, [], @p_u8=&(0x7f0000000000)=0x1}})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, 0x0)

[  264.606490] RIP = 0xffffffff81312160  RSP = 0xffff888051d8f398
[  264.612667] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  264.619125] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  264.627060] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  264.633051] CR0=0000000080050033 CR3=0000000051176000 CR4=00000000001426f0
[  264.640157] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  264.646939] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  264.653120] *** Control State ***
[  264.656618] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  264.663452] EntryControls=0000d1ff ExitControls=002fefff
[  264.669003] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  264.676043] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  264.682844] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  264.689541]         reason=80000021 qualification=0000000000000000
[  264.695968] IDTVectoring: info=00000000 errcode=00000000
[  264.701503] TSC Offset = 0xffffff6eb48ae3e7
[  264.705918] TPR Threshold = 0x00
[  264.709321] EPT pointer = 0x000000005100601e
[  264.838956] *** Guest State ***
[  264.842575] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  264.851457] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  264.860485] CR3 = 0x0000000000000000
[  264.864291] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  264.870320] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  264.876445] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  264.883229] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  264.891249] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.899450] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.907520] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.922746] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.930765] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  264.938855] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  264.946938] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  264.955018] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  264.963091] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  264.971089] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  264.977615] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  264.985149] Interruptibility = 00000000  ActivityState = 00000000
[  264.991397] *** Host State ***
[  264.994703] RIP = 0xffffffff81312160  RSP = 0xffff888051d8f398
[  265.000726] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  265.007264] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  265.015163] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  265.021092] CR0=0000000080050033 CR3=0000000051176000 CR4=00000000001426f0
[  265.028236] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  265.035015] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  265.041120] *** Control State ***
[  265.044660] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  265.051357] EntryControls=0000d1ff ExitControls=002fefff
[  265.056954] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  265.063991] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  265.070690] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  265.077399]         reason=80000021 qualification=0000000000000000
[  265.083796] IDTVectoring: info=00000000 errcode=00000000
[  265.089269] TSC Offset = 0xffffff6e817db926
[  265.093720] TPR Threshold = 0x00
[  265.097117] EPT pointer = 0x000000004def601e
07:26:19 executing program 2:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r1 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000000)={0x1, 0x7, 0x0, 0x9}, 0x8)
fcntl$setlease(r2, 0x400, 0x0)
renameat2(r1, &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f0000000280)='./file0\x00', 0x2)

07:26:19 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
mincore(&(0x7f0000ffe000/0x2000)=nil, 0x2000, &(0x7f0000000100)=""/59)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:19 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000340)="0f20d835080000000f22d8410f0174b13764660fdc4f8c0f20c3400fbf370f00145b0f013d897a15332e460f01f8b8010000000f01c166baa100ec", 0x3b}], 0x1, 0xa, &(0x7f00000003c0)=[@cstype3={0x5, 0xd}, @dstype3], 0x2)
ioctl$RTC_WIE_ON(r3, 0x700f)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:19 executing program 2:
unshare(0x8000000)
getsockopt$inet_sctp6_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000100), &(0x7f0000000140)=0x4)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffff9c, 0x84, 0x14, &(0x7f0000000040)=@assoc_value={<r0=>0x0}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={r0, 0x5}, 0x8)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uinput\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x4)
getresgid(&(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)=<r1=>0x0)
setgid(r1)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0xc)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r2, 0xae44, 0x2)

[  265.483396] *** Guest State ***
[  265.486872] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  265.495911] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  265.504913] CR3 = 0x0000000000000000
[  265.508659] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  265.514829] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  265.520852] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  265.527677] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  265.535788] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  265.543930] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  265.552023] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  265.560535] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  265.568673] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  265.576762] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  265.584900] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  265.593011] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  265.601029] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  265.609165] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  265.615755] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  265.623358] Interruptibility = 00000000  ActivityState = 00000000
[  265.629618] *** Host State ***
[  265.632955] RIP = 0xffffffff81312160  RSP = 0xffff88804c4cf398
[  265.638977] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  265.645533] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  265.653432] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  265.659363] CR0=0000000080050033 CR3=000000004fc9d000 CR4=00000000001426e0
[  265.666524] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  265.674278] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  265.680407] *** Control State ***
[  265.683977] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  265.690714] EntryControls=0000d1ff ExitControls=002fefff
[  265.696274] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  265.703379] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  265.710137] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  265.716830]         reason=80000021 qualification=0000000000000000
[  265.723321] IDTVectoring: info=00000000 errcode=00000000
[  265.728812] TSC Offset = 0xffffff6e2b74a1ca
07:26:19 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  265.733262] TPR Threshold = 0x00
[  265.736730] EPT pointer = 0x000000004b77501e
07:26:19 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f3188b070")
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
close(r1)
r4 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0xfffffffffffffffd)
msync(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_ASSIGN_DEV_IRQ(r4, 0x4040ae70, &(0x7f0000000040)={0x0, 0xfffffffffffffffe, 0x4, 0x200})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)

07:26:20 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000340)="0f20d835080000000f22d8410f0174b13764660fdc4f8c0f20c3400fbf370f00145b0f013d897a15332e460f01f8b8010000000f01c166baa100ec", 0x3b}], 0x1, 0xa, &(0x7f00000003c0)=[@cstype3={0x5, 0xd}, @dstype3], 0x2)
ioctl$RTC_WIE_ON(r3, 0x700f)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  265.967063] IPVS: ftp: loaded support on port[0] = 21
07:26:20 executing program 2:
r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x5, 0x202)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000200)=0x3)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000180)='./file1\x00'}, 0x368)
r1 = add_key$user(&(0x7f0000000640)='user\x00', &(0x7f0000000540)={'syz'}, &(0x7f00000000c0), 0xc6, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r1, r1, r1}, &(0x7f0000000040)=""/29, 0x1d, &(0x7f0000000240)={&(0x7f00000001c0)={'rmd128\x00'}})
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000680)={{{@in6=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@empty}, 0x0, @in6=@empty}}, &(0x7f0000000100)=0xe8)
ioctl$EVIOCGABS2F(r0, 0x8018456f, &(0x7f0000000580)=""/68)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000140)={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, r3}, 0xc)

[  266.196824] *** Guest State ***
[  266.200262] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  266.209320] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  266.218355] CR3 = 0x0000000000000000
[  266.222192] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  266.228200] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  266.234339] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  266.241122] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  266.249268] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  266.257397] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  266.265539] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  266.273631] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  266.281655] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  266.289816] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  266.289853] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
07:26:20 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  266.289880] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  266.289915] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  266.289937] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  266.289959] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  266.289979] Interruptibility = 00000000  ActivityState = 00000000
[  266.289989] *** Host State ***
[  266.290014] RIP = 0xffffffff81312160  RSP = 0xffff88804a26f398
[  266.290055] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  266.290084] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  266.290109] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  266.290138] CR0=0000000080050033 CR3=000000004ac3d000 CR4=00000000001426e0
[  266.290170] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  266.290193] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  266.290202] *** Control State ***
[  266.290225] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  266.290242] EntryControls=0000d1ff ExitControls=002fefff
[  266.290273] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  266.290314] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  266.290341] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  266.290367]         reason=80000021 qualification=0000000000000000
[  266.290391] IDTVectoring: info=00000000 errcode=00000000
[  266.290413] TSC Offset = 0xffffff6dc6b52ba0
[  266.290434] TPR Threshold = 0x00
[  266.290456] EPT pointer = 0x0000000049aac01e
[  266.342365] chnl_net:caif_netlink_parms(): no params data found
[  266.469985] bridge0: port 1(bridge_slave_0) entered blocking state
[  266.470142] bridge0: port 1(bridge_slave_0) entered disabled state
[  266.471948] device bridge_slave_0 entered promiscuous mode
[  266.483994] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.484150] bridge0: port 2(bridge_slave_1) entered disabled state
[  266.485853] device bridge_slave_1 entered promiscuous mode
[  266.526040] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  266.529144] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  266.753837] team0: Port device team_slave_0 added
[  266.775058] team0: Port device team_slave_1 added
[  266.866297] device hsr_slave_0 entered promiscuous mode
[  266.924555] device hsr_slave_1 entered promiscuous mode
[  266.986879] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.993503] bridge0: port 2(bridge_slave_1) entered forwarding state
[  267.000594] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.007189] bridge0: port 1(bridge_slave_0) entered forwarding state
[  267.088664] 8021q: adding VLAN 0 to HW filter on device bond0
[  267.107505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  267.118518] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.148724] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.175666] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  267.264667] 8021q: adding VLAN 0 to HW filter on device team0
[  267.334127] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  267.342572] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  267.350542] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.357064] bridge0: port 1(bridge_slave_0) entered forwarding state
[  267.365131] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  267.373415] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  267.381374] bridge0: port 2(bridge_slave_1) entered blocking state
[  267.387894] bridge0: port 2(bridge_slave_1) entered forwarding state
[  267.396066] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  267.433576] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  267.443416] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  267.481877] 8021q: adding VLAN 0 to HW filter on device batadv0
[  267.504301] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  267.513353] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  267.521935] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  267.530271] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  267.539626] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  267.548133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  267.556223] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  267.565178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  267.573354] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  267.584230] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  267.592170] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
07:26:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xa7)
r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x10000, 0x80000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={<r2=>0x0, 0x50, &(0x7f0000000040)=[@in={0x2, 0x4e21, @local}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x23}}, @in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e21, @rand_addr=0x3}, @in={0x2, 0x4e23, @multicast2}]}, &(0x7f0000000140)=0x10)
getpeername$packet(r1, &(0x7f00000001c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14)
flock(r0, 0x0)
sendmsg$can_raw(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x1d, r3}, 0x10, &(0x7f00000002c0)={&(0x7f0000000280)=@can={{0x4, 0x9, 0x9, 0x5}, 0x8, 0x1, 0x0, 0x0, "65721330921e7dcb"}, 0x10}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000180)={r2, 0x8001, 0x8001}, 0x8)
openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/attr/current\x00', 0x2, 0x0)

07:26:22 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000340)="0f20d835080000000f22d8410f0174b13764660fdc4f8c0f20c3400fbf370f00145b0f013d897a15332e460f01f8b8010000000f01c166baa100ec", 0x3b}], 0x1, 0xa, &(0x7f00000003c0)=[@cstype3={0x5, 0xd}, @dstype3], 0x2)
ioctl$RTC_WIE_ON(r3, 0x700f)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:22 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:22 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000480)={@multicast2, @dev={0xac, 0x14, 0x14, 0x1b}, @local}, 0xc)
r1 = socket(0x10, 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000140)='net/mcfilter\x00')
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='sit0\x00', 0x10)
sendfile(r1, r2, &(0x7f0000000080)=0x32, 0x14a)

07:26:22 executing program 3:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x50280, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000440)={0x3, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {<r1=>0x0}, {}, {}]})
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x101001, 0x0)
write$UHID_DESTROY(r0, &(0x7f0000000280), 0x4)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f00000002c0)=0x5, 0x4)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000180)={<r3=>0x0, 0xb4b}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000200)=@assoc_value={r3, 0xc63}, &(0x7f0000000240)=0x8)
ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000140)={r1, 0x3})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x2, 0xfffffffffffffffa, 0xffffffffffffff43, 0x6, 0x6}, &(0x7f0000000100)=0x14)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040)=0x774c)
seccomp(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000580)=[{0x1000006c}, {0x6}]})

[  268.207012] *** Guest State ***
[  268.210489] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  268.219576] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  268.228515] CR3 = 0x0000000000000000
[  268.232335] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  268.238348] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  268.244435] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  268.251192] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  268.259294] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.267410] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.275512] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.283611] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.291638] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:22 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000380)='exofs\x00\xb4?\xea\xb3+\xabd{<\xcc\x9a\x83\t\x04\xc3L\xb0y\xfc\xed\x95\x99\x17\xffa\xc0\"^\x0f\xba\xf1\x14\xadW+\xd8[\xff\v\x1c6\xdb\x12\xd3\xb8rN\x95\xe2\xf1\vI\xde\x00K\x1c\x9a\xdaqx.2\xb3\x91\xe0D\x00\xbbK[sC\xce$\xcc\xac\x990\xc5\xcaX\xad\x89\x02\xbe0\x15\x87\x05\xf9W\xc9bE\xb3\x9a\x92=\xd8\xeb\x8dz(\x8c\x95a\xefk\x00yim\xd0)\xd7*g\xf0\x87\x94g\xa6\xa2\x8dHe\xf3\x83g\x82\r\xff\x05\xdb\x06d\x8d\x0f\x99A50\x83\xf4\xfb\x98d\xbbs\x93\x03Gm\x86\xbd\vaK\x18R\x9e6\n\xb5\xce\xa8k\xa1td\x8c5\xb3\x9c\xcf\xeaUk\x12\xa5\xac\xc3\x95\xa5\x89\nnd\xe6\xb7\xf6\xf5\x8a\xcb|_\xca\xc0\x0e\xf8\x9a\"\x86\xa7\x8bL\xdaD\x13\x0f\v\x9a\xd9-\x0faA\x9d g\x1fas_=\x05\xefn\xd3EP\xa3\xdf', 0x8000, 0x0)
mkdir(&(0x7f00000001c0)='./file1\x00', 0x0)
poll(0x0, 0x0, 0x400007e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
rename(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340)='./file0\x00')

[  268.299731] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  268.307806] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  268.315909] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  268.324021] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  268.332102] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  268.338584] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  268.346270] Interruptibility = 00000000  ActivityState = 00000000
[  268.352650] *** Host State ***
[  268.355884] RIP = 0xffffffff81312160  RSP = 0xffff88808a99f398
[  268.362045] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  268.368493] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  268.376446] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  268.382455] CR0=0000000080050033 CR3=000000004b70e000 CR4=00000000001426e0
[  268.389519] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  268.396371] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  268.402540] *** Control State ***
[  268.406035] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  268.413056] EntryControls=0000d1ff ExitControls=002fefff
[  268.418551] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  268.425636] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  268.432433] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  268.439044]         reason=80000021 qualification=0000000000000000
[  268.445536] IDTVectoring: info=00000000 errcode=00000000
[  268.451020] TSC Offset = 0xffffff6cb3312a54
[  268.455497] TPR Threshold = 0x00
[  268.458947] EPT pointer = 0x00000000a581c01e
07:26:22 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000340)="0f20d835080000000f22d8410f0174b13764660fdc4f8c0f20c3400fbf370f00145b0f013d897a15332e460f01f8b8010000000f01c166baa100ec", 0x3b}], 0x1, 0xa, &(0x7f00000003c0)=[@cstype3={0x5, 0xd}, @dstype3], 0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  268.539162] kauditd_printk_skb: 3 callbacks suppressed
[  268.539194] audit: type=1326 audit(1554794782.596:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10646 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45b11a code=0x0
[  268.681147] *** Guest State ***
[  268.684882] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  268.693892] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  268.702830] CR3 = 0x0000000000000000
[  268.706571] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  268.712630] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  268.718639] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  268.725475] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  268.734012] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.742113] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.750126] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.758267] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.766400] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  268.774464] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  268.782551] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  268.790641] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  268.798717] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  268.807575] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  268.814082] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  268.821562] Interruptibility = 00000000  ActivityState = 00000000
[  268.827907] *** Host State ***
[  268.831134] RIP = 0xffffffff81312160  RSP = 0xffff8880ac00f398
[  268.837239] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  268.843776] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  268.851603] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  268.857622] CR0=0000000080050033 CR3=000000004b70e000 CR4=00000000001426f0
[  268.864731] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  268.871437] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  268.877619] *** Control State ***
[  268.881110] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  268.887901] EntryControls=0000d1ff ExitControls=002fefff
[  268.893447] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  268.900406] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  268.907192] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  268.913865]         reason=80000021 qualification=0000000000000000
[  268.920212] IDTVectoring: info=00000000 errcode=00000000
[  268.925796] TSC Offset = 0xffffff6c71ab4d4b
07:26:23 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  268.930144] TPR Threshold = 0x00
[  268.933626] EPT pointer = 0x0000000093a8a01e
07:26:23 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  269.169705] *** Guest State ***
[  269.173386] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  269.182499] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  269.191356] CR3 = 0x0000000000000000
[  269.195164] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  269.201160] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  269.207257] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  269.214076] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  269.222158] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.230165] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.238310] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.246417] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.254495] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.262563] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  269.270574] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  269.278644] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  269.286722] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  269.294838] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  269.301287] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  269.308928] Interruptibility = 00000000  ActivityState = 00000000
[  269.315255] *** Host State ***
[  269.318497] RIP = 0xffffffff81312160  RSP = 0xffff88808b2df398
[  269.324729] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  269.331181] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  269.339132] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  269.345118] CR0=0000000080050033 CR3=000000004b70e000 CR4=00000000001426e0
[  269.352274] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  269.359035] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  269.365281] *** Control State ***
[  269.368863] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  269.375639] EntryControls=0000d1ff ExitControls=002fefff
[  269.381187] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  269.387881] audit: type=1326 audit(1554794783.436:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10646 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45b11a code=0x0
[  269.388234] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  269.417616] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  269.424338]         reason=80000021 qualification=0000000000000000
[  269.430684] IDTVectoring: info=00000000 errcode=00000000
[  269.436324] TSC Offset = 0xffffff6c2efd89f9
[  269.440672] TPR Threshold = 0x00
[  269.444168] EPT pointer = 0x00000000ac8d501e
07:26:23 executing program 3:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x50280, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000440)={0x3, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {<r1=>0x0}, {}, {}]})
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x101001, 0x0)
write$UHID_DESTROY(r0, &(0x7f0000000280), 0x4)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f00000002c0)=0x5, 0x4)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000180)={<r3=>0x0, 0xb4b}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000200)=@assoc_value={r3, 0xc63}, &(0x7f0000000240)=0x8)
ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000140)={r1, 0x3})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x2, 0xfffffffffffffffa, 0xffffffffffffff43, 0x6, 0x6}, &(0x7f0000000100)=0x14)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040)=0x774c)
seccomp(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000580)=[{0x1000006c}, {0x6}]})

07:26:23 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000240)="b22fd6495b81f2340252d652b0a33a7dc0028bb2db4b3ef889920aa10f88c6")
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000000)={{0x80}, 'port0\x00'})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000100)={{0x20000000000080}, '\nL\xea\xa0]\xad\x12n\x00\x00\x00\x02\xa1V\x9b?\xd4\xce\xc3\a\xe8\xef=\x13\xeby\x0e\xc9\xc6Z\xba\xf9\r\"\x9d\xb6\x92T.[x\xf8\xb2\x9e\n\'\x80\x0f\x00\x00\x00\x00\x00\x00\x00\t\xfbB\xd5vX\x97\x01\xa4', 0x76, 0x10000a})
close(r2)

[  269.638761] audit: type=1326 audit(1554794783.696:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10671 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45b11a code=0x0
07:26:23 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:23 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:23 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  269.937389] *** Guest State ***
[  269.940812] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  269.949791] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  269.958762] CR3 = 0x0000000000000000
[  269.962587] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  269.968588] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  269.974704] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  269.981477] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  269.983645] *** Guest State ***
[  269.989568] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.989606] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  269.993193] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  270.000949] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.008989] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  270.009004] CR3 = 0x0000000000000000
[  270.009020] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  270.009041] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  270.009065] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  270.009091] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  270.009127] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.009158] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.009190] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.009221] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.009249] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.009271] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  270.009300] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  270.009332] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  270.009359] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  270.009378] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  270.009400] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  270.009418] Interruptibility = 00000000  ActivityState = 00000000
[  270.009442] *** Host State ***
[  270.018378] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.018412] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.018435] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  270.018465] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  270.018489] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  270.018531] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  270.026599] RIP = 0xffffffff81312160  RSP = 0xffff88808b49f398
[  270.035432] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  270.035458] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  270.039181] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  270.045182] Interruptibility = 00000000  ActivityState = 00000000
[  270.045199] *** Host State ***
[  270.051178] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  270.057876] RIP = 0xffffffff81312160  RSP = 0xffff88808a99f398
[  270.057917] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  270.065997] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  270.073961] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  270.073990] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  270.082027] CR0=0000000080050033 CR3=00000000aa781000 CR4=00000000001426e0
[  270.089999] CR0=0000000080050033 CR3=000000004c7c8000 CR4=00000000001426f0
[  270.098072] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  270.106033] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  270.106061] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  270.114165] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  270.122155] *** Control State ***
[  270.122176] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  270.122201] EntryControls=0000d1ff ExitControls=002fefff
[  270.130144] *** Control State ***
[  270.130173] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  270.138175] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  270.138202] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  270.144654] EntryControls=0000d1ff ExitControls=002fefff
[  270.152136] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  270.152162]         reason=80000021 qualification=0000000000000000
[  270.158389] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  270.161585] IDTVectoring: info=00000000 errcode=00000000
[  270.169605] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  270.177600] TSC Offset = 0xffffff6bc53edc25
[  270.177620] TPR Threshold = 0x00
[  270.185644] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  270.193639] EPT pointer = 0x000000008a83601e
[  270.421904]         reason=80000021 qualification=0000000000000000
[  270.428259] IDTVectoring: info=00000000 errcode=00000000
[  270.433848] TSC Offset = 0xffffff6bc07a4dd5
[  270.438197] TPR Threshold = 0x00
[  270.441590] EPT pointer = 0x00000000a7bc201e
07:26:24 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x80000000000a01, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240))
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x10})
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f0000000680)=[{&(0x7f0000000000)=""/60, 0xfffffd19}], 0x10000000000002f4)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x6})
read(r1, &(0x7f0000000100)=""/19, 0xfffffd81)

07:26:24 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:24 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:24 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video36\x00', 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_S_CROP(r1, 0xc038563c, &(0x7f0000000140)={0x1, 0x0, {0x5, 0x5, 0x3, 0xffffffffffffffff}})
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff})
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e0000002a000500d25a80648c63940d0300fc001000024002000000053582c137153e370900018000f01700d1bd", 0x2e}], 0x1}, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000180)={<r3=>0x0})
ioctl$DRM_IOCTL_DMA(r2, 0xc0406429, &(0x7f00000002c0)={r3, 0x7, &(0x7f00000001c0)=[0x40, 0x6, 0xa, 0x0, 0x3, 0x80, 0x0], &(0x7f0000000200)=[0xffffffffffff5c39], 0x2, 0x8, 0x5, &(0x7f0000000240)=[0x80000001, 0x4, 0x200, 0x4, 0x9, 0xb9, 0x0, 0xc6cc], &(0x7f0000000280)=[0x2, 0x1, 0xfffffffffffffffd, 0x4900, 0xd3, 0x5]})

[  270.849966] *** Guest State ***
[  270.853539] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  270.862523] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  270.871389] CR3 = 0x0000000000000000
[  270.875240] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  270.881295] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  270.887455] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  270.894294] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  270.902450] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.910470] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.918603] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.918750] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.3'.
[  270.926872] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.943584] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  270.951597] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  270.959751] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  270.967886] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  270.976065] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  270.984163] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  270.990606] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  270.998225] Interruptibility = 00000000  ActivityState = 00000000
[  271.004561] *** Host State ***
[  271.007790] RIP = 0xffffffff81312160  RSP = 0xffff88808a99f398
[  271.013981] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  271.020429] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  271.028403] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  271.034430] CR0=0000000080050033 CR3=00000000a7925000 CR4=00000000001426e0
[  271.041489] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  271.048290] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  271.054458] *** Control State ***
[  271.057951] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  271.064952] EntryControls=0000d1ff ExitControls=002fefff
[  271.070444] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  271.072120] *** Guest State ***
[  271.077486] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  271.077509] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  271.077528]         reason=80000021 qualification=0000000000000000
[  271.077547] IDTVectoring: info=00000000 errcode=00000000
[  271.077563] TSC Offset = 0xffffff6b48e24589
[  271.077586] TPR Threshold = 0x00
[  271.080884] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  271.087601] EPT pointer = 0x000000004c77e01e
[  271.127390] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  271.138433] CR3 = 0x0000000000000000
[  271.142291] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  271.148334] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  271.154438] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  271.161147] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  271.169262] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.177359] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.184314] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.3'.
[  271.185476] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.202049] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.210070] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.218162] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  271.226230] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  271.234342] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  271.242421] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  271.250422] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  271.256956] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  271.264490] Interruptibility = 00000000  ActivityState = 00000000
[  271.270737] *** Host State ***
[  271.274065] RIP = 0xffffffff81312160  RSP = 0xffff88808b49f398
[  271.280084] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  271.286616] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  271.294510] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  271.300495] CR0=0000000080050033 CR3=00000000a1f73000 CR4=00000000001426f0
[  271.307614] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  271.314419] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  271.320812] *** Control State ***
[  271.326699] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  271.333468] EntryControls=0000d1ff ExitControls=002fefff
[  271.339029] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
07:26:25 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:25 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  271.346050] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  271.352835] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  271.359446]         reason=80000021 qualification=0000000000000000
[  271.365878] IDTVectoring: info=00000000 errcode=00000000
[  271.371367] TSC Offset = 0xffffff6b2a53afc7
[  271.375814] TPR Threshold = 0x00
[  271.379201] EPT pointer = 0x000000008b4b901e
07:26:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaa7aaaa00000000db000000000000000000ffffe0"], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = shmget$private(0x0, 0x1000, 0x1000, &(0x7f000000e000/0x1000)=nil)
shmctl$IPC_RMID(r4, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)={0x0, 0x119000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd9c)
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2f9d, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
pkey_alloc(0x0, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  271.601518] *** Guest State ***
[  271.605075] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  271.614181] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  271.623122] CR3 = 0x0000000000000000
[  271.626950] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  271.633026] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  271.639086] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  271.645911] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  271.654030] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.662161] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.670171] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.678259] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  271.686360] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:25 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  271.694486] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  271.702587] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  271.710601] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  271.718693] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  271.726770] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  271.733278] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  271.740826] Interruptibility = 00000000  ActivityState = 00000000
[  271.747241] *** Host State ***
[  271.750510] RIP = 0xffffffff81312160  RSP = 0xffff88808bdff398
[  271.756613] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  271.763162] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  271.771000] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  271.777028] CR0=0000000080050033 CR3=00000000a12a5000 CR4=00000000001426e0
[  271.784176] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  271.790923] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  271.797083] *** Control State ***
07:26:25 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  271.800572] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  271.807415] EntryControls=0000d1ff ExitControls=002fefff
[  271.812991] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  271.819993] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  271.826775] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  271.833526]         reason=80000021 qualification=0000000000000000
[  271.839921] IDTVectoring: info=00000000 errcode=00000000
[  271.845481] TSC Offset = 0xffffff6ae1faa1f1
[  271.849875] TPR Threshold = 0x00
[  271.853354] EPT pointer = 0x0000000049bbe01e
[  271.895599] kvm: emulating exchange as write
[  272.036474] *** Guest State ***
[  272.039851] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  272.048979] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  272.057921] CR3 = 0x0000000000000000
[  272.061666] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  272.067816] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  272.073911] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  272.080702] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  272.088853] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.096950] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.105081] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.113187] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.121206] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:26 executing program 3:
r0 = memfd_create(&(0x7f0000000100)='-vmnet0\',^]$\x00', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000240)='/dev/snd/seq\x00', 0x0, 0x20000057d)
r2 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
r3 = dup2(r1, r0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00'})
socketpair$unix(0x1, 0x20000000001, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$VIDIOC_DQEVENT(r3, 0x80885659, &(0x7f00000004c0))
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000200)={0x0, <r6=>0x0}, &(0x7f00000002c0)=0xc)
fstat(r5, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
fstat(r2, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000300)={0x0, <r9=>0x0}, &(0x7f0000000680)=0xc)
lstat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000780)={0x0, 0x0, <r11=>0x0}, &(0x7f00000007c0)=0xc)
r12 = getgid()
lstat(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
fsetxattr$system_posix_acl(r0, &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f00000008c0)={{}, {0x1, 0x7}, [{0x2, 0x2, r6}, {0x2, 0x0, r7}, {0x2, 0x4, r8}, {0x2, 0x2, r9}], {0x4, 0x1}, [{0x8, 0x7, r10}, {0x8, 0x0, r11}, {0x8, 0x1, r12}, {0x8, 0x2, r13}], {0x10, 0x1}, {0x20, 0x2}}, 0x64, 0x3)
r14 = userfaultfd(0x0)
setsockopt$inet_buf(r3, 0x0, 0x3e, &(0x7f00000003c0)="6c82d2693fc08f7a211aedb4e57490c7de002e9d987b3620ae5658f3e9ff974e59131daf9378d0f1aab2af7ae43d2849c823adcdd5fc1fadcc0c2907e4f21850c22a5b8a45facde52f0d878578a803317b917de26fc6a2de8cf513f4f22b791c6d0a98a1f3a88fad38e6a724670f802d710cc7aeabb9bdf05c40ab856f38efb965122c02d71d76fa1e68f5a5e907a3306a9db4b90587f78d494f92a4bb7a02664a7d4518536b00dfba68d79279ca1124c67cea9128d23b4f6119c08ca0238480b99c58343768d4476b0d90eea4f95bbc626dbc13be29ecacc1542b8d2be697043b2ac340bdfa8e535139f20dbaf8ab819ec67139", 0xf4)
ioctl$UFFDIO_API(r14, 0xc018aa3f, &(0x7f0000000000))
write$P9_RLINK(r3, &(0x7f0000000000)={0x7}, 0x285)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000340)={0x23e})
ioctl$KVM_DEASSIGN_PCI_DEVICE(r3, 0x4040ae72, &(0x7f0000000040)={0x3, 0xe15, 0x8, 0x2, 0x80000001})

[  272.129346] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  272.137452] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  272.145585] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  272.153665] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  272.161670] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  272.168243] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  272.175818] Interruptibility = 00000000  ActivityState = 00000000
[  272.182175] *** Host State ***
[  272.185483] RIP = 0xffffffff81312160  RSP = 0xffff88808863f398
[  272.191608] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  272.198144] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  272.206104] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  272.212100] CR0=0000000080050033 CR3=000000004c77b000 CR4=00000000001426e0
[  272.219155] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  272.225943] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  272.232088] *** Control State ***
[  272.235572] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  272.242386] EntryControls=0000d1ff ExitControls=002fefff
[  272.247879] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  272.254918] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  272.261620] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  272.268312]         reason=80000021 qualification=0000000000000000
[  272.274750] IDTVectoring: info=00000000 errcode=00000000
[  272.280230] TSC Offset = 0xffffff6aa5bc76bc
[  272.284641] TPR Threshold = 0x00
[  272.288032] EPT pointer = 0x00000000a4a2701e
07:26:26 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  272.510030] *** Guest State ***
[  272.513683] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  272.522770] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  272.531635] CR3 = 0x0000000000000000
[  272.535497] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  272.541562] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  272.547653] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  272.554539] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  272.562621] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.570683] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.579520] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.587664] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.595757] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.603869] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  272.611951] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  272.620012] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  272.628098] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  272.636200] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  272.642709] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  272.650186] Interruptibility = 00000000  ActivityState = 00000000
[  272.656545] *** Host State ***
[  272.659842] RIP = 0xffffffff81312160  RSP = 0xffff8880a10df398
[  272.665932] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  272.672473] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  272.680317] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  272.686379] CR0=0000000080050033 CR3=00000000a548f000 CR4=00000000001426f0
[  272.693507] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  272.700258] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  272.706414] *** Control State ***
[  272.709947] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  272.716709] EntryControls=0000d1ff ExitControls=002fefff
[  272.722290] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  272.729277] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  272.736114] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  272.742799]         reason=80000021 qualification=0000000000000000
[  272.749158] IDTVectoring: info=00000000 errcode=00000000
[  272.754747] TSC Offset = 0xffffff6a64ee99dd
07:26:26 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:26 executing program 3:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$unix(0x1, 0x801, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r2, 0x0)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x410100, 0x0)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000180)=0x1, 0xfffffffffffffe08)
connect(r1, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x9)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x10, &(0x7f0000000080)={&(0x7f0000000000)=""/102, 0x66, <r4=>0xffffffffffffffff}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=r4, 0x4)

07:26:26 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  272.759191] TPR Threshold = 0x00
[  272.762656] EPT pointer = 0x000000008a87401e
[  272.917095] *** Guest State ***
[  272.920464] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  272.929492] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  272.938501] CR3 = 0x0000000000000000
[  272.942366] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  272.948384] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  272.954497] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  272.961274] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  272.969421] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.978222] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.986360] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  272.994461] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.002573] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.010591] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  273.018714] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  273.026810] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  273.034939] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  273.043008] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  273.049449] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  273.057037] Interruptibility = 00000000  ActivityState = 00000000
[  273.063392] *** Host State ***
[  273.066624] RIP = 0xffffffff81312160  RSP = 0xffff88808b07f398
[  273.072757] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  273.079213] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  273.087152] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  273.093145] CR0=0000000080050033 CR3=000000004c61b000 CR4=00000000001426f0
[  273.100226] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  273.107018] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  273.113158] *** Control State ***
[  273.116646] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  273.123471] EntryControls=0000d1ff ExitControls=002fefff
[  273.128962] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  273.135988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  273.142776] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  273.149388]         reason=80000021 qualification=0000000000000000
[  273.156882] IDTVectoring: info=00000000 errcode=00000000
[  273.162419] TSC Offset = 0xffffff6a2cc11fd1
07:26:27 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:27 executing program 3:
r0 = add_key(&(0x7f00000003c0)='encrypted\x00', &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000440)="0fe24d6304368fc8b6f99f1c1ebc4e0df76bb8a6be59726990f68b9dff7cff43d234ee80b2cf465b8fef786e4f447c5506ad5b8d46ec07dfd377d63075ad5ba2cf0d25fe39c060e32d3f59ee69d93938c2dbc36cf9cf3286a95037fc5fd5d7eb7aab31218dc4909ddcf95cd23a464dcfcab3543498f6c034e007516375cc479b560ea45f01937393b4ce7e00edfbf6a006ba86cc84f34f5dcccdb0ba38a9175b1e9c5a", 0xa3, 0xfffffffffffffff9)
add_key$user(&(0x7f0000000280)='user\x00', &(0x7f00000002c0)={'syz', 0x1}, &(0x7f0000000300)="d19b6f362f4b20271cbcce549a9f9a746cbf1077d02ea4c8f1bfc1d89411b0396781b28b34e11ff7c520fdb04865d63b5f5b03c8dc95af005c2c1c5c9e51ba10dfc7f063bc2d639e8be9515280157d9779397c660e476741afc2e88acefb0fdec29fbccd3131ef4eb0cd75266be3693b1c6ddf1d7725cb75a0531ec25703a7b4bf8e9c9920add5809c7c033886b4d60e51e2a39aba37c11fe7c8", 0x9a, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00')
sendmsg$IPVS_CMD_SET_SERVICE(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x40, r3, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x7}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x457}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xffffffffffff6beb}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000000)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r4 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_PKEY_QUERY(0x18, r4, 0x0, &(0x7f0000000100)='\x00', 0x0)

[  273.166757] TPR Threshold = 0x00
[  273.170148] EPT pointer = 0x00000000ac26101e
07:26:27 executing program 1:
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:27 executing program 4:
r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x800)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffe000/0x1000)=nil, 0x1000}, 0x1})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000001c0)={0x1, 0x7, 0x3, {0xf, @win={{0x7ff, 0x6e9b, 0xa88, 0x1ff}, 0x9, 0x3f, &(0x7f00000000c0)={{0x101, 0x5, 0x7, 0x8}, &(0x7f0000000080)={{0x2, 0x7, 0x295c, 0x5}}}, 0x3, &(0x7f0000000100)="d5edcd995d8f1a8d0be2dcabf3cb8b227770cc5064bb6d3d4e28f43af0bb4ea4bb41ac817a07f1a6f10de814652a4571d4fa03a97a8c9a1fa94c05c8708d06814260028c64a93f5253481c7b1f7fb64bfc47e719dc40c9d0277137806e6bdaa240b8cfe241a741a2625ba988cb7ee806824e2955c023690062f624386c5682b04f04402b2d4fb6ab355bf71365a8ef0181330fd7807e899d", 0x74}}})
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f00000002c0)={'teql0\x00', 0x5})
socketpair(0x0, 0x80006, 0x8001, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000380)={0x9, &(0x7f0000000340)=[{0x3}, {0x1c76, 0x2}, {0x2, 0xfffffffffffffff9}, {0x100000000, 0x200}, {0x20, 0x3}, {0x0, 0x5}, {0x8000, 0xe7}, {0x7fff, 0x401}, {0x6c1, 0x7}]})
ioctl$int_in(r1, 0x5452, &(0x7f00000003c0)=0x1)
ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000400)=0x8)
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/qat_adf_ctl\x00', 0x201, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000000480)=""/192)
r4 = open(&(0x7f0000000540)='./file0\x00', 0x10000, 0x84)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mISDNtimer\x00', 0x0, 0x0)
r6 = add_key(&(0x7f00000005c0)='.request_key_auth\x00', &(0x7f0000000600)={'syz', 0x3}, &(0x7f0000000640)="277d3d9b93895d8b321347dfaf83afe59047f497f42f6f02d9a8c267d72a36d95a5a5f95a8ee524a8aae6a57db5ad685ce54bede6e0a35284cea98c5724bb65be5dff0cea9641b7a12dff9215c96ffc13d30edcc44ceabeb60453db0cef348f89784c9aa947fa919c1253de648e3712bb90ed2c43220e86ff6c536abf854fcaee65b3dcde4e9", 0x86, 0xfffffffffffffffb)
r7 = request_key(&(0x7f0000000700)='id_legacy\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)=',\x00', 0x0)
r8 = add_key$user(&(0x7f00000007c0)='user\x00', &(0x7f0000000800)={'syz', 0x0}, &(0x7f0000000840)="ce3476ae0c4a859779879b413a8386d5fe6c9158f02c86bd13921d933ea2176b14c7f16f5600eac293b0e17a28d0a8e20b246a780b5810b5fe29bc8df341d8634f241e2dc1a2ed54eabbdbd966173cac8092", 0x52, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f00000008c0)={r6, r7, r8}, &(0x7f0000000900), 0x0, &(0x7f0000001980)={&(0x7f0000000940)={'sha256-ni\x00'}, &(0x7f0000000980)="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", 0x1000})
setrlimit(0xb, &(0x7f00000019c0)={0xe9, 0x7})
ioctl$VIDIOC_S_PRIORITY(r4, 0x40045644, 0x2)
setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000001a00)=0x1, 0x4)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r5, 0x4008240b, &(0x7f0000001a40)={0x5, 0x70, 0x7, 0x1, 0x6, 0xea80, 0x0, 0x400, 0x400, 0x0, 0x536, 0x1, 0x4, 0x4, 0x2, 0xffffffff, 0x8, 0x6, 0x9, 0x0, 0x8, 0x8001, 0x8001, 0x8, 0x800, 0xfffffffffffffffa, 0xa2, 0xffffffff, 0x3cb, 0x3, 0x5, 0x0, 0x1, 0x401, 0xb2, 0x8, 0x8, 0x2, 0x0, 0x1, 0x2, @perf_config_ext={0x1, 0x7}, 0x8008, 0x8001, 0xfffffffffffffff7, 0x5, 0x8000, 0x400, 0x800000000000})
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000001ac0)={0xaa, 0x53})
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000001b00)={0x5, 0x4, 0xfffffffffffffff8, 0xfffffffffffffff8, 0x16, 0x8, 0x7, 0x3, 0x3ff, 0x101, 0x33, 0x8})
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x891b, &(0x7f0000001b40)={'team0\x00', {0x2, 0x4e23, @broadcast}})
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3)
write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000001b80)={0xa, 0xa, 0x0, 0x24}, 0xa)
link(&(0x7f0000001bc0)='./file0\x00', &(0x7f0000001c00)='./file0\x00')
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r4, 0x800448d2, &(0x7f0000001f40)={0x5, &(0x7f0000001c40)=[{}, {}, {}, {}, {}]})
openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000001f80)='/proc/self/attr/current\x00', 0x2, 0x0)
setsockopt$CAIFSO_LINK_SELECT(r2, 0x116, 0x7f, &(0x7f0000001fc0)=0x80000000, 0x4)

07:26:27 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:27 executing program 1:
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  273.453371] *** Guest State ***
[  273.456738] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  273.465714] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  273.474661] CR3 = 0x0000000000000000
[  273.478414] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  273.484532] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  273.490600] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  273.497450] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  273.505545] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.513679] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.521812] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.529907] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.538001] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  273.546069] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  273.554196] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  273.562729] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  273.570774] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  273.578845] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  273.585381] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  273.592939] Interruptibility = 00000000  ActivityState = 00000000
[  273.599194] *** Host State ***
[  273.602512] RIP = 0xffffffff81312160  RSP = 0xffff888095b6f398
[  273.608536] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  273.615077] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  273.622975] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  273.628907] CR0=0000000080050033 CR3=00000000aa522000 CR4=00000000001426f0
[  273.636069] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  273.642851] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  273.648934] *** Control State ***
[  273.652503] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  273.659259] EntryControls=0000d1ff ExitControls=002fefff
[  273.664820] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  273.671872] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  273.678653] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  273.685349]         reason=80000021 qualification=0000000000000000
[  273.691791] IDTVectoring: info=00000000 errcode=00000000
[  273.697268] TSC Offset = 0xffffff69e7ac390e
[  273.701610] TPR Threshold = 0x00
07:26:27 executing program 3:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
mmap(&(0x7f0000c85000/0x3000)=nil, 0x3000, 0x3000002, 0x2012, r0, 0x200000000000000)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000040)={0x6, 0x0, 0x0, 0x4})
r1 = getpid()
sched_getattr(r1, &(0x7f0000000000), 0x30, 0x0)

[  273.705097] EPT pointer = 0x00000000a1cbb01e
07:26:27 executing program 3:
unshare(0x1000000000400)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0xecf, 0x20040)
syz_extract_tcp_res(&(0x7f0000000000), 0xea82, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffd000/0x2000)=nil, 0x2000}, &(0x7f0000000100)=0x10)

07:26:27 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:28 executing program 1:
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:28 executing program 3:
syz_emit_ethernet(0x230, &(0x7f0000007000)={@local, @random="cf2bb43c40b8", [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x222, 0x0, 0x0, 0x0, 0x21, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @tcp={{0x0, 0x0, 0x42424242, 0x42424242, 0x0, 0x3, 0x8}}}}}}, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2eca5540, 0x2000)
getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000040)={@rand_addr, @dev}, &(0x7f0000000080)=0xc)

[  274.115009] *** Guest State ***
[  274.118389] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  274.127425] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  274.136424] CR3 = 0x0000000000000000
[  274.140171] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  274.146242] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  274.152323] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  274.159126] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  274.167224] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.175349] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.183532] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.191544] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.197220] dccp_v4_rcv: dropped packet with invalid checksum
[  274.199629] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.213628] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  274.221647] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  274.229736] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  274.237847] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  274.245903] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  274.252483] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
07:26:28 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  274.252507] Interruptibility = 00000000  ActivityState = 00000000
[  274.252517] *** Host State ***
[  274.252543] RIP = 0xffffffff81312160  RSP = 0xffff888045a6f398
[  274.252585] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  274.252615] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  274.252640] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
07:26:28 executing program 1:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  274.252669] CR0=0000000080050033 CR3=000000008be67000 CR4=00000000001426f0
[  274.252700] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  274.252724] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  274.252735] *** Control State ***
[  274.252758] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  274.252776] EntryControls=0000d1ff ExitControls=002fefff
[  274.252801] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  274.252823] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  274.252843] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  274.252863]         reason=80000021 qualification=0000000000000000
[  274.252881] IDTVectoring: info=00000000 errcode=00000000
[  274.252896] TSC Offset = 0xffffff698be4b7d5
[  274.252909] TPR Threshold = 0x00
[  274.252926] EPT pointer = 0x000000004156c01e
[  274.423883] IPVS: ftp: loaded support on port[0] = 21
[  274.430276] dccp_v4_rcv: dropped packet with invalid checksum
07:26:28 executing program 1:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:28 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  274.805354] *** Guest State ***
[  274.808814] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  274.818322] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  274.827327] CR3 = 0x0000000000000000
[  274.831089] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  274.837310] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  274.843436] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  274.850217] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  274.858629] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.866767] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.874911] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.883026] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.886144] chnl_net:caif_netlink_parms(): no params data found
[  274.891064] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  274.905477] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  274.913615] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  274.921637] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  274.929775] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  274.937866] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  274.944468] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  274.952018] Interruptibility = 00000000  ActivityState = 00000000
[  274.958296] *** Host State ***
[  274.961525] RIP = 0xffffffff81312160  RSP = 0xffff88808863f398
[  274.967659] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  274.974479] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  274.982432] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  274.988364] CR0=0000000080050033 CR3=0000000049bbb000 CR4=00000000001426e0
[  274.995552] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  275.002331] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  275.008412] *** Control State ***
[  275.012035] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  275.018730] EntryControls=0000d1ff ExitControls=002fefff
[  275.024331] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  275.031294] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  275.038111] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  275.044944]         reason=80000021 qualification=0000000000000000
[  275.051285] IDTVectoring: info=00000000 errcode=00000000
[  275.056873] TSC Offset = 0xffffff692a3c687e
[  275.061225] EPT pointer = 0x0000000041c0f01e
[  275.091012] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.097636] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.105870] device bridge_slave_0 entered promiscuous mode
[  275.118463] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.125105] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.133347] device bridge_slave_1 entered promiscuous mode
[  275.162900] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  275.174214] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  275.203213] team0: Port device team_slave_0 added
[  275.211242] team0: Port device team_slave_1 added
[  275.286920] device hsr_slave_0 entered promiscuous mode
[  275.323203] device hsr_slave_1 entered promiscuous mode
[  275.382059] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.388657] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.396506] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.403080] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.482194] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.501288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  275.511651] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.523754] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.536972] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  275.557145] 8021q: adding VLAN 0 to HW filter on device team0
[  275.576222] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  275.584725] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.591212] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.645335] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  275.653642] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.660127] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.669707] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  275.678721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  275.687239] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  275.695327] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  275.708392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  275.736535] 8021q: adding VLAN 0 to HW filter on device batadv0
[  275.810310] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  275.915626] QAT: Invalid ioctl
[  275.919873] QAT: Invalid ioctl
[  275.951676] QAT: Invalid ioctl
[  275.955611] QAT: Invalid ioctl
07:26:30 executing program 4:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000080)={{{@in=@multicast1, @in6=@dev}}, {{@in6=@empty}, 0x0, @in6=@remote}}, &(0x7f0000000000)=0xe8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x7d, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8)
mmap(&(0x7f0000000000/0x22000)=nil, 0x22000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
close(r0)
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000180)={{&(0x7f0000002000/0x4000)=nil, 0x4000}})

07:26:30 executing program 3:
syz_emit_ethernet(0x230, &(0x7f0000007000)={@local, @random="cf2bb43c40b8", [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x222, 0x0, 0x0, 0x0, 0x21, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @tcp={{0x0, 0x0, 0x42424242, 0x42424242, 0x0, 0x3, 0x8}}}}}}, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2eca5540, 0x2000)
getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000040)={@rand_addr, @dev}, &(0x7f0000000080)=0xc)

07:26:30 executing program 1:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:30 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:30 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  276.454526] dccp_v4_rcv: dropped packet with invalid checksum
07:26:30 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  276.602137] *** Guest State ***
[  276.605581] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  276.614623] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  276.624030] CR3 = 0x0000000000000000
[  276.627782] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  276.633881] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  276.639907] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  276.646792] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  276.654893] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  276.663038] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  276.671056] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  276.679184] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  276.687291] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:30 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='\x00\x00\x00\x00\x00\xe8\xee\xc9\x96\xc2;\xaf\t\xa8M*\xe4;~y\xb2\xb3\xba\b;/\xb6&\xa5\xaa\xcec\x1e\x8a;\xea;P\xb5w^2\f\xe5\xcc`\xa0\xce\xf0+\x19v\xb9I\xdf\xfe\x13\xd9\x1a\xd6;+\x16\x05\x1aul>\x82@\x0f\xdf\xcd\x99\x9a\x13\xe2[F\xf0\xc1\xfb\xae\xb5\xb5\x1f\xf3\xe9\xd5\xbf\x13k\xbc)\xa1nbx\x9c\x02\xa6p?\x12\x89\nAr\xe9Q\xb0\x80Q\x8e\xf2\xf0yX\x9b\x96\xa4\x8b\x01f\xe0\x04\xbd\x93K!\xa0D-\xfc\x12\x02\xe2\xb5WQ\xb4\xb1\xf2\x16)\xc8\b\xc2\x99\x9a\xd9\xa6p\xedK\xb5\x8b\xe8\xbf\xa0\xa1\x13\xd78Mt$\x06\xb6c\xd0Y\x05\xd1l\x98|\xff\xb5\v\x93\x7f\xbc\x1a\x7f\xa9<s\x18\xb7\xbc\xc3\xc5o\xd7\x0fu4(c\xcd\xd6u\xe8/\xaaO\xa4\xff\xea\xb1\x96\xdbI\xb72\xb4\xcfahW\x9c\xcc')
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000002c0)={r1, 0x10, &(0x7f0000000140)={&(0x7f0000000040)=""/126, 0x7e, <r2=>0xffffffffffffffff}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300)=r2, 0x4)
r3 = openat$cgroup_ro(r1, &(0x7f0000000000)='mem\x00\x01y7swaS.cur\x89\xc9B\xab\xe3\xfarent\x00', 0x0, 0x0)
accept$unix(r1, &(0x7f0000000340), &(0x7f00000003c0)=0x6e)
preadv(r3, &(0x7f0000000180), 0x0, 0x2000107c)
fsetxattr$security_smack_transmute(0xffffffffffffffff, &(0x7f00000000c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000180)='TRUE', 0x4, 0x1)
setsockopt$inet6_buf(r3, 0x29, 0x45, &(0x7f0000000400)="5831a4fe26c242536b9403ed0a2e448f81fd5a32bde0d0f72629385db461cb53dfa9c1947841eff6b50790c7a570f946f447d89843130c4545368e372c6461e16c0246652b753deb239af2e0ba46a986fcbcbcbaa04e8c110dbb", 0x5a)

[  276.695440] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  276.703540] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  276.711553] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  276.719695] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  276.727779] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  276.734337] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  276.741918] Interruptibility = 00000000  ActivityState = 00000000
[  276.748167] *** Host State ***
[  276.751385] RIP = 0xffffffff81312160  RSP = 0xffff88804094f398
[  276.757539] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  276.764071] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  276.772002] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  276.777928] CR0=0000000080050033 CR3=000000004187e000 CR4=00000000001426e0
[  276.785099] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  276.791876] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  276.797983] *** Control State ***
[  276.801470] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  276.808290] EntryControls=0000d1ff ExitControls=002fefff
[  276.813868] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  276.820832] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  276.827663] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  276.834361]         reason=80000021 qualification=0000000000000000
[  276.840753] IDTVectoring: info=00000000 errcode=00000000
[  276.846315] TSC Offset = 0xffffff6837d682e9
07:26:30 executing program 4:
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_mr_vif\x00')
preadv(r0, &(0x7f0000000480), 0x10000000000001ec, 0x47)

[  276.850713] TPR Threshold = 0x00
[  276.854197] EPT pointer = 0x000000004243e01e
07:26:31 executing program 4:
setsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000080)=0xe, 0xfffffffffffffde7)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2, 0x5}}, 0x20)
r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x200, 0x10000)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={<r2=>0x0, 0x9}, &(0x7f0000000140)=0x8)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000200)={@broadcast, @multicast2, <r3=>0x0}, &(0x7f0000000240)=0xc)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80080}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=@getqdisc={0x30, 0x26, 0x0, 0x70bd2a, 0x25dfdbfd, {0x0, r3, {0xf}, {0x1, 0xfff2}, {0x4}}, [{0x4}, {0x4}, {0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000180)={r2, 0x43, 0x30}, 0xc)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

07:26:31 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:31 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:31 executing program 4:
r0 = syz_open_dev$amidi(0x0, 0x0, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x4, @dev={[], 0xa}, 'lo\x00'}}, 0x1e)
syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0xffffffff, 0x0)
sendto(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000100)={0x15, 0x0, &(0x7f00000000c0)})
openat$cgroup_ro(r0, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x2042, 0x0)

07:26:31 executing program 3:
r0 = epoll_create(0x1)
poll(&(0x7f0000000000)=[{r0, 0x3120}, {r0, 0x60}, {r0, 0x80}, {r0, 0x2}, {r0, 0x8002}, {r0, 0x34}, {r0, 0x80}, {r0, 0x44}, {r0, 0x2000}], 0x9, 0x7)
epoll_pwait(r0, &(0x7f00000002c0)=[{}], 0x1, 0x0, 0x0, 0x0)

07:26:31 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:31 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:31 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:31 executing program 4:
setxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.origin\x00', &(0x7f0000000080)='y\x00', 0x2, 0x2)
r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x101000)
clock_gettime(0x0, &(0x7f0000000140)={<r1=>0x0, <r2=>0x0})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000180)={0x100, @time={r1, r2+10000000}, 0x67, {0xf7, 0x8}, 0x80, 0x2})
unshare(0x20400)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x1e)

07:26:31 executing program 3:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x20000000081, &(0x7f00000000c0), &(0x7f0000000040)=0x10e)
r1 = accept(r0, &(0x7f00000002c0)=@rc, &(0x7f0000000080)=0xff08)
setsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000140)=0x20000800004, 0xffffff07)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x48280, 0x8)

07:26:31 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  277.663840] *** Guest State ***
[  277.667217] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  277.676800] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  277.685788] CR3 = 0x0000000000000000
[  277.689534] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  277.695647] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  277.697593] *** Guest State ***
[  277.701795] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  277.701824] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  277.701863] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.705147] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  277.711948] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.719915] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  277.727946] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.727977] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.728008] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.728031] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  277.728063] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  277.728087] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  277.728120] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  277.728142] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  277.728174] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  277.737081] CR3 = 0x0000000000000000
[  277.745145] Interruptibility = 00000000  ActivityState = 00000000
[  277.754050] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  277.762047] *** Host State ***
[  277.762075] RIP = 0xffffffff81312160  RSP = 0xffff88804098f398
[  277.770073] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  277.778125] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  277.786157] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  277.794160] FSBase=00007f04313d6700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  277.794181] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  277.794206] CR0=0000000080050033 CR3=0000000040974000 CR4=00000000001426e0
[  277.794230] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  277.794257] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  277.802271] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  277.802305] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.810247] *** Control State ***
[  277.816745] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.824220] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  277.827937] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.834201] EntryControls=0000d1ff ExitControls=002fefff
[  277.834228] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  277.840211] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.843469] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  277.849439] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  277.855445] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  277.855463]         reason=80000021 qualification=0000000000000000
[  277.855486] IDTVectoring: info=00000000 errcode=00000000
[  277.861960] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  277.861994] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  277.868644] TSC Offset = 0xffffff67a66dde84
[  277.876502] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  277.882419] TPR Threshold = 0x00
[  277.882440] EPT pointer = 0x00000000a60db01e
[  277.891211] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  278.044729] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  278.051168] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  278.058858] Interruptibility = 00000000  ActivityState = 00000000
[  278.065161] *** Host State ***
[  278.068397] RIP = 0xffffffff81312160  RSP = 0xffff88803ff7f398
[  278.074556] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  278.081008] FSBase=00007f0e7a106700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  278.088948] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  278.094956] CR0=0000000080050033 CR3=00000000408f0000 CR4=00000000001426f0
[  278.102095] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  278.108798] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  278.114980] *** Control State ***
[  278.118463] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  278.125212] EntryControls=0000d1ff ExitControls=002fefff
[  278.130690] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  278.137724] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  278.144538] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  278.151151]         reason=80000021 qualification=0000000000000000
[  278.157619] IDTVectoring: info=00000000 errcode=00000000
07:26:32 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  278.163154] TSC Offset = 0xffffff67a1a77447
[  278.167496] TPR Threshold = 0x00
[  278.170884] EPT pointer = 0x00000000409de01e
07:26:32 executing program 3:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/capi/capi20ncci\x00', 0x400, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f0000000200))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000080)='veth1\x00', 0xfffffffffffffee1)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x2, @initdev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x6, 0x200}, 0x14)
setsockopt$inet_tcp_int(r1, 0x6, 0x4000000000013, &(0x7f0000000140), 0x27b)
socket$inet_smc(0x2b, 0x1, 0x0)
sendto(r1, &(0x7f0000000000)="d0", 0x1, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup2(r3, r2)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendto(r1, &(0x7f0000000100)="06", 0x1, 0x0, 0x0, 0x0)
ioctl$NBD_SET_TIMEOUT(r4, 0xab09, 0x3)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
close(r1)

07:26:32 executing program 4:
mq_unlink(&(0x7f0000000200)='\a\xc0@.\xaf\xdc#\xea\xe5\x90\x1c\xa6\x1c2\xba\x0e\x85\x86\x9ad\x05i}O-07\a{\x92\x99\xfby|\x0e\x96\xefB\xfdoWoC\xd1\xc8\xdf\xe5\xa1w\xb0\x86\xe9h>\x82\f\xf7a\xe9\x19)m\xb8D,\x88z\xa6\xb4\xb4\x99\x80\xf8y<\xbd\xaf\xd0\xa4 \xaa\x98*\xed\xcd\xeb\xee\x9f\x14\x92\x8a\xd6[\t\xe9\x8f~\xf2Q\x9d\xfc\xa0m\vb\xc3\xca\xeb,a&\xfb*\xf3\x9a\xc9&\x8e1\xd0\xb8\x17\xfbo\xd5xc\x8b\x04:\xf0m\xe8RA\xb4\x95t\xd1F\x96eZd\x15\x05$\x14q:\x04\x8fu}b\xf3JN\x89\b\x02eh}\xc1\x0e\x1d\xc1\x15\x7f\xd2\xd7\xde\x8dA6z\xc1\x1aY\x99\xc3%qV\x9e\xb7=\x89?<\xfb\xdc+\xf8\x145\xdf!\x1ch\xa8@\b\xfe\xc50\xc5\xd0\xbbp\xec\x97V\xd3M\x95\xac\x84F\x9f\x94\xbb\xc8\b\xc3\xaea,\xa9\xa7e\xfd\x03\x1f\n\x99\x1dR\x8bt\v\x99_6\xde*\xde\xee\x13&\xc5\x14\x89\xe8\x1a\xbc7')
r0 = dup(0xffffffffffffffff)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
ioctl$KVM_GET_NESTED_STATE(r0, 0xc080aebe, &(0x7f0000000340)={0x0, 0x0, 0x2080})

07:26:32 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  278.530806] *** Guest State ***
[  278.534368] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  278.543417] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  278.552357] CR3 = 0x0000000000000000
[  278.556110] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  278.562308] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  278.568329] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  278.575858] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  278.583980] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  278.592149] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  278.600166] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  278.608301] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  278.616416] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  278.624514] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  278.632594] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  278.640754] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  278.648841] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  278.656937] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  278.663466] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  278.671000] Interruptibility = 00000000  ActivityState = 00000000
[  278.677321] *** Host State ***
[  278.680609] RIP = 0xffffffff81312160  RSP = 0xffff8880424bf398
[  278.686697] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  278.693244] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  278.701083] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  278.707110] CR0=0000000080050033 CR3=000000003feb8000 CR4=00000000001426f0
[  278.714261] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  278.721036] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  278.727179] *** Control State ***
[  278.730742] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  278.737501] EntryControls=0000d1ff ExitControls=002fefff
[  278.743091] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  278.750061] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  278.756880] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  278.763577]         reason=80000021 qualification=0000000000000000
[  278.769976] IDTVectoring: info=00000000 errcode=00000000
[  278.775506] TSC Offset = 0xffffff672b96ea57
07:26:32 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:32 executing program 4:
r0 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x111000)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f00000000c0))
r1 = socket$kcm(0xa, 0x2, 0x88)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x40000, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r2, 0xc038563b, &(0x7f0000000040)={0x0, 0x0, {0x0, 0xb7, 0x10001, 0xffffffff}})
sendmsg$kcm(r1, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="2be5f14696bfcfdc1640c351", 0xc}], 0x1}, 0x0)

07:26:32 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x101000, 0x0)
dup2(r0, r0)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, 0xfffffffffffffffe, 0x0)

[  278.779877] TPR Threshold = 0x00
[  278.783319] EPT pointer = 0x000000009390c01e
07:26:32 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:33 executing program 4:
clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = getpid()
rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f00000000c0))
r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x0, 0x200100)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000040)=0x6)
socketpair$unix(0x1, 0x40000000001, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$BLKFLSBUF(r1, 0x1261, &(0x7f0000000080)=0xfff)
syz_open_procfs(r0, 0x0)

07:26:33 executing program 3:
r0 = socket(0x40000000002, 0x8000000003, 0x2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0xfe33)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4)
setsockopt$inet_int(r0, 0x0, 0x17, &(0x7f0000000080)=0x7, 0x4)
sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000d00)=@abs={0x0, 0x0, 0x10000e0}, 0x6e)
setsockopt$inet_int(r0, 0x0, 0x800000000019, &(0x7f0000000000)=0x3fffffffc000000, 0x30c)
setsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f00000000c0)=0xfffffffffffffffb, 0x4)
readv(r0, &(0x7f0000000740)=[{&(0x7f0000000480)=""/49, 0x31}, {&(0x7f0000000540)=""/140, 0x8c}, {&(0x7f0000000600)=""/203, 0xcb}, {&(0x7f00000004c0)=""/30, 0x1e}, {&(0x7f0000000700)}, {&(0x7f0000000d80)=""/4096, 0x1000}], 0x6)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000240)=ANY=[@ANYRES32=<r1=>0x0, @ANYBLOB="fb0000005718cd0dca2c9c9b5ba8ce433919558746d99fc1ff69b3c0da40741aed6ce41eb6848e7b31fd2b2983c86a5c403e2aa3f45fd4cb44374ad871ca4fb5c758f02884800e1f8de9b3a98b184bcff3523c65d57037b80d03e01f80e003e63043e195654983278e884a8f6e6fd2883afc163fced6ba9c6e1fa0eb941d9883207b53a560b632e101f29299e7eb66d933b5f97f67cc9ab55abb54fb2f6f3675637420ad8956dfcba159e98cf33e315017e602798408857d85b61e89984847cbeb353fd3a3a2cbcb85b3709f1e2661b35610ad3a0ba080afb039365b787e2ee23a348718c587d5aafe526a59d5ff20d0ab466243a378ba41c469c993766b19"], &(0x7f0000000380)=0x103)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000003c0)={0x58, 0x2ef43070, 0x5, 0x4, 0x2, 0x40, 0x4, 0x8, r1}, &(0x7f0000000400)=0x20)

07:26:33 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  279.158218] raw_sendmsg: syz-executor.3 forgot to set AF_INET. Fix it!
07:26:33 executing program 3:
r0 = socket$inet(0x10, 0x40000000000003, 0xc)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x408000, 0x0)
ioctl$DRM_IOCTL_AGP_ENABLE(r1, 0x40086432, &(0x7f0000000080)=0x1)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000100)="24000000070a07191dfffd946fa2830020200a0009000108000000680c1baba20400ff7e", 0x24}], 0x1}, 0x0)

07:26:33 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:33 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:33 executing program 3:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)=@hci={0x1f, <r1=>0x0}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000240)=""/91, 0x5b}], 0x1, &(0x7f00000002c0)=""/252, 0xfc}, 0x10020)
sendto$packet(r0, &(0x7f0000000040)="007def54c1fcedd0cb2167710670ad5e1863481da7909f2a3cccfb0bf1239ab05b90e2db9d164d455ffd46b37f22da03f09089da73a374f8", 0x38, 0x4000005, &(0x7f0000000400)={0x11, 0x17, r1, 0x1, 0xfffffffffffffffb, 0x6, @random="e2e6c93b2a20"}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000140)={0x8}, 0x10)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000440)=0x20000, 0x4)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000480)={0x0, @bt={0x0, 0x5f23, 0x1, 0x1, 0xa5e3, 0x9, 0xffffffffffffff44, 0xff, 0x200, 0x100000001, 0x1f, 0x2, 0x1e0, 0x7, 0x3860676e19936071, 0x17}})
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=@getneightbl={0x13, 0x42, 0x101}, 0x14}}, 0x0)
ppoll(&(0x7f0000000540)=[{r0, 0x200}, {r2}], 0x2, &(0x7f0000000580)={0x0, 0x989680}, &(0x7f00000005c0)={0x7}, 0x8)

07:26:33 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  279.617429] *** Guest State ***
[  279.621027] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  279.630067] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  279.639189] CR3 = 0x0000000000000000
[  279.642996] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  279.649059] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  279.655139] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  279.661918] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  279.669935] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  279.678029] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  279.686111] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  279.694200] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  279.702282] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  279.710290] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  279.718385] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  279.726474] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  279.734562] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  279.742632] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  279.749065] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  279.756611] Interruptibility = 00000000  ActivityState = 00000000
[  279.762931] *** Host State ***
[  279.766151] RIP = 0xffffffff81312160  RSP = 0xffff8880ad1ef398
[  279.772236] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  279.778684] FSBase=00007f0e7a106700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  279.786578] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  279.792590] CR0=0000000080050033 CR3=00000000a656d000 CR4=00000000001426e0
[  279.799664] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  279.806549] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  279.812698] *** Control State ***
[  279.816185] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  279.822960] EntryControls=0000d1ff ExitControls=002fefff
[  279.828443] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  279.835474] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  279.842237] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  279.848847]         reason=80000021 qualification=0000000000000000
[  279.855316] IDTVectoring: info=00000000 errcode=00000000
[  279.860826] TSC Offset = 0xffffff66987a9700
[  279.865280] TPR Threshold = 0x00
07:26:33 executing program 3:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000004c0)=""/246)
ioctl$PPPIOCSPASS(r0, 0x40107447, 0x0)

[  279.868685] EPT pointer = 0x00000000a545901e
07:26:34 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:34 executing program 4:
r0 = socket$inet6(0xa, 0x80803, 0x7)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000240)={{{@in6=@local, @in=@multicast1, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x20}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x32}, 0x0, @in6=@initdev}}, 0xe8)
connect$inet6(r0, &(0x7f00000000c0), 0x1c)
recvfrom$inet6(r0, &(0x7f0000000040)=""/84, 0x54, 0x100, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000140)='NET_DM\x00')
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000010}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r1, 0x402, 0x70bd2a, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0xc0)

07:26:34 executing program 3:
r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_G_PARM(r0, 0xc0cc5615, &(0x7f0000000200)={0x1})
ioctl$EVIOCGID(r0, 0x80084502, &(0x7f0000000080)=""/123)
mmap(&(0x7f00009fe000/0x600000)=nil, 0x600000, 0x8, 0x4030, r0, 0x0)

07:26:34 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:34 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="b61bfa3e7578de598d5da367b988cefb598533a4a5839797dde02b3afde82f23a4b6ae96c0bf05c4c9275482feb8e8b819b64db6146626a052b0a34a82acb297a21afa9da2c0d033c14a0fc31694c9fe4a01b9586eb98d5d977b59d669eb619bb7be3dff5833cef7f2e49374c405968a489c02b51dfb1c08f7b0554a61329425d519da29e41a4d3a3715a90a75e8fcf5085e5bd8a9018db2c22250b5263f5c15445f74fa3bfe7cd0f33cb290dc4ff57dab9efe58558dec6fd3", @ANYRES16=r1, @ANYBLOB="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"], 0x298}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r2 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x3, 0x2)
ioctl$VIDIOC_S_MODULATOR(r2, 0x40445637, &(0x7f0000000140)={0x0, "343dc8ed835bc7b40ffa0e20c68988e577d3783d1000", 0x0, 0x0, 0x0, 0xfffffffffffffffd})

07:26:34 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:34 executing program 3:
r0 = socket$kcm(0x2b, 0x1, 0x0)
syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2)
r1 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x6, 0x200)
setsockopt$sock_attach_bpf(r0, 0x6, 0x17, &(0x7f0000000080)=r1, 0x2d3)

07:26:34 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:26:34 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000300))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:34 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
ioctl$EVIOCGABS20(r1, 0x80184560, &(0x7f0000000040)=""/187)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000440)='/dev/autofs\x00', 0x0, 0x0)
ioctl(r2, 0x800000000000937e, &(0x7f00000001c0)="01000000000000007f")

07:26:34 executing program 3:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000001b00)='/dev/vsock\x00', 0x800, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000001a80)={0x53, 0xfffffffffffffffd, 0xb3, 0xffffffffffffff21, @scatter={0xa, 0x0, &(0x7f0000001800)=[{&(0x7f0000000200)=""/156, 0x9c}, {&(0x7f00000002c0)=""/123, 0x7b}, {&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000400)=""/212, 0xd4}, {&(0x7f0000000080)=""/5, 0x5}, {&(0x7f0000000500)=""/231, 0xe7}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/59, 0x3b}, {&(0x7f0000001640)=""/176, 0xb0}, {&(0x7f0000001700)=""/245, 0xf5}]}, &(0x7f0000001b40)="e7f6c6d0789bb4dd9363ef5f82547376c510865e6c5a680db1020d90f3824807d3fa49d9733e84a6d17db0582fc11a08441919ac849cae19f0f84bef9bfb69276d5dbee8e6b86b980fe261094eaa726240f4734454073a120ad7086f826ecf4bf092aacb452c156db54cfa42eaa981074fd8737954ba899f30a1bd0abc04fa7d7f0abdf168cc90d203f0b84fb1b2f3d3d4b0a0ee4d86ba9599625d39e959d1d022c9269013e197cd41e8c5d6aba81db3c14b7e", &(0x7f0000001980)=""/190, 0x1000000000000002, 0x22, 0x1, &(0x7f0000001a40)})
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f00000018c0)={0x1, 0x200})
setsockopt$RXRPC_SECURITY_KEY(r0, 0x110, 0x1, &(0x7f0000000000)='(\x00', 0x2)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_REJECT(r1, &(0x7f00000000c0)={0x9, 0x108, 0xfa00, {0xffffffffffffffff, 0x0, "6d6f1b", "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"}}, 0x110)

07:26:34 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  280.902616] Unknown ioctl 8837
[  280.917306] Unknown ioctl 19270
[  280.946270] autofs4:pid:10979:validate_dev_ioctl: invalid path supplied for cmd(0x0000937e)
[  280.946613] Unknown ioctl 8837
[  281.003477] Unknown ioctl 19270
07:26:35 executing program 3:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x40, 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, &(0x7f0000000040))

07:26:35 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:35 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/raw6\x00')
recvmmsg(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000000580)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x260, 0x0)
sendmmsg(r0, &(0x7f0000000480)=[{{&(0x7f0000000000)=@pptp={0x18, 0x2, {0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000080)="ee9eb5a102c760383acf1645f7f045cfeab541cd997844159b7cf8bf52945a2ab65647df6aa1099dbeb760c5bc7afe0a8e5cdeb22df1f001be66cdd5fc0c012e80480965cf7bb69abc1aaa", 0x4b}], 0x1, &(0x7f0000000180)=[{0x70, 0x113, 0xffffffffffffff45, "21b438f26ef0b7977945e4f2dd4d7fccd2a787fb3674cde20dc56958249ade082576a26fddf49ce091f4e4b220e603f1624031e259daca6f877a1fd831d97f15aaa545b64d7eda4b061938cc57321b7eccd0904b590fe4779f2f8962"}, {0x18, 0x113, 0x5, "ccdd73e2"}, {0xe8, 0x10f, 0x6, "8a12e7fe359e3b2c8ea3ea732ac9c08afc9fe08f5a2ca6db6e41066415f4948ad2f443a686a681ccfee4d98f8a63308bf9256504afb2d2946e6b6a093a86abc4076df443ae0c4b85518bbfcb22e05e98eefe23309bb70d13e703f23f9c116e1934db30d4fde90f7cfc59995f7a299f4b4bc89c1160959d0b01ca1e707bc647067fc5b522abb1071cbf7a7250667e0d93f3f026b05eb13da8f3ef0d692e2c0f589f725081b53955a1a2e18069187366a55c463850d5dbf0559947268b8a5ca096b8add9756801a94af84b98a690ded5ae1a7189"}, {0x110, 0xba, 0xb6da, "1766f6321396ceda4d126853312d8d21dd9c04aab4d435127441cc36a6b195b03f4dc934b1637a04df3590d9954adb81c33c4997d0d05264bcc59d0fe40ec433b58a99cf14a3d1779f623cbef5223c9516935cace6dee142444e89c561ad5bed6218948b01c8111a0a69618f139734da9fa1ad39c52142d6f708ffa79bf541a590b7cf56aa0acedb89fe762ce7309bfbd9c3c273a19f8b2feb3880fbacfa7596e7a45b3eaf7aa350150d0e316849cddffdf0f2c2f6ff0c04495c06a84ca70c3705c22d57718f3c4d19c4c0760b79faa80f0e3915fe111ba0eb0ec6f62594964d47f7b6a2b1ec629b76a7d394c26f126f48968f1385fe7b0cef"}, {0x58, 0x11a, 0x8, "b6fa4facd989df95c2f0c829469733c8da9a92044f1af575189a85b1bcbba52a205744120710225d2a8b63b597423f2b75e245d3deaaa41854b5230d5b4252f43d16879fe3"}], 0x2d8}, 0x917}], 0x1, 0x0)
pread64(r0, 0x0, 0x0, 0x55)

07:26:35 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:26:35 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x400100, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000})
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0x9)
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x6)
r2 = fcntl$dupfd(r1, 0x406, r1)
ioctl$sock_inet_SIOCSIFBRDADDR(r2, 0x891a, &(0x7f0000000140)={'veth0\x00', {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}})
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x0, 0x9}, {0x9, 0x4}, {0x6, 0x101}, {0x8, 0x100000000}, {0x3, 0x4}, {0x8, 0x8}, {0xb59, 0xcdd0}]})

07:26:35 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000005c0)={&(0x7f0000000140), 0xc, &(0x7f0000000580)={&(0x7f0000000480)=@newlink={0x5c, 0x10, 0xf758d37fc4173455, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x28, 0x2, [@gre_common_policy=[@IFLA_GRE_LINK={0x8}, @IFLA_GRE_TTL={0x8}], @IFLA_GRE_REMOTE={0x14, 0x7, @local}]}}}]}, 0x5c}}, 0x0)
r1 = add_key(&(0x7f0000000000)='.dead\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000600)="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", 0x1000, 0xfffffffffffffffe)
r2 = add_key(&(0x7f0000000100)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x3}, &(0x7f00000001c0)="936a826cf12cfdb9cc09f6ace3", 0xd, 0xfffffffffffffffb)
keyctl$search(0xa, r1, &(0x7f0000000080)='id_legacy\x00', &(0x7f00000000c0)={'syz', 0x2}, r2)

07:26:35 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:26:35 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  281.683944] netlink: 'syz-executor.4': attribute type 8 has an invalid length.
[  281.731395] netlink: 'syz-executor.4': attribute type 8 has an invalid length.
07:26:35 executing program 3:
r0 = open(&(0x7f00000003c0)='./file0\x00', 0x8040, 0x0)
getsockname$unix(r0, &(0x7f0000000000), &(0x7f0000000080)=0x6e)
fcntl$setlease(r0, 0x400, 0x1)
r1 = inotify_init1(0x80800)
inotify_add_watch(r1, &(0x7f0000ac5000)='./file0\x00', 0xa400295c)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

07:26:35 executing program 4:
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc)=0xfffffffffffffffd, 0x8, 0x0, 0x0, 0x0, 0x0)
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000100))

07:26:36 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  281.949063] *** Guest State ***
[  281.952578] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  281.961458] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  281.970421] CR3 = 0x0000000000000000
[  281.974231] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  281.980376] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  281.986542] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  281.993419] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  282.001491] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.009600] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.017818] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.025921] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.034039] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.042142] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  282.050230] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  282.058359] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  282.066521] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  282.074621] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  282.081118] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  282.088674] Interruptibility = 00000000  ActivityState = 00000000
[  282.095050] *** Host State ***
[  282.098286] RIP = 0xffffffff81312160  RSP = 0xffff8880ae26f398
[  282.104426] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  282.110900] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  282.118845] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  282.125001] CR0=0000000080050033 CR3=00000000a1cd8000 CR4=00000000001426e0
[  282.132163] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  282.138862] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  282.145054] *** Control State ***
[  282.148544] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  282.155355] EntryControls=0000d1ff ExitControls=002fefff
[  282.160943] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  282.167975] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  282.174827] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  282.181488]         reason=80000021 qualification=0000000000000000
[  282.187907] IDTVectoring: info=00000000 errcode=00000000
[  282.193593] TSC Offset = 0xffffff6556a5e1a6
07:26:36 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  282.197973] TPR Threshold = 0x00
[  282.201421] EPT pointer = 0x00000000aa46801e
07:26:36 executing program 4:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = dup(r0)
setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000000)=@srh={0x2b, 0x6, 0x4, 0x3, 0x9, 0x10, 0x0, [@mcast1, @initdev={0xfe, 0x88, [], 0x1, 0x0}, @empty]}, 0x38)
setsockopt$inet6_tcp_int(r1, 0x6, 0x8, &(0x7f0000000280)=0x81, 0x6e)
write$FUSE_IOCTL(r1, &(0x7f0000000080)={0x20, 0xfffffffffffffffe, 0x3, {0x0, 0x0, 0x7, 0x3}}, 0x20)
ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000040))

07:26:36 executing program 3:
r0 = socket$l2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r2, &(0x7f00005fafd2)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
connect$l2tp(r0, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {}, 0x4, 0x1}}, 0x2e)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10)
openat$vsock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$PPPIOCGL2TPSTATS(r0, 0x8004745a, &(0x7f0000000180))

[  282.394329] *** Guest State ***
[  282.397845] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  282.406967] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  282.415996] CR3 = 0x0000000000000000
[  282.419751] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  282.425881] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  282.431983] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  282.438692] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  282.446781] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.454869] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.462963] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.470988] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.479071] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  282.487168] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  282.495278] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  282.503350] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  282.511390] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  282.519567] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  282.526093] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  282.533640] Interruptibility = 00000000  ActivityState = 00000000
[  282.539896] *** Host State ***
[  282.543235] RIP = 0xffffffff81312160  RSP = 0xffff88803fe3f398
[  282.549260] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  282.555836] FSBase=00007f0e7a106700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  282.563825] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  282.569751] CR0=0000000080050033 CR3=00000000b2a15000 CR4=00000000001426f0
[  282.576936] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  282.583726] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  282.589809] *** Control State ***
[  282.593415] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  282.600123] EntryControls=0000d1ff ExitControls=002fefff
[  282.605749] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  282.612783] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  282.619490] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  282.626220]         reason=80000021 qualification=0000000000000000
[  282.632639] IDTVectoring: info=00000000 errcode=00000000
[  282.638114] TSC Offset = 0xffffff651ccd2558
[  282.642617] EPT pointer = 0x00000000a598101e
07:26:36 executing program 4:
r0 = socket$kcm(0x29, 0x4000000000002, 0x0)
sendmmsg(r0, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="ee", 0x1}], 0x1}}], 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000005040)=[{{&(0x7f00000024c0)=@hci, 0x7fffef80, &(0x7f0000002980), 0x0, &(0x7f0000002a00)}}, {{&(0x7f0000003400)=@hci, 0x80, &(0x7f0000004840), 0x1f3, &(0x7f00000048c0)}}], 0x2, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8, 0x40)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f00000000c0)={0x8, &(0x7f0000000040)=[{}, {}, {<r2=>0x0}, {}, {}, {}, {}, {}]})
ioctl$DRM_IOCTL_NEW_CTX(r1, 0x40086425, &(0x7f0000000100)={r2, 0x3})

07:26:36 executing program 3:
r0 = syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./R\x00\xfd\xfftp\x00', 0x200002, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0285628, &(0x7f0000000180)={0x3})
ioctl$VIDIOC_G_ENC_INDEX(r0, 0x8818564c, &(0x7f0000000380))

07:26:36 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:37 executing program 3:
r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x6287, 0x62400)
r1 = dup2(r0, r0)
ioctl$VIDIOC_S_PARM(r1, 0xc0cc5616, &(0x7f0000000280)={0x3, @output})

[  283.035674] *** Guest State ***
[  283.039139] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  283.048182] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  283.057145] CR3 = 0x0000000000000000
[  283.060903] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  283.067007] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  283.073190] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  283.079969] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  283.088067] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.096160] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.104251] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.112338] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.120387] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.128488] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  283.136623] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  283.144756] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  283.152868] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  283.160908] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  283.167456] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  283.175016] Interruptibility = 00000000  ActivityState = 00000000
[  283.181271] *** Host State ***
07:26:37 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  283.184621] RIP = 0xffffffff81312160  RSP = 0xffff88803ffcf398
[  283.190658] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  283.197170] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  283.205378] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  283.211305] CR0=0000000080050033 CR3=00000000b2a15000 CR4=00000000001426e0
[  283.218486] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  283.225263] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  283.231344] *** Control State ***
[  283.234943] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  283.241643] EntryControls=0000d1ff ExitControls=002fefff
[  283.247236] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  283.254278] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  283.260981] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  283.267707]         reason=80000021 qualification=0000000000000000
[  283.274127] IDTVectoring: info=00000000 errcode=00000000
[  283.279649] TSC Offset = 0xffffff64c2c727c4
07:26:37 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  283.284077] EPT pointer = 0x000000004090c01e
07:26:37 executing program 4:
rt_sigprocmask(0x0, &(0x7f0000032ff8), 0x0, 0x8)
mlock(&(0x7f0000dee000/0x2000)=nil, 0x2000)
mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0)
mlock(&(0x7f00007df000/0x3000)=nil, 0x3000)
mremap(&(0x7f0000bca000/0x1000)=nil, 0x1000, 0x600000, 0x3, &(0x7f0000000000/0x600000)=nil)
r0 = syz_open_dev$vivid(&(0x7f0000000000)='/dev/video#\x00', 0x0, 0x2)
ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f0000000080)={0x0, 0xd579, 0x9, [], &(0x7f0000000040)=0x4})

07:26:37 executing program 3:
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000040)={0x0, 0x0, 0x1})
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f00003d7ff4), 0xc, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="381fc45a87090000003a9d"], 0x1}}, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x81, 0x400000)
ioctl$TCXONC(r1, 0x540a, 0x9)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x7}]}, 0x10)
r2 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x1, 0x2)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r2, 0xc0305602, &(0x7f0000000140)={0x0, 0x3, 0x3011, 0x1})
ioctl$UI_SET_PROPBIT(r2, 0x4004556e, 0xe)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000380)={'bridge0\x00', &(0x7f0000000040)=ANY=[]})

[  283.459299] *** Guest State ***
[  283.462963] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  283.471969] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  283.480852] CR3 = 0x0000000000000000
[  283.484763] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  283.490782] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  283.496920] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  283.503777] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  283.511921] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.519945] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.528074] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.536181] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.544314] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  283.552409] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  283.560961] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  283.569109] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  283.577193] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  283.585322] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  283.591842] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  283.599376] Interruptibility = 00000000  ActivityState = 00000000
[  283.605733] *** Host State ***
[  283.608962] RIP = 0xffffffff81312160  RSP = 0xffff8880ad84f398
[  283.615088] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  283.621571] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  283.629529] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  283.635535] CR0=0000000080050033 CR3=0000000042462000 CR4=00000000001426e0
[  283.642704] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  283.649418] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  283.655612] *** Control State ***
[  283.659114] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  283.665925] EntryControls=0000d1ff ExitControls=002fefff
[  283.671429] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  283.678536] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  283.685320] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  283.692046]         reason=80000021 qualification=0000000000000000
[  283.698411] IDTVectoring: info=00000000 errcode=00000000
[  283.703997] TSC Offset = 0xffffff6487af8d1e
07:26:37 executing program 3:
r0 = socket(0xa, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'lo\x00', <r2=>0x0})
r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x14000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r3, 0x80045400, &(0x7f0000000080))
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000056c0)={&(0x7f0000000200)=@ipv6_newaddr={0x40, 0x14, 0x90b, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @dev}, @IFA_ADDRESS={0x14, 0x8, @mcast1}]}, 0x40}}, 0x0)

[  283.708352] TPR Threshold = 0x00
[  283.711866] EPT pointer = 0x00000000adfd401e
07:26:37 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:37 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$unix(0x1, 0x4000000001, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r2, 0x111, 0x4, 0x1, 0x4)
bind$unix(r0, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
listen(r2, 0x0)
connect(r1, &(0x7f0000987ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
close(r1)
close(r2)

07:26:38 executing program 3:
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000000180c200000086dd60b4090000303aff80000000000000000000ffffe0000002ff0200000000000000000000000000018c0090780009040060b680fa0000000000000000000000000302ffffffffffff00000000000000000000ffffac14ffbb"], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

[  283.987032] *** Guest State ***
[  283.990581] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  283.999708] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  284.008646] CR3 = 0x0000000000000000
[  284.012464] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  284.018471] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  284.024541] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  284.031327] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  284.039547] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  284.047643] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  284.055724] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  284.063820] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  284.071897] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:38 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  284.079912] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  284.088004] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  284.096085] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  284.104190] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  284.112252] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  284.118722] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  284.126260] Interruptibility = 00000000  ActivityState = 00000000
[  284.132590] *** Host State ***
[  284.135845] RIP = 0xffffffff81312160  RSP = 0xffff8880ae26f398
[  284.141965] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  284.148444] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  284.156368] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  284.162398] CR0=0000000080050033 CR3=00000000a1a69000 CR4=00000000001426f0
[  284.169459] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  284.176286] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  284.182445] *** Control State ***
[  284.185932] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  284.192723] EntryControls=0000d1ff ExitControls=002fefff
[  284.198248] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  284.205334] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  284.212115] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  284.218724]         reason=80000021 qualification=0000000000000000
[  284.225173] IDTVectoring: info=00000000 errcode=00000000
[  284.230681] TSC Offset = 0xffffff64417df521
[  284.235142] EPT pointer = 0x00000000409ee01e
07:26:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x1, 0x402000)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, &(0x7f00000000c0)={0x0, 0x0, 0x7f})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000a80)=ANY=[@ANYBLOB="6c07151e4c3cae2fc99c9c4d6703949456cf5d91cccb65a8eb4001891625145844930053f4cbde59fbe388bbd72f22ddb9967a3320a8b08a73e9997e62a2bde076a5340fa2832697b39bef94e193567ff32ca1fc36e6d7377b937ae7be0446200cd2e169a48b", @ANYRES16=r4, @ANYBLOB="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"], 0x34c}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40010}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x1b0, r4, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x130, 0x5, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe6b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa933}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x68b3}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffffff8}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5b3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xdde}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000000000000}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}, @TIPC_NLA_NODE={0x8, 0x6, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x30, 0x5, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x842a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0x34, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8e}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8}]}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x800}, 0x40)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:38 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:38 executing program 4:
socket$isdn(0x22, 0x3, 0x11)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x0, @loopback}}}, 0x0)

07:26:38 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:26:38 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:38 executing program 4:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x40, 0x0)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f0000000140)={0x0, @bt={0x4, 0x80000001, 0x0, 0x3, 0x5, 0x9, 0x1000, 0x6, 0xffffffff, 0x5, 0x9, 0xfffffffffffff393, 0x0, 0x2, 0x3, 0x23}})
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video36\x00', 0x2, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r1, 0x4020565a, &(0x7f0000000100))
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000200)={0x0, @reserved})

07:26:38 executing program 5:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x18)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value={<r1=>0x0}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000140)={r1, 0x800}, 0x8)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000180)=0x81)
ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f00000001c0)="11d2709b3832bcf6e2a0b416e5c8ddfd88bb654363601f9187e5d29f3bd919d11ef9428e4f92d8b2d75660c811921c1f68e057e1e4049dad2a02")
bind$isdn(r0, &(0x7f0000000200)={0x22, 0xfffffffffffffbff, 0x6, 0x372c, 0x1}, 0x6)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000240))
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000280)=@assoc_value={r1, 0x3}, 0x8)
r2 = accept$alg(r0, 0x0, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, &(0x7f00000002c0)={0x3, 0x3})
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300)={r1, 0xfffffffffffffffb}, 0x8)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000440)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000400)={<r3=>0xffffffffffffffff}, 0x13f, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000480)={0xb, 0x10, 0xfa00, {&(0x7f0000000340), r3, 0xfffffffffffffffd}}, 0x18)
bind$vsock_stream(r0, &(0x7f00000004c0)={0x28, 0x0, 0x2710, @reserved}, 0x10)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f0000000500))
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000540)=0x5, 0x4)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000580)={r1, 0x2}, &(0x7f00000005c0)=0x8)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000600), &(0x7f0000000640)=0x18)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f0000000680), &(0x7f00000006c0)=0x4)
ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000740)={0x4, &(0x7f0000000700)=[0x29c, 0x2, 0x100, 0x100]})
r4 = fcntl$getown(r2, 0x9)
sched_setattr(r4, &(0x7f0000000780)={0x30, 0x6, 0x1, 0x3, 0xffff, 0x2, 0x2, 0x2}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000b40)={&(0x7f00000007c0)=@nfc_llcp={0x27, 0x1, 0x0, 0x6, 0x0, 0x7844, "51c161ff1e7e29c7cf4b7bc9379cb1e8ad0d5996b43d2f28ed51ad1ac5b4bf11b28d6f6834ad807bf872befa5bdf383a11e3cfa642565caec3fcb1c8bdb33a", 0x2a}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000840)="fc110a9e2cab25f315530f778b4b29ebe9c3105475e5b1e964ea6fe8df18a9e615d722323c7bb76871", 0x29}, {&(0x7f0000000880)="46b5e960f62bd3aaba850b25a83b4845d17d05949dbad6e5d0e9f2859ca39b08c3aa1ae37f0260bbd6e8768bf022dacdfee33b909bf3e249789dbcc0fd8882d239f1316e6145b7ef86bddabd7bd33489adc3d7fda2a3ffa738ad7501cbf8b398299377091981951ce9940876e9a69b716af4ae1aeca35c83202e379f39a07c320717857da5ebd4249fc41b6446e451520638d6f94f207160bd4e2fbd1c36bacf3bf87c0d27c27a8a4c737b36f16f113b56420d6fc7d0c0c66fa6afde61dd54bab92518eb514affbdb055e06d7b7a25457b07952fb9612a9197ac584b72ed51", 0xdf}, {&(0x7f0000000980)="e1fdfd8a586f1c2ad0317d49fda52c7c481d25abb7a9f26b7bde8e31b96a2ee2e485ff36ad45bb3d401e079a0742901de69890e482e0b5777e4e4033e8f0046d9d6d280e07c08ae55ae8d56e65087368ed2f", 0x52}, {&(0x7f0000000a00)="5ed0dd9a40a6e4071848fbdab9d3d6b974776bb602bac53bb47f9df834e32161353225", 0x23}], 0x4, &(0x7f0000000a80)=[{0xb8, 0x19f, 0x800, "c18553504d0356f3d25dae65a6d4c5ae2fb969b17440c693d244044693e7b685713384f8d6385a4330cbb6064ad69624ea621e0d044f7def3ef8686ba690fb18db66af86d75d18bd7143497f049e8f75f2321fd004cd5100c9bb3294ead701f22d59ca5cf8bdbbe0ba31d2331afb6228439bf7a7d4e96db94a916c7a64a09d5dc634260957c9372ac832862ccd19cef638eb6076baa5f8ea47c2df39e62755a37f5a"}], 0xb8}, 0x800)
write$P9_RWALK(r0, &(0x7f0000000b80)={0x57, 0x6f, 0x1, {0x6, [{0x40, 0x2, 0x2}, {0x83, 0x1}, {0x20, 0x0, 0x4}, {0x1, 0x3, 0x4}, {0x80, 0x3}, {0x14, 0x0, 0x8}]}}, 0x57)
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000c40)='fou\x00')
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x4001}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x2c, r5, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0x62}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x3b}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e23}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8800}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r0, 0x80045301, &(0x7f0000000d40))
ioctl$TIOCMGET(r0, 0x5415, &(0x7f0000000d80))
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000dc0)={0xf, @pix_mp={0x401, 0xfffffffffffffff7, 0x77734757, 0x5, 0xe, [{0x384, 0x6}, {0xfffffffffffff801, 0x8}, {0x861, 0x2}, {0xe7, 0x400}, {0x1000000, 0xffffffffffffffff}, {0x3, 0x6}, {0x7, 0x7}, {0x100000000, 0x7c9}], 0xd7, 0xb1e, 0x3, 0x2, 0x7}})

07:26:38 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r0, &(0x7f0000000240)=ANY=[@ANYRESHEX], 0x10335)
write$cgroup_pid(r1, &(0x7f0000000000), 0xfffffea6)

07:26:38 executing program 3:

07:26:38 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:26:39 executing program 3:

07:26:39 executing program 3:

07:26:39 executing program 4:

07:26:39 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:39 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:39 executing program 3:

07:26:39 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  285.435982] *** Guest State ***
[  285.439504] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  285.448622] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  285.457668] CR3 = 0x0000000000000000
[  285.461429] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  285.467543] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  285.473652] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  285.480444] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  285.488646] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.496741] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.504855] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.512966] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.521045] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:39 executing program 3:

[  285.529137] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  285.537228] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  285.545363] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  285.553468] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  285.561991] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  285.568456] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  285.576012] Interruptibility = 00000000  ActivityState = 00000000
[  285.582325] *** Host State ***
[  285.585604] RIP = 0xffffffff81312160  RSP = 0xffff88803f57f398
[  285.591698] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  285.598270] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  285.606196] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  285.612206] CR0=0000000080050033 CR3=000000008872d000 CR4=00000000001426f0
[  285.619272] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  285.626093] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  285.632270] *** Control State ***
[  285.635832] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  285.642595] EntryControls=0000d1ff ExitControls=002fefff
[  285.648134] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  285.655172] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  285.661972] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  285.668641]         reason=80000021 qualification=0000000000000000
[  285.675058] IDTVectoring: info=00000000 errcode=00000000
[  285.680599] TSC Offset = 0xffffff637a79c292
[  285.685017] EPT pointer = 0x00000000ac64201e
[  285.801517] *** Guest State ***
[  285.805067] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  285.814081] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  285.823058] CR3 = 0x0000000000000000
[  285.826809] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  285.832994] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  285.839086] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  285.845911] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  285.855581] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.863666] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.871781] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.879811] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.887923] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  285.896004] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  285.904116] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  285.912187] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  285.920259] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  285.928347] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  285.934921] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  285.942477] Interruptibility = 00000000  ActivityState = 00000000
[  285.948787] *** Host State ***
[  285.952082] RIP = 0xffffffff81312160  RSP = 0xffff8880a6d1f398
[  285.958155] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  285.964677] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  285.972589] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  285.978592] CR0=0000000080050033 CR3=000000003a06f000 CR4=00000000001426f0
[  285.985720] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  285.992529] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  285.998701] *** Control State ***
[  286.002259] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  286.008995] EntryControls=0000d1ff ExitControls=002fefff
[  286.014565] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  286.021616] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  286.028371] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  286.035086]         reason=80000021 qualification=0000000000000000
[  286.041572] IDTVectoring: info=00000000 errcode=00000000
[  286.047180] TSC Offset = 0xffffff6347705ecd
[  286.051582] TPR Threshold = 0x02
[  286.055061] EPT pointer = 0x00000000394e001e
[  286.161251] IPVS: ftp: loaded support on port[0] = 21
[  286.279993] chnl_net:caif_netlink_parms(): no params data found
[  286.330018] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.336573] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.344631] device bridge_slave_0 entered promiscuous mode
[  286.352791] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.359227] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.366876] device bridge_slave_1 entered promiscuous mode
[  286.387549] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  286.397792] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  286.419114] team0: Port device team_slave_0 added
[  286.425946] team0: Port device team_slave_1 added
[  286.485632] device hsr_slave_0 entered promiscuous mode
[  286.522759] device hsr_slave_1 entered promiscuous mode
[  286.593764] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.600227] bridge0: port 2(bridge_slave_1) entered forwarding state
[  286.607303] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.613881] bridge0: port 1(bridge_slave_0) entered forwarding state
[  286.659050] 8021q: adding VLAN 0 to HW filter on device bond0
[  286.671880] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  286.679986] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.688198] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.696531] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  286.711508] 8021q: adding VLAN 0 to HW filter on device team0
[  286.723723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  286.731513] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.738050] bridge0: port 1(bridge_slave_0) entered forwarding state
[  286.750147] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  286.758331] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.764942] bridge0: port 2(bridge_slave_1) entered forwarding state
[  286.787172] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  286.796037] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  286.807996] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  286.823217] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  286.835984] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  286.846776] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  286.868776] 8021q: adding VLAN 0 to HW filter on device batadv0
07:26:41 executing program 5:

07:26:41 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f0000000280)=""/190, 0xbe}], 0x100000000000021c}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/fib_trie\x00')
preadv(r0, &(0x7f00000017c0), 0x1d0, 0x1f000000)

07:26:41 executing program 3:

07:26:41 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:41 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:41 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:41 executing program 3:

[  287.112159] *** Guest State ***
[  287.115630] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  287.124711] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  287.134852] CR3 = 0x0000000000000000
[  287.138610] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  287.144730] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  287.150776] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  287.157682] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  287.165780] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.173911] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.182019] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.190124] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.198226] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.206383] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  287.214508] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  287.222640] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  287.230659] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  287.238771] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  287.245272] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  287.252849] Interruptibility = 00000000  ActivityState = 00000000
[  287.259115] *** Host State ***
07:26:41 executing program 5:

[  287.262455] RIP = 0xffffffff81312160  RSP = 0xffff888037bcf398
[  287.268560] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  287.275079] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  287.283016] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  287.289011] CR0=0000000080050033 CR3=0000000037aa9000 CR4=00000000001426f0
[  287.296142] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  287.302950] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  287.309081] *** Control State ***
[  287.312643] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  287.319372] EntryControls=0000d1ff ExitControls=002fefff
[  287.324988] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  287.332023] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  287.338727] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  287.345475]         reason=80000021 qualification=0000000000000000
[  287.351909] IDTVectoring: info=00000000 errcode=00000000
[  287.357436] TSC Offset = 0xffffff62937d3958
[  287.361896] EPT pointer = 0x000000003754601e
[  287.403480] *** Guest State ***
[  287.406855] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  287.415913] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  287.425313] CR3 = 0x0000000000000000
[  287.429081] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  287.435291] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  287.441314] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:26:41 executing program 4:

[  287.448210] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  287.456428] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.464607] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.473477] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.481518] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  287.489668] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:41 executing program 5:

[  287.497789] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  287.505924] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  287.514018] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  287.522142] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  287.530166] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  287.536698] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  287.544300] Interruptibility = 00000000  ActivityState = 00000000
[  287.550557] *** Host State ***
[  287.553894] RIP = 0xffffffff81312160  RSP = 0xffff888036bdf398
[  287.560510] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  287.567036] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  287.574987] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  287.580928] CR0=0000000080050033 CR3=000000003afb7000 CR4=00000000001426f0
[  287.588057] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  287.594861] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  287.600964] *** Control State ***
[  287.604522] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  287.611222] EntryControls=0000d1ff ExitControls=002fefff
[  287.616779] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  287.623803] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  287.630498] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  287.637184]         reason=80000021 qualification=0000000000000000
[  287.643643] IDTVectoring: info=00000000 errcode=00000000
[  287.649214] TSC Offset = 0xffffff6292a46bf1
[  287.653634] TPR Threshold = 0x02
[  287.657032] EPT pointer = 0x0000000035e3401e
07:26:41 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

07:26:41 executing program 5:

07:26:41 executing program 3:

07:26:41 executing program 4:

07:26:42 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:42 executing program 3:

07:26:42 executing program 5:

07:26:42 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:42 executing program 4:

07:26:42 executing program 4:

07:26:42 executing program 5:

07:26:42 executing program 3:

[  288.340309] *** Guest State ***
[  288.344052] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  288.353078] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  288.361999] CR3 = 0x0000000000000000
[  288.365745] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  288.371801] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  288.377881] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  288.384665] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  288.392736] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.400829] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.408937] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.418274] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.426426] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.434521] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  288.442649] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  288.450734] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  288.458816] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  288.466915] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  288.473429] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  288.480954] Interruptibility = 00000000  ActivityState = 00000000
[  288.487275] *** Host State ***
[  288.490515] RIP = 0xffffffff81312160  RSP = 0xffff888035e2f398
[  288.496629] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  288.503145] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  288.510992] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  288.517023] CR0=0000000080050033 CR3=0000000037b51000 CR4=00000000001426e0
[  288.524147] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  288.530891] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  288.537044] *** Control State ***
[  288.540535] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  288.547334] EntryControls=0000d1ff ExitControls=002fefff
[  288.552889] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  288.560344] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  288.567156] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  288.573872]         reason=80000021 qualification=0000000000000000
[  288.580228] IDTVectoring: info=00000000 errcode=00000000
[  288.585808] TSC Offset = 0xffffff61ebbced1d
[  288.590156] TPR Threshold = 0x00
[  288.593677] EPT pointer = 0x0000000035eae01e
07:26:42 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:42 executing program 4:

07:26:42 executing program 3:

07:26:42 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = memfd_create(0x0, 0x0)
ioctl$sock_netdev_private(r0, 0x0, 0x0)

[  288.798930] *** Guest State ***
[  288.802459] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  288.811379] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  288.820328] CR3 = 0x0000000000000000
[  288.824155] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  288.830173] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  288.836306] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  288.843132] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  288.851150] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.859692] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.867812] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.875920] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.884031] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  288.892117] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  288.900138] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  288.908287] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  288.916380] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  288.924531] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  288.930978] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  288.938559] Interruptibility = 00000000  ActivityState = 00000000
[  288.944880] *** Host State ***
[  288.948108] RIP = 0xffffffff81312160  RSP = 0xffff888036abf398
[  288.954231] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  288.960687] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  288.968657] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  288.974647] CR0=0000000080050033 CR3=0000000037b0e000 CR4=00000000001426e0
[  288.981824] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  288.988537] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  288.994732] *** Control State ***
[  288.998237] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  289.005072] EntryControls=0000d1ff ExitControls=002fefff
[  289.010595] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  289.017647] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  289.024445] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  289.031057]         reason=80000021 qualification=0000000000000000
[  289.037541] IDTVectoring: info=00000000 errcode=00000000
[  289.043127] TSC Offset = 0xffffff61abb47413
07:26:43 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x0, 0x0}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:43 executing program 3:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000200)='security.capability\x00', 0x0, 0xffffffffffffffae, 0x0)

07:26:43 executing program 4:
dup(0xffffffffffffff9c)
getsockname(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = accept(0xffffffffffffff9c, 0x0, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, 0x0)

07:26:43 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  289.047479] TPR Threshold = 0x02
[  289.050875] EPT pointer = 0x0000000036b6501e
07:26:43 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = memfd_create(0x0, 0x0)
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, 0x0)

[  289.247820] *** Guest State ***
[  289.251276] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  289.260347] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  289.269305] CR3 = 0x0000000000000000
[  289.273161] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  289.279188] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  289.285322] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:26:43 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  289.292208] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  289.300235] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.308373] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.316642] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.324785] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.332885] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.340919] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  289.349060] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  289.357159] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  289.365276] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  289.373428] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  289.379929] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  289.387608] Interruptibility = 00000000  ActivityState = 00000000
[  289.394641] *** Host State ***
[  289.397898] RIP = 0xffffffff81312160  RSP = 0xffff888037a4f398
[  289.404055] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  289.410585] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  289.418515] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  289.424564] CR0=0000000080050033 CR3=0000000035c2e000 CR4=00000000001426e0
[  289.431686] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  289.438468] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  289.444778] *** Control State ***
[  289.448279] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  289.455569] EntryControls=0000d1ff ExitControls=002fefff
[  289.461087] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  289.468189] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  289.474969] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  289.481592]         reason=80000021 qualification=0000000000000000
[  289.488044] IDTVectoring: info=00000000 errcode=00000000
[  289.493610] TSC Offset = 0xffffff616e2ebe3b
07:26:43 executing program 3:
memfd_create(0x0, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = epoll_create(0x0)
ioctl$TCSETAW(r0, 0x5407, 0x0)

[  289.497965] TPR Threshold = 0x00
[  289.501361] EPT pointer = 0x0000000035ff801e
07:26:43 executing program 5:
perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0x910, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
capget(&(0x7f0000000080)={0x19980330, r0}, &(0x7f00000000c0)={0x0, 0x0, 0x4})

07:26:43 executing program 4:
epoll_create1(0x80000)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp6\x00')
preadv(r0, &(0x7f0000000480), 0x1000000000000330, 0x20000)

[  289.748937] capability: warning: `syz-executor.5' uses 32-bit capabilities (legacy support in use)
[  289.767750] *** Guest State ***
[  289.771153] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  289.780215] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  289.789218] CR3 = 0x0000000000000000
[  289.793076] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  289.799172] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  289.805305] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  289.812156] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  289.820274] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.828448] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.836550] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:43 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  289.844743] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.852866] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  289.860884] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  289.869207] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  289.877308] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  289.885480] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  289.893568] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  289.900016] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  289.907609] Interruptibility = 00000000  ActivityState = 00000000
[  289.913938] *** Host State ***
[  289.917175] RIP = 0xffffffff81312160  RSP = 0xffff888035c5f398
[  289.923317] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  289.929832] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  289.937746] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  289.943796] CR0=0000000080050033 CR3=00000000393d4000 CR4=00000000001426e0
[  289.950917] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  289.957710] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  289.963940] *** Control State ***
[  289.967511] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  289.974374] EntryControls=0000d1ff ExitControls=002fefff
[  289.979931] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  289.987000] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  289.993826] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
07:26:44 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x0, 0x0}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  290.000457]         reason=80000021 qualification=0000000000000000
[  290.006952] IDTVectoring: info=00000000 errcode=00000000
[  290.012590] TSC Offset = 0xffffff6126e6cea4
[  290.016945] TPR Threshold = 0x02
[  290.020343] EPT pointer = 0x0000000037e4e01e
07:26:44 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETSTEERINGEBPF(r0, 0x400454d1, &(0x7f00000000c0))
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ASHMEM_SET_NAME(r1, 0x41007701, &(0x7f0000000200)='/dev/net/tun\x00')

07:26:44 executing program 3:
r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000040), 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x4, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="11634840"], 0x0, 0x0, 0x0})

[  290.280293] binder: 11275:11276 transaction failed 29189/-22, size 0-0 line 2994
[  290.306324] *** Guest State ***
[  290.309803] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  290.319060] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  290.328013] CR3 = 0x0000000000000000
[  290.333853] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  290.339884] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  290.346029] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  290.352807] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  290.360830] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.368936] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:44 executing program 3:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/zero\x00', 0x3fffff, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00')
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000280)={0xcc, r1, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x10, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}]}, @TIPC_NLA_MON={0x3c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4414}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2000000000000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}]}, @TIPC_NLA_MON={0x3c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_NET={0x30, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffff}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x80}, 0x40)
r2 = syz_open_dev$loop(&(0x7f0000000240)='/dev/loop#\x00', 0x0, 0x0)
memfd_create(0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(0xffffffffffffffff, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0)
read(r2, 0x0, 0xffffffee)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[  290.374449] binder: undelivered TRANSACTION_ERROR: 29189
[  290.377029] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.390538] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.398634] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.406722] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  290.414810] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  290.422883] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
07:26:44 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  290.430915] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  290.439000] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  290.445571] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  290.453123] Interruptibility = 00000000  ActivityState = 00000000
[  290.459428] *** Host State ***
[  290.462712] RIP = 0xffffffff81312160  RSP = 0xffff888037a8f398
[  290.468781] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
07:26:44 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  290.475304] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  290.483232] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  290.489167] CR0=0000000080050033 CR3=000000004c77d000 CR4=00000000001426e0
[  290.496336] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  290.503139] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  290.509281] *** Control State ***
[  290.512831] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  290.519542] EntryControls=0000d1ff ExitControls=002fefff
07:26:44 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40086602, 0x400007)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0xff4a)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x20032600)
ioctl$EXT4_IOC_MIGRATE(r1, 0x6609)
write$FUSE_DIRENT(r0, 0x0, 0x0)

[  290.525411] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  290.532446] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  290.539187] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  290.545857]         reason=80000021 qualification=0000000000000000
[  290.552292] IDTVectoring: info=00000000 errcode=00000000
[  290.557775] TSC Offset = 0xffffff60de8620be
[  290.562668] TPR Threshold = 0x00
[  290.566126] EPT pointer = 0x0000000037a7701e
07:26:44 executing program 5:
socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)

07:26:44 executing program 4:
r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0x4018620d, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  290.772480] binder: BINDER_SET_CONTEXT_MGR already set
[  290.777863] binder: 11294:11295 ioctl 4018620d 200001c0 returned -16
[  290.827483] *** Guest State ***
[  290.830962] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  290.840059] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  290.849141] CR3 = 0x0000000000000000
[  290.852985] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  290.858988] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  290.865148] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:26:44 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  290.871969] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  290.879986] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.888115] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.896221] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.904354] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.912598] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  290.920607] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  290.928747] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  290.936859] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  290.945018] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  290.953121] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  290.959698] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  290.967315] Interruptibility = 00000000  ActivityState = 00000000
[  290.972436] protocol 88fb is buggy, dev hsr_slave_0
[  290.976135] *** Host State ***
[  290.979040] protocol 88fb is buggy, dev hsr_slave_1
[  290.981903] RIP = 0xffffffff81312160  RSP = 0xffff88809297f398
[  290.992974] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  290.999496] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  291.007520] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  291.013547] CR0=0000000080050033 CR3=0000000035c05000 CR4=00000000001426e0
[  291.020631] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
07:26:45 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
timer_create(0x0, 0x0, &(0x7f00000000c0))

[  291.027556] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  291.033699] *** Control State ***
[  291.037190] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  291.044003] EntryControls=0000d1ff ExitControls=002fefff
[  291.049608] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  291.052428] protocol 88fb is buggy, dev hsr_slave_0
[  291.056624] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  291.062181] protocol 88fb is buggy, dev hsr_slave_1
07:26:45 executing program 3:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'eql\x00', 0x10000803})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x308)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_ifreq(r1, 0x8914, &(0x7f0000000200)={'eql\x00`\x00\xa9[,\x00\x00\x00\x00!\x00\x01', @ifru_mtu=0x7})
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)

07:26:45 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x0, 0x0}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  291.068418] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  291.080026]         reason=80000021 qualification=0000000000000000
[  291.086488] IDTVectoring: info=00000000 errcode=00000000
[  291.092029] TSC Offset = 0xffffff60960cd906
[  291.096368] TPR Threshold = 0x02
[  291.099764] EPT pointer = 0x000000003623301e
[  291.319762] *** Guest State ***
[  291.329807] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  291.338801] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  291.347740] CR3 = 0x0000000000000000
[  291.351483] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  291.357578] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  291.363683] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  291.370384] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  291.378523] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  291.386885] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  291.395541] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  291.403632] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  291.411649] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  291.419737] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  291.427846] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  291.435954] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  291.444041] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  291.452514] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  291.459017] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  291.466556] Interruptibility = 00000000  ActivityState = 00000000
[  291.472892] *** Host State ***
[  291.476203] RIP = 0xffffffff81312160  RSP = 0xffff888037e5f398
[  291.482289] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  291.488779] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  291.496671] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  291.502689] CR0=0000000080050033 CR3=0000000035fe4000 CR4=00000000001426e0
[  291.509810] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
07:26:45 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:45 executing program 5:
syz_emit_ethernet(0x66, &(0x7f0000000080)={@local, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x30, 0x2f, 0x0, @ipv4={[0xb, 0x2, 0x543, 0x2, 0xe80, 0x0, 0xe80, 0x0, 0x6], [], @multicast2}, @mcast2, {[], @icmpv6=@time_exceed={0x3a, 0x0, 0x0, 0x0, [0x7, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [], @broadcast}, @ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}}}}}}, 0x0)

[  291.516597] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  291.522767] *** Control State ***
[  291.526330] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  291.533215] EntryControls=0000d1ff ExitControls=002fefff
[  291.538752] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  291.545795] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  291.552600] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  291.559210]         reason=80000021 qualification=0000000000000000
[  291.566144] IDTVectoring: info=00000000 errcode=00000000
[  291.571631] TSC Offset = 0xffffff605281bfeb
[  291.576081] TPR Threshold = 0x00
[  291.579486] EPT pointer = 0x0000000035f3301e
07:26:45 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_emit_ethernet(0xffb6, &(0x7f000000a000)={@broadcast=[0xff, 0xe0], @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x3, 0x0, 0xfec3, 0x0, 0x0, 0x0, 0x2f, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @udp={0x0, 0x883e, 0xffffca88}}}}}, 0x0)

[  291.780898] ip_tunnel: non-ECT from 172.20.255.187 with TOS=0x3
07:26:45 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:45 executing program 5:
syz_open_dev$vbi(0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  291.900210] ip_tunnel: non-ECT from 172.20.255.187 with TOS=0x3
[  291.950646] *** Guest State ***
[  291.954396] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  291.963511] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  291.972515] CR3 = 0x0000000000000000
[  291.976274] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  291.982432] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  291.988550] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  291.995387] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  292.003533] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.011559] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.019793] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.028040] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.036208] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:46 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:46 executing program 3:
syz_open_dev$vbi(0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
clone(0x12102001ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)
unshare(0x40000000)

[  292.044327] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  292.052510] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  292.060528] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  292.068678] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  292.076821] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  292.083439] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  292.090972] Interruptibility = 00000000  ActivityState = 00000000
[  292.097301] *** Host State ***
[  292.100534] RIP = 0xffffffff81312160  RSP = 0xffff8880374bf398
[  292.106710] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  292.113251] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  292.121144] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  292.127158] CR0=0000000080050033 CR3=0000000037a73000 CR4=00000000001426f0
[  292.134326] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  292.141043] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  292.147286] *** Control State ***
[  292.150823] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  292.157605] EntryControls=0000d1ff ExitControls=002fefff
[  292.163203] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  292.170247] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  292.177045] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  292.183768]         reason=80000021 qualification=0000000000000000
[  292.190172] IDTVectoring: info=00000000 errcode=00000000
[  292.195728] TSC Offset = 0xffffff5fff4e5f7a
07:26:46 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  292.200125] TPR Threshold = 0x00
[  292.203602] EPT pointer = 0x0000000037e6101e
07:26:46 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  292.468380] *** Guest State ***
[  292.472068] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  292.480958] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  292.490030] CR3 = 0x0000000000000000
[  292.493861] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  292.499866] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  292.505989] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  292.512843] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  292.520884] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.529023] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.537142] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.545291] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.553451] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  292.561478] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  292.569641] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  292.577722] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  292.585860] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  292.593961] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  292.600405] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  292.608022] Interruptibility = 00000000  ActivityState = 00000000
[  292.614356] *** Host State ***
[  292.617605] RIP = 0xffffffff81312160  RSP = 0xffff8880358bf398
[  292.623733] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  292.630185] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  292.638131] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  292.644140] CR0=0000000080050033 CR3=0000000035e04000 CR4=00000000001426f0
[  292.651199] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  292.658020] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  292.664196] *** Control State ***
[  292.667682] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  292.674509] EntryControls=0000d1ff ExitControls=002fefff
[  292.680006] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  292.687094] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  292.693915] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  292.700551]         reason=80000021 qualification=0000000000000000
[  292.707018] IDTVectoring: info=00000000 errcode=00000000
[  292.712611] TSC Offset = 0xffffff5fb528aeb1
[  292.716965] TPR Threshold = 0x00
[  292.720357] EPT pointer = 0x000000003321001e
07:26:46 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  293.077138] *** Guest State ***
[  293.080787] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  293.089829] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  293.098991] CR3 = 0x0000000000000000
[  293.102865] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  293.108888] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  293.115039] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  293.121907] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  293.129936] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  293.138872] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  293.146976] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  293.155103] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  293.163209] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  293.171218] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  293.179374] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  293.187464] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  293.195549] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  293.203608] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  293.210037] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  293.217607] Interruptibility = 00000000  ActivityState = 00000000
[  293.224006] *** Host State ***
[  293.227254] RIP = 0xffffffff81312160  RSP = 0xffff8880359df398
[  293.233388] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  293.239851] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  293.247850] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  293.253862] CR0=0000000080050033 CR3=0000000035ebb000 CR4=00000000001426f0
[  293.260923] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  293.267760] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  293.274165] *** Control State ***
[  293.277658] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  293.284468] EntryControls=0000d1ff ExitControls=002fefff
[  293.289958] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  293.297023] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  293.303796] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  293.310439]         reason=80000021 qualification=0000000000000000
[  293.316905] IDTVectoring: info=00000000 errcode=00000000
[  293.322460] TSC Offset = 0xffffff5f62126af6
07:26:47 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000440)="480000001500197f09004b0101048c590188ffffcf5d3474bc9240e10520613057fff7e07900e0413ff26bb452cf9e8a62bf5b3b8c3cfe5f0028213ee20600d4ff5bffff00c7e5ed", 0x48}], 0x1)

[  293.326809] TPR Threshold = 0x00
[  293.330197] EPT pointer = 0x000000003597401e
07:26:47 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:48 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:48 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:48 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:48 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:48 executing program 5:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="020a840007000000ebff0fd8e44d0a5705001a0005000075144a8ec7e430cb000000000200000000000000eaff00000000000000000086"], 0x37}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x4000000000002f9, 0x0)

07:26:48 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  294.749994] *** Guest State ***
[  294.753688] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  294.762691] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  294.771562] CR3 = 0x0000000000000000
[  294.773536] *** Guest State ***
[  294.775535] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  294.775563] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  294.778858] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  294.784892] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  294.784923] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  294.784962] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.784995] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.785027] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.785059] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.785091] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.785117] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  294.785150] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  294.785175] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  294.785207] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  294.785235] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  294.791217] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  294.800282] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  294.807023] CR3 = 0x0000000000000000
[  294.815810] Interruptibility = 00000000  ActivityState = 00000000
[  294.823754] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  294.831752] *** Host State ***
[  294.831784] RIP = 0xffffffff81312160  RSP = 0xffff8880363af398
[  294.839764] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  294.847795] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  294.847827] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  294.855836] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  294.863831] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  294.863860] CR0=0000000080050033 CR3=000000003ae78000 CR4=00000000001426e0
[  294.871870] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  294.879824] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  294.887837] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.894265] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  294.894284] *** Control State ***
[  294.903190] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.910618] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  294.914591] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.920788] EntryControls=0000d1ff ExitControls=002fefff
[  294.920814] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  294.926839] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.930010] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  294.936035] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  294.942030] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  294.942054]         reason=80000021 qualification=0000000000000000
[  294.948461] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  294.956292] IDTVectoring: info=00000000 errcode=00000000
[  294.956313] TSC Offset = 0xffffff5e7c0d3a67
[  294.963060] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  294.968917] TPR Threshold = 0x00
[  294.975986] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  294.983978] EPT pointer = 0x00000000abfdf01e
[  295.121379] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  295.129525] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  295.136071] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  295.143636] Interruptibility = 00000000  ActivityState = 00000000
[  295.149897] *** Host State ***
[  295.153258] RIP = 0xffffffff81312160  RSP = 0xffff888037f1f398
[  295.159349] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  295.165867] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  295.173811] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  295.179788] CR0=0000000080050033 CR3=000000003636b000 CR4=00000000001426f0
[  295.186924] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  295.193731] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  295.199815] *** Control State ***
[  295.203431] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  295.210135] EntryControls=0000d1ff ExitControls=002fefff
[  295.215733] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  295.222769] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  295.229472] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  295.236177]         reason=80000021 qualification=0000000000000000
[  295.242601] IDTVectoring: info=00000000 errcode=00000000
[  295.248078] TSC Offset = 0xffffff5e78bcda09
07:26:49 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  295.252527] TPR Threshold = 0x00
[  295.255934] EPT pointer = 0x000000003587601e
07:26:49 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  295.353499] *** Guest State ***
[  295.356932] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  295.365990] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  295.375036] CR3 = 0x0000000000000000
[  295.378788] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  295.384910] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  295.390925] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  295.398241] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  295.406385] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  295.414542] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  295.422638] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  295.430654] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  295.438825] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  295.446928] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  295.456286] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  295.464370] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  295.472516] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  295.480515] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  295.487054] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  295.494706] Interruptibility = 00000000  ActivityState = 00000000
[  295.500961] *** Host State ***
[  295.504315] RIP = 0xffffffff81312160  RSP = 0xffff88803aeef398
[  295.510342] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  295.516910] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  295.525666] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  295.531589] CR0=0000000080050033 CR3=0000000035f37000 CR4=00000000001426f0
[  295.538908] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  295.545679] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  295.551885] *** Control State ***
[  295.555374] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  295.562621] EntryControls=0000d1ff ExitControls=002fefff
[  295.568281] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  295.575331] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  295.582139] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  295.588751]         reason=80000021 qualification=0000000000000000
[  295.595261] IDTVectoring: info=00000000 errcode=00000000
[  295.600786] TSC Offset = 0xffffff5e293c8326
07:26:49 executing program 5:
mlockall(0x3)
clone(0x1080002, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x1)

07:26:49 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:49 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  295.605280] TPR Threshold = 0x00
[  295.608676] EPT pointer = 0x000000003aed001e
07:26:49 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x2, 0x0)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000000))
ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000000380))

07:26:49 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

07:26:49 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:50 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

07:26:50 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000240)='/dev/loop#\x00', 0x10, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\xb7\xef\xab\x8e\x89\xd7zU74iX\xdf\xa4\xe6G\xdf\xd6\xbc\xd1i\xbf\xf5\x1a,Bv~D\x1c1\x99\xff\xc5k\xf9\xf1\x93 S\xa9\xce\'&P,\x80P1\xf8\x18\'\x7fR<^\x14\xe7R\x82r|\xa4\xda\xdc\x89\xaa\xf4\xe5\xab[\xa1(E\x9d\x9br\x12/R8O<\xf0\xdb\xe3g^\xf4\xb9\xa0(\xaa\x81#\xf9P\xdd\xab_\xf2\x01\xdc\x816\x7f\x89s\r\xb7\a\t/', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
dup3(r1, r0, 0x0)

[  296.075317] *** Guest State ***
[  296.078742] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  296.087768] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  296.098608] CR3 = 0x0000000000000000
[  296.102538] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  296.108567] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  296.114703] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  296.121445] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  296.129629] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.137747] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.145887] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.153991] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.162132] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.170223] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  296.178327] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  296.186458] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  296.194583] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  296.202685] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  296.209131] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  296.216752] Interruptibility = 00000000  ActivityState = 00000000
[  296.223085] *** Host State ***
[  296.226323] RIP = 0xffffffff81312160  RSP = 0xffff8880362bf398
[  296.232464] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  296.238922] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  296.246880] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  296.252886] CR0=0000000080050033 CR3=0000000035f37000 CR4=00000000001426f0
[  296.260003] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  296.266797] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  296.272998] *** Control State ***
[  296.276580] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  296.283359] EntryControls=0000d1ff ExitControls=002fefff
[  296.288850] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  296.295922] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  296.302719] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  296.309389]         reason=80000021 qualification=0000000000000000
07:26:50 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='rpc_pipefs\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x1)

07:26:50 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  296.315827] IDTVectoring: info=00000000 errcode=00000000
[  296.328816] TSC Offset = 0xffffff5dc8757d2b
[  296.333231] TPR Threshold = 0x00
[  296.336628] EPT pointer = 0x000000003ae8301e
07:26:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000400)='net/udplite6\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000240)=""/191, 0xbf}], 0x1, 0x0)

07:26:50 executing program 5:
socketpair(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000))
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

07:26:50 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:50 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:50 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:50 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_pts(r0, 0x0)
dup3(r1, r2, 0x0)
dup3(r2, r0, 0x0)

07:26:50 executing program 0:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  296.821237] *** Guest State ***
[  296.824716] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  296.833777] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  296.842702] CR3 = 0x0000000000000000
[  296.846449] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  296.852545] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  296.858568] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  296.865353] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  296.873423] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.881470] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.889543] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.897645] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.905739] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  296.913799] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
07:26:51 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f00000000c0)=[0xd0dd])

[  296.921868] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  296.929870] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  296.938094] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  296.946184] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  296.952717] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  296.960285] Interruptibility = 00000000  ActivityState = 00000000
[  296.966613] *** Host State ***
[  296.969971] RIP = 0xffffffff81312160  RSP = 0xffff8880363ef398
[  296.976086] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  296.982592] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  296.990476] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  296.996477] CR0=0000000080050033 CR3=00000000363f6000 CR4=00000000001426e0
[  297.003618] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  297.010385] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  297.016543] *** Control State ***
[  297.020074] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  297.026824] EntryControls=0000d1ff ExitControls=002fefff
[  297.032394] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  297.039363] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  297.046150] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  297.052819]         reason=80000021 qualification=0000000000000000
[  297.059166] IDTVectoring: info=00000000 errcode=00000000
[  297.064737] TSC Offset = 0xffffff5d60c45180
[  297.069111] TPR Threshold = 0x00
[  297.072599] EPT pointer = 0x0000000091d5a01e
07:26:51 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="1adc1f123c123f3188b070")
mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff)
lsetxattr$security_capability(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='security.capability\x00', 0x0, 0x0, 0x0)
setxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f0000000180)=@sha1={0x1, "3cb0f9a4e52e0859be3ffbf50a074e575eb17723"}, 0x15, 0x0)

07:26:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:51 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:51 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0)
syz_open_dev$sndtimer(&(0x7f00000001c0)='/dev/snd/timer\x00', 0x0, 0x1)
ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609)
mlockall(0x3)
clone(0x1080002, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x1)
ftruncate(0xffffffffffffffff, 0xd884)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffff9c, 0x10, &(0x7f0000000180)={0x0}}, 0x10)

[  297.450649] *** Guest State ***
[  297.454234] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  297.463220] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  297.472209] CR3 = 0x0000000000000000
[  297.472478] *** Guest State ***
[  297.475973] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  297.475998] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  297.476026] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  297.476058] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  297.476104] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.479388] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  297.485461] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.485495] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.485529] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.485572] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.491534] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  297.491548] CR3 = 0x0000000000000000
[  297.491566] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  297.491596] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  297.498342] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  297.498375] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  297.498397] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  297.498435] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  297.498454] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  297.498476] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  297.498495] Interruptibility = 00000000  ActivityState = 00000000
[  297.498505] *** Host State ***
[  297.498539] RIP = 0xffffffff81312160  RSP = 0xffff88809474f398
[  297.506601] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  297.514632] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  297.514661] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  297.514683] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  297.514717] CR0=0000000080050033 CR3=0000000037508000 CR4=00000000001426e0
[  297.523628] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  297.531584] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  297.539659] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.547633] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  297.555678] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.565024] *** Control State ***
[  297.565044] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  297.565059] EntryControls=0000d1ff ExitControls=002fefff
[  297.565081] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  297.565099] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  297.565128] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  297.568847] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.574852]         reason=80000021 qualification=0000000000000000
[  297.574876] IDTVectoring: info=00000000 errcode=00000000
[  297.580852] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  297.588845] TSC Offset = 0xffffff5d0b37f876
[  297.588857] TPR Threshold = 0x00
[  297.588878] EPT pointer = 0x0000000035e3301e
[  297.596916] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:51 executing program 4:
r0 = socket$inet(0x2, 0x200000000003, 0x19)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@loopback}}, 0xe8)

07:26:51 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  297.596937] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  297.596973] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  297.814445] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  297.822570] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  297.830619] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  297.837191] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  297.844766] Interruptibility = 00000000  ActivityState = 00000000
[  297.851058] *** Host State ***
[  297.854534] RIP = 0xffffffff81312160  RSP = 0xffff888092fdf398
[  297.860575] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  297.867145] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  297.875056] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  297.880993] CR0=0000000080050033 CR3=00000000a580d000 CR4=00000000001426f0
[  297.888203] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  297.894998] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
07:26:51 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  297.901141] *** Control State ***
[  297.904685] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  297.911409] EntryControls=0000d1ff ExitControls=002fefff
[  297.916996] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  297.924066] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  297.930789] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  297.937530]         reason=80000021 qualification=0000000000000000
[  297.943936] IDTVectoring: info=00000000 errcode=00000000
[  297.949452] TSC Offset = 0xffffff5d06fea6da
[  297.953880] TPR Threshold = 0x00
[  297.957267] EPT pointer = 0x00000000ab14901e
07:26:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:52 executing program 5:
perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x800005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000080)={0x400000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000600)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000001c0), 0x1000002ac)
read(r0, &(0x7f0000000200)=""/250, 0x50c7e3e3)

07:26:52 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
recvfrom$packet(r0, 0x0, 0x0, 0x2000, 0x0, 0x0)

07:26:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:52 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000bc0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cdf0319fa22748f9a91c66b3", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
ioctl$PPPIOCGIDLE(0xffffffffffffffff, 0x8008743f, 0x0)
sendmsg$alg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000027c0)="cda05ee85dbd5f680838d9042ae6b8e7d7fae0467f79c2ec6bc7df641853d4b930a4834cbf109481518b8e74118647bb4307f249a83d1ecf578b787e77c384cec9bf7f0852425f2bb62be35f86428a185b8acadacee3a451aebacfab5c2ab96f2c6d1fd5a4ad0d", 0x67}], 0x1}, 0x240088c4)
recvmmsg(r1, &(0x7f0000006880)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000017c0)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)

07:26:52 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:52 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f000039a000)=[{0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:53 executing program 4:
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

07:26:53 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

07:26:53 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:53 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

07:26:53 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000017000)=0xfffff7fffffffffd, 0x4)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10)

07:26:53 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0xffd8)

07:26:53 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:53 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:53 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x2, 0x0)
readv(r0, &(0x7f0000002200)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x1)

07:26:53 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:53 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f000039a000)=[{0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:54 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

07:26:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:54 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:54 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="f500d56b852800000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e9511a86d604a40e2681d0a25096927c90d6216eeb176c540a30ba65d74c8d3802305134bc79bd417d1ab02f6be3363ed1b1830e0cd88f6fe1c63e69359deb"])
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:54 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  300.690937] *** Guest State ***
[  300.694629] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  300.703648] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  300.712697] CR3 = 0x0000000000000000
[  300.716455] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  300.722602] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  300.728620] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  300.735516] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  300.743633] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  300.751651] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  300.759839] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  300.768057] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  300.776208] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  300.784318] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  300.792474] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  300.800587] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  300.808677] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  300.816809] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  300.823322] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  300.830855] Interruptibility = 00000000  ActivityState = 00000000
[  300.837215] *** Host State ***
[  300.840518] RIP = 0xffffffff81312160  RSP = 0xffff888093a0f398
[  300.846630] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  300.853187] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  300.861029] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  300.867125] CR0=0000000080050033 CR3=000000009092a000 CR4=00000000001426f0
[  300.874277] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  300.881036] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  300.887203] *** Control State ***
07:26:54 executing program 4:

07:26:54 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f000039a000)=[{0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:54 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  300.890742] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  300.897544] EntryControls=0000d1ff ExitControls=002fefff
[  300.903174] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  300.910154] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  300.916952] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  300.923691]         reason=80000021 qualification=0000000000000000
[  300.930047] IDTVectoring: info=00000000 errcode=00000000
[  300.935644] TSC Offset = 0xffffff5b504529e0
[  300.940003] TPR Threshold = 0x00
[  300.943527] EPT pointer = 0x0000000037f2001e
07:26:55 executing program 5:

07:26:55 executing program 2:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="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"])
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:55 executing program 4:

07:26:55 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:55 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x0, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  301.417097] *** Guest State ***
[  301.420573] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  301.429682] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  301.438689] CR3 = 0x0000000000000000
[  301.442603] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  301.448645] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  301.456093] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  301.462983] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  301.471051] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.479227] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.487341] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.495539] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.503651] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.511670] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  301.519842] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  301.527959] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  301.536104] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  301.544212] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  301.545855] *** Guest State ***
[  301.550647] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  301.550671] Interruptibility = 00000000  ActivityState = 00000000
[  301.550692] *** Host State ***
[  301.550717] RIP = 0xffffffff81312160  RSP = 0xffff88809594f398
[  301.550756] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  301.550782] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  301.550814] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  301.554528] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  301.562265] CR0=0000000080050033 CR3=0000000088bdb000 CR4=00000000001426f0
[  301.562300] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  301.568542] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  301.571788] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  301.577733] CR3 = 0x0000000000000000
[  301.577758] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  301.584225] *** Control State ***
[  301.584248] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  301.584265] EntryControls=0000d1ff ExitControls=002fefff
[  301.584294] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  301.592145] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  301.592173] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  301.598042] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  301.598061] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  301.598078]         reason=80000021 qualification=0000000000000000
[  301.598102] IDTVectoring: info=00000000 errcode=00000000
[  301.607007] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  301.614056] TSC Offset = 0xffffff5aed7994cf
07:26:55 executing program 4:
clone(0xfffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
clone(0x1000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3)
ptrace$cont(0x18, r0, 0x0, 0x0)
splice(0xffffffffffffffff, &(0x7f0000000000)=0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x20000000, 0x9f})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x1f, r0, 0x0, 0x0)

[  301.620725] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.629706] TPR Threshold = 0x00
[  301.629722] EPT pointer = 0x00000000926cc01e
[  301.734634] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.742754] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.750855] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  301.759008] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:55 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000bc0)="0adc1f123c123f3188b070")
r1 = socket(0x10, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'bond0\x00', 0x300})

[  301.767123] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  301.775240] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  301.783356] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  301.791386] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  301.799504] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  301.806015] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  301.813599] Interruptibility = 00000000  ActivityState = 00000000
[  301.819923] *** Host State ***
[  301.823233] RIP = 0xffffffff81312160  RSP = 0xffff8880935ef398
[  301.829299] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  301.835825] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  301.843767] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  301.849699] CR0=0000000080050033 CR3=0000000035d00000 CR4=00000000001426e0
[  301.857490] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  301.864308] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  301.870480] *** Control State ***
[  301.874032] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  301.880772] EntryControls=0000d1ff ExitControls=002fefff
[  301.886326] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  301.893376] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  301.900164] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  301.906841]         reason=80000021 qualification=0000000000000000
[  301.913284] IDTVectoring: info=00000000 errcode=00000000
[  301.918780] TSC Offset = 0xffffff5ad9ff31c1
[  301.923211] TPR Threshold = 0x00
[  301.926604] EPT pointer = 0x0000000035e0401e
[  301.943519] ptrace attach of "/root/syz-executor.4"[11607] was attempted by "/root/syz-executor.4"[11609]
07:26:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  302.002583] device bond0 entered promiscuous mode
[  302.007604] device bond_slave_0 entered promiscuous mode
[  302.013837] device bond_slave_1 entered promiscuous mode
07:26:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  302.330560] *** Guest State ***
[  302.334118] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  302.343220] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  302.352159] CR3 = 0x0000000000000000
[  302.355949] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  302.362032] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  302.368048] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  302.374938] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  302.383050] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  302.391077] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  302.399200] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  302.407305] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  302.415512] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  302.423640] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  302.431702] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  302.439784] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  302.447908] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  302.456041] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  302.462603] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  302.470160] Interruptibility = 00000000  ActivityState = 00000000
[  302.476504] *** Host State ***
[  302.479751] RIP = 0xffffffff81312160  RSP = 0xffff888091d6f398
[  302.485876] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  302.492826] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  302.500719] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  302.506723] CR0=0000000080050033 CR3=00000000ae0f0000 CR4=00000000001426e0
[  302.513925] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  302.520646] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  302.526839] *** Control State ***
07:26:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  302.530407] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  302.537201] EntryControls=0000d1ff ExitControls=002fefff
[  302.542781] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  302.549798] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  302.556566] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  302.563769]         reason=80000021 qualification=0000000000000000
[  302.570173] IDTVectoring: info=00000000 errcode=00000000
[  302.575725] TSC Offset = 0xffffff5a6d728df7
[  302.580075] TPR Threshold = 0x00
[  302.583580] EPT pointer = 0x0000000035c5201e
07:26:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:56 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x0, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:56 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000bc0)="0adc1f123c123f3188b070")
r1 = socket(0x10, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'bond0\x00', 0x300})

07:26:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:26:57 executing program 3:
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:57 executing program 5:

07:26:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:57 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:57 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:26:57 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x0, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:57 executing program 5:

[  303.475286] *** Guest State ***
[  303.478804] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  303.487844] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  303.496867] CR3 = 0x0000000000000000
[  303.500656] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  303.506841] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  303.512984] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  303.518812] *** Guest State ***
[  303.519712] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  303.519750] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.519787] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.519829] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.523185] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  303.523221] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  303.531198] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.540390] CR3 = 0x0000000000000000
[  303.547302] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.555330] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  303.564709] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  303.564743] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  303.564775] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  303.573664] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  303.581633] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  303.585415] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  303.593413] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  303.593431] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  303.593449] Interruptibility = 00000000  ActivityState = 00000000
[  303.593478] *** Host State ***
[  303.599472] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  303.607472] RIP = 0xffffffff81312160  RSP = 0xffff88809090f398
[  303.607513] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  303.615570] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.615599] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.615642] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.623648] FSBase=00007f04313d6700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  303.623678] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  303.629647] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.637844] CR0=0000000080050033 CR3=00000000ac68f000 CR4=00000000001426e0
[  303.644392] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  303.650789] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  303.658286] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  303.664565] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  303.664581] *** Control State ***
[  303.667782] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  303.675777] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  303.675801] EntryControls=0000d1ff ExitControls=002fefff
[  303.681823] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  303.688221] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  303.696263] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  303.704324] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  303.712319] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  303.720091] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  303.720116]         reason=80000021 qualification=0000000000000000
[  303.726062] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  303.734078] IDTVectoring: info=00000000 errcode=00000000
[  303.734101] TSC Offset = 0xffffff59d3311443
[  303.741110] Interruptibility = 00000000  ActivityState = 00000000
[  303.749164] TPR Threshold = 0x00
[  303.755829] *** Host State ***
[  303.755859] RIP = 0xffffffff81312160  RSP = 0xffff888091dff398
[  303.763872] EPT pointer = 0x0000000092d0e01e
[  303.883839] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  303.890292] FSBase=00007f0e7a106700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  303.898270] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  303.904274] CR0=0000000080050033 CR3=00000000959e1000 CR4=00000000001426f0
[  303.911330] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  303.918152] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  303.924306] *** Control State ***
[  303.927796] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  303.934607] EntryControls=0000d1ff ExitControls=002fefff
[  303.940116] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  303.947187] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  303.953989] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  303.960599]         reason=80000021 qualification=0000000000000000
[  303.967059] IDTVectoring: info=00000000 errcode=00000000
[  303.972606] TSC Offset = 0xffffff59ca6a3ea1
07:26:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  303.976945] TPR Threshold = 0x00
[  303.980332] EPT pointer = 0x00000000904d601e
07:26:58 executing program 5:

07:26:58 executing program 3:
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:26:58 executing program 5:

07:26:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:58 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:58 executing program 5:

07:26:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  304.528146] *** Guest State ***
[  304.531636] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  304.540795] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  304.549932] CR3 = 0x0000000000000000
[  304.553818] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  304.559837] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  304.566021] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  304.572885] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  304.580951] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  304.589058] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  304.597180] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  304.605292] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  304.613449] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  304.621579] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  304.629688] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  304.637815] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  304.645925] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  304.654043] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  304.660503] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  304.668222] Interruptibility = 00000000  ActivityState = 00000000
[  304.674584] *** Host State ***
07:26:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  304.677834] RIP = 0xffffffff81312160  RSP = 0xffff88809597f398
[  304.683988] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  304.690450] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  304.698425] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  304.704480] CR0=0000000080050033 CR3=0000000037b11000 CR4=00000000001426f0
[  304.711543] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  304.718349] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  304.724521] *** Control State ***
[  304.728033] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  304.734843] EntryControls=0000d1ff ExitControls=002fefff
[  304.740333] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  304.747402] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  304.754173] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  304.760822]         reason=80000021 qualification=0000000000000000
[  304.767246] IDTVectoring: info=00000000 errcode=00000000
[  304.772856] TSC Offset = 0xffffff59434ee108
[  304.777204] TPR Threshold = 0x00
[  304.780657] EPT pointer = 0x0000000092d1301e
07:26:58 executing program 5:

07:26:59 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:26:59 executing program 5:

07:26:59 executing program 3:
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:26:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:26:59 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:26:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:59 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:59 executing program 5:

07:26:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  305.509094] *** Guest State ***
[  305.512715] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  305.521605] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  305.530661] CR3 = 0x0000000000000000
[  305.534471] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  305.540485] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  305.546621] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  305.553393] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  305.562507] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  305.570529] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  305.578674] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  305.586751] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  305.594864] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:26:59 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:26:59 executing program 5:

[  305.602979] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  305.611017] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  305.619161] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  305.627264] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  305.635380] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  305.641888] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  305.649415] Interruptibility = 00000000  ActivityState = 00000000
[  305.655733] *** Host State ***
[  305.658961] RIP = 0xffffffff81312160  RSP = 0xffff888036a3f398
[  305.665096] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  305.671547] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  305.679506] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  305.685510] CR0=0000000080050033 CR3=000000010a0fa000 CR4=00000000001426e0
[  305.692658] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  305.699426] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  305.705599] *** Control State ***
[  305.709129] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  305.715904] EntryControls=0000d1ff ExitControls=002fefff
[  305.721394] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  305.728457] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  305.735246] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  305.741929]         reason=80000021 qualification=0000000000000000
[  305.748360] IDTVectoring: info=00000000 errcode=00000000
[  305.753902] TSC Offset = 0xffffff58ba8db754
07:26:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  305.758290] EPT pointer = 0x00000000a1ad701e
07:26:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:00 executing program 5:

[  306.030759] *** Guest State ***
[  306.034348] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  306.043326] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  306.052258] CR3 = 0x0000000000000000
[  306.056015] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  306.062132] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  306.068143] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  306.074995] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  306.083085] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  306.091105] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  306.099288] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  306.107373] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  306.115546] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  306.123724] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  306.131847] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  306.139857] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  306.148009] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  306.156097] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  306.162635] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  306.170125] Interruptibility = 00000000  ActivityState = 00000000
[  306.176497] *** Host State ***
07:27:00 executing program 3:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:00 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  306.179726] RIP = 0xffffffff81312160  RSP = 0xffff888127bff398
[  306.185850] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  306.192365] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  306.200265] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  306.206265] CR0=0000000080050033 CR3=0000000094394000 CR4=00000000001426e0
[  306.213431] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  306.220147] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  306.226534] *** Control State ***
07:27:00 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:27:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  306.230037] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  306.236847] EntryControls=0000d1ff ExitControls=002fefff
[  306.242428] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  306.249456] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  306.256229] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  306.262947]         reason=80000021 qualification=0000000000000000
[  306.269309] IDTVectoring: info=00000000 errcode=00000000
[  306.274886] TSC Offset = 0xffffff5871a76e31
[  306.279285] TPR Threshold = 0x00
[  306.282747] EPT pointer = 0x00000000ae0dc01e
07:27:00 executing program 5:

07:27:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:00 executing program 5:

07:27:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:00 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c803f3188b070")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1800000031002908100000000020f1ff0200000004000000"], 0x1}}, 0x0)

[  306.981522] *** Guest State ***
[  306.985340] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  306.994411] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  307.003367] CR3 = 0x0000000000000000
[  307.007123] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  307.013205] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  307.019218] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  307.026074] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  307.034285] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.042423] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.050457] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.058734] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.066852] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.074972] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  307.083173] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  307.091219] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  307.099314] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  307.107419] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  307.113945] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  307.121424] Interruptibility = 00000000  ActivityState = 00000000
[  307.127817] *** Host State ***
[  307.131087] RIP = 0xffffffff81312160  RSP = 0xffff888095ecf398
[  307.137223] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  307.143795] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  307.151625] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  307.157665] CR0=0000000080050033 CR3=000000010866f000 CR4=00000000001426f0
[  307.164839] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  307.171543] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  307.177730] *** Control State ***
[  307.181217] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  307.188219] EntryControls=0000d1ff ExitControls=002fefff
[  307.193794] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  307.200757] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  307.207556] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  307.214263]         reason=80000021 qualification=0000000000000000
[  307.220610] IDTVectoring: info=00000000 errcode=00000000
[  307.226172] TSC Offset = 0xffffff57f1327cd7
07:27:01 executing program 3:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:01 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:27:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:01 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = memfd_create(&(0x7f0000000700)='/7\x02\xe8\xa4\xef\x9e\xc8e\xd5n\x89\xeb[<\x18-\x14\x8d8\xbf\xfe\x83\x19\xf3(\xd7y\x14h\xcf(f\x06I:\xa4\xea\xcb\b\x81C\xdd\xcc\x00\x00\x00\x00\xf9\b1h\xbam\xa4x\xb1:\xcf\a\x94Z\x7f\xc8\vy\xf2F\xf4\x9d\n3\xd4\x9a[\xee\xaa\t\xbe\x90\xabU3\xd3[y\xd1d^We\xa9\xcb\x86a\"\xba\xb7\xcd\xcf\x88\x9eqO|\x9f\xcf\r\x86\xf4\x15@\x82w\xa8\\\x8c^a\xbe\x991l\\\x16\xd4\xd53\xdd\x9e\x00\x01:\xac\x14^\xf6\xb6\xb1^\xaa\xfa\x02x\x8aV\x87\xe3\xfb\xef\xd0\xb7({,\xf4\xa2cl`\xdc\xf7\xe2f\xad\xaa>\xd4Ts\x10\xb9V!\x91uGTy\xde$X\xff\xb1\xf3={\xb7\xe65\xb6\x1a\x99q^\xc2\xfc\xb0\xc09\x85\x03\xf1]\xc54;\x8d\x01\xec3#\x8f%5\xef\xfe\xc5\xdb\xd5\xb7\xe0\xdd\xec,rV\x82!\xa0', 0x0)
pwritev(r2, &(0x7f0000000240)=[{&(0x7f0000000440)=',', 0x1}], 0x1, 0x4081806)
sendfile(r0, r2, 0x0, 0x20020102000007)
write$FUSE_DIRENT(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvfrom$unix(r1, &(0x7f0000000040)=""/4, 0xebc3276d6d4b1cd2, 0x100100, &(0x7f0000000100)=@abs, 0x930212)

07:27:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  307.230533] TPR Threshold = 0x00
[  307.234007] EPT pointer = 0x00000000943a401e
[  307.411389] *** Guest State ***
[  307.415124] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  307.424136] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  307.433083] CR3 = 0x0000000000000000
[  307.436832] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  307.442969] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  307.448984] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  307.455833] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  307.463971] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.472055] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.480077] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.488194] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.496293] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.504390] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  307.512530] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  307.520542] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  307.528873] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  307.536992] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  307.543564] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  307.551083] Interruptibility = 00000000  ActivityState = 00000000
[  307.557423] *** Host State ***
07:27:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  307.561148] RIP = 0xffffffff81312160  RSP = 0xffff888093a0f398
[  307.567257] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  307.573806] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  307.581785] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  307.588196] CR0=0000000080050033 CR3=00000000ae0f7000 CR4=00000000001426f0
[  307.595457] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  307.602351] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  307.608432] *** Control State ***
[  307.612501] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  307.619214] EntryControls=0000d1ff ExitControls=002fefff
[  307.624794] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  307.631822] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  307.638606] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  307.645320]         reason=80000021 qualification=0000000000000000
[  307.651678] IDTVectoring: info=00000000 errcode=00000000
[  307.657266] TSC Offset = 0xffffff57b4d3c515
07:27:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:01 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

[  307.661613] TPR Threshold = 0x00
[  307.665075] EPT pointer = 0x000000009144401e
[  307.708199] *** Guest State ***
[  307.711663] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  307.720682] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  307.729911] CR3 = 0x0000000000000000
[  307.733763] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  307.739780] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  307.745925] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  307.752811] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  307.760831] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.768984] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.777086] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.785273] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  307.793452] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  307.801970] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  307.810000] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  307.818144] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  307.826298] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  307.834431] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  307.840980] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  307.848556] Interruptibility = 00000000  ActivityState = 00000000
[  307.854954] *** Host State ***
[  307.858185] RIP = 0xffffffff81312160  RSP = 0xffff888095ecf398
[  307.864318] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  307.870778] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  307.878734] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  307.884735] CR0=0000000080050033 CR3=0000000095160000 CR4=00000000001426f0
[  307.891901] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  307.898608] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  307.904843] *** Control State ***
[  307.908391] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  307.915151] EntryControls=0000d1ff ExitControls=002fefff
[  307.920679] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  307.927708] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  307.934566] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  307.941216]         reason=80000021 qualification=0000000000000000
[  307.947634] IDTVectoring: info=00000000 errcode=00000000
[  307.953201] TSC Offset = 0xffffff578b9ad0ce
[  307.957616] TPR Threshold = 0x00
[  307.961083] EPT pointer = 0x0000000091f9501e
07:27:02 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:02 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

07:27:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  308.244809] *** Guest State ***
[  308.248244] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  308.258888] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  308.267911] CR3 = 0x0000000000000000
[  308.271783] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  308.277793] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  308.283906] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  308.290623] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  308.298785] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.306890] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.315032] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.323124] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.331145] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:02 executing program 3:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  308.339305] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  308.347434] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  308.355582] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  308.363672] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  308.371680] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  308.378268] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  308.385840] Interruptibility = 00000000  ActivityState = 00000000
[  308.392646] *** Host State ***
[  308.395878] RIP = 0xffffffff81312160  RSP = 0xffff88809d45f398
[  308.401993] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  308.408447] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  308.416428] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  308.422436] CR0=0000000080050033 CR3=000000009291d000 CR4=00000000001426f0
[  308.429560] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  308.436335] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  308.442543] *** Control State ***
[  308.446042] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  308.452803] EntryControls=0000d1ff ExitControls=002fefff
[  308.458293] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  308.465391] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  308.472169] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  308.478851]         reason=80000021 qualification=0000000000000000
[  308.485276] IDTVectoring: info=00000000 errcode=00000000
[  308.490799] TSC Offset = 0xffffff5744606530
[  308.495238] TPR Threshold = 0x00
[  308.498633] EPT pointer = 0x000000009341b01e
07:27:02 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:02 executing program 5:
r0 = socket$kcm(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
sendmsg(r0, &(0x7f0000005640)={&(0x7f0000003d00)=@in6={0xa, 0x0, 0x0, @remote, 0xec}, 0x80, 0x0}, 0x20000000)

07:27:02 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x0)

07:27:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:02 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  308.764733] *** Guest State ***
[  308.768150] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  308.777176] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  308.786198] CR3 = 0x0000000000000000
[  308.789956] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  308.796045] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  308.802195] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  308.808921] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  308.817012] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.825123] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.833209] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.841333] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.849438] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  308.857557] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  308.865629] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  308.873697] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  308.881777] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  308.889804] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  308.896716] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  308.904265] Interruptibility = 00000000  ActivityState = 00000000
[  308.910566] *** Host State ***
[  308.913880] RIP = 0xffffffff81312160  RSP = 0xffff8880ae48f398
[  308.919908] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  308.926458] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  308.934386] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  308.940359] CR0=0000000080050033 CR3=00000000a4c09000 CR4=00000000001426e0
[  308.947484] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  308.954310] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  308.960467] *** Control State ***
[  308.964041] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  308.970785] EntryControls=0000d1ff ExitControls=002fefff
[  308.976368] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  308.983447] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  308.990161] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  308.996847]         reason=80000021 qualification=0000000000000000
[  309.003307] IDTVectoring: info=00000000 errcode=00000000
[  309.008801] TSC Offset = 0xffffff56fbce3261
[  309.013265] TPR Threshold = 0x00
[  309.016682] EPT pointer = 0x00000000a7a2401e
07:27:03 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
finit_module(r1, 0x0, 0x0)

07:27:03 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x0)

07:27:03 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  309.233199] *** Guest State ***
[  309.236630] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  309.245708] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  309.254644] CR3 = 0x0000000000000000
[  309.258390] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  309.264511] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  309.270536] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  309.277366] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  309.285445] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.293607] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.301633] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.309762] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.317858] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.325977] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  309.334113] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  309.342221] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  309.350247] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  309.358353] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  309.364862] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  309.372431] Interruptibility = 00000000  ActivityState = 00000000
[  309.378708] *** Host State ***
07:27:03 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
sendmsg$IPVS_CMD_ZERO(r1, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={0x0}}, 0x0)

[  309.382036] RIP = 0xffffffff81312160  RSP = 0xffff88809597f398
[  309.388071] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  309.395264] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  309.403149] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  309.409080] CR0=0000000080050033 CR3=0000000091fd5000 CR4=00000000001426e0
[  309.416239] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  309.423022] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  309.429155] *** Control State ***
07:27:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  309.432735] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  309.439432] EntryControls=0000d1ff ExitControls=002fefff
[  309.445046] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  309.452085] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  309.458781] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  309.465501]         reason=80000021 qualification=0000000000000000
[  309.471948] IDTVectoring: info=00000000 errcode=00000000
[  309.477445] TSC Offset = 0xffffff56bb1d3824
[  309.481897] TPR Threshold = 0x00
[  309.485348] EPT pointer = 0x000000009596b01e
07:27:03 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:03 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:03 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000bc0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cdf0319fa22748f9a91c66b3", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000027c0)="cda05ee85dbd5f680838d9042ae6b8e7d7fae0467f79c2ec6bc7df641853d4b930a4834cbf109481518b8e74118647bb4307f249a83d1ecf578b787e77c384cec9bf7f0852425f2bb62be35f86428a185b", 0x51}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f0000006880)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000017c0)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)

[  309.712315] *** Guest State ***
[  309.715693] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  309.724824] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  309.733847] CR3 = 0x0000000000000000
[  309.737688] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  309.743788] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  309.749834] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:03 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0xfebc}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x0)

[  309.756614] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  309.764725] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.772810] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.780820] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.788939] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.797064] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  309.805165] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  309.813246] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  309.821260] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  309.829384] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  309.837456] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  309.843995] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  309.851586] Interruptibility = 00000000  ActivityState = 00000000
[  309.857913] *** Host State ***
[  309.861193] RIP = 0xffffffff81312160  RSP = 0xffff8881258df398
[  309.867282] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  309.873815] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  309.881668] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  309.887726] CR0=0000000080050033 CR3=0000000093b19000 CR4=00000000001426e0
[  309.894850] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  309.901552] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  309.907723] *** Control State ***
[  309.911224] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  309.918044] EntryControls=0000d1ff ExitControls=002fefff
[  309.923626] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  309.930664] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  309.937447] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  309.944158]         reason=80000021 qualification=0000000000000000
[  309.950567] IDTVectoring: info=00000000 errcode=00000000
[  309.956114] TSC Offset = 0xffffff567bc728b7
07:27:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  309.960463] TPR Threshold = 0x00
[  309.963953] EPT pointer = 0x00000000a78d501e
07:27:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:04 executing program 5:

07:27:04 executing program 1:

07:27:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  310.306000] *** Guest State ***
[  310.309449] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  310.318461] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  310.327528] CR3 = 0x0000000000000000
[  310.331272] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  310.337438] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  310.343551] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:04 executing program 1:

[  310.350269] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  310.358402] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  310.366568] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  310.374700] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  310.382879] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  310.390903] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  310.399563] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  310.407644] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  310.415776] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  310.423866] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  310.431972] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  310.438476] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  310.446069] Interruptibility = 00000000  ActivityState = 00000000
[  310.452442] *** Host State ***
[  310.455758] RIP = 0xffffffff81312160  RSP = 0xffff888091d6f398
[  310.461898] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  310.468387] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  310.476325] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  310.482372] CR0=0000000080050033 CR3=0000000105e5e000 CR4=00000000001426f0
[  310.489509] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  310.496297] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  310.502497] *** Control State ***
[  310.506004] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  310.512783] EntryControls=0000d1ff ExitControls=002fefff
[  310.518271] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  310.525335] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  310.532123] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  310.538746]         reason=80000021 qualification=0000000000000000
[  310.545213] IDTVectoring: info=00000000 errcode=00000000
[  310.550756] TSC Offset = 0xffffff5629a44a00
[  310.555170] TPR Threshold = 0x00
[  310.558608] EPT pointer = 0x000000008a3d901e
07:27:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:04 executing program 5:

07:27:04 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:04 executing program 1:

07:27:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:05 executing program 5:

07:27:05 executing program 1:

[  310.984836] *** Guest State ***
[  310.988321] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  310.997358] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  311.006317] CR3 = 0x0000000000000000
[  311.010114] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  311.010860] *** Guest State ***
[  311.016199] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  311.016227] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  311.016260] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  311.016295] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.016324] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.016370] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.019645] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  311.025769] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.032588] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  311.040467] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.048501] CR3 = 0x0000000000000000
[  311.048517] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  311.048538] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  311.048561] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  311.048589] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  311.048620] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.048649] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.048685] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.056797] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  311.064819] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.064852] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.073767] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  311.073789] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  311.073823] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  311.081832] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  311.081861] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  311.081890] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  311.090723] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  311.098757] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  311.098782] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  311.102568] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  311.102586] Interruptibility = 00000000  ActivityState = 00000000
[  311.102595] *** Host State ***
[  311.102625] RIP = 0xffffffff81312160  RSP = 0xffff8880935ef398
[  311.108586] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  311.114694] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  311.121303] Interruptibility = 00000000  ActivityState = 00000000
[  311.129342] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  311.137332] *** Host State ***
[  311.137358] RIP = 0xffffffff81312160  RSP = 0xffff8880888ef398
[  311.137404] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  311.145441] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  311.153454] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
07:27:05 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  311.153489] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  311.161478] CR0=0000000080050033 CR3=00000000927c5000 CR4=00000000001426f0
[  311.169501] CR0=0000000080050033 CR3=00000000aa6b3000 CR4=00000000001426e0
[  311.169538] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  311.177565] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  311.185585] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  311.185605] *** Control State ***
[  311.193636] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  311.201598] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  311.209613] *** Control State ***
[  311.217614] EntryControls=0000d1ff ExitControls=002fefff
[  311.217643] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  311.225685] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  311.232169] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  311.240086] EntryControls=0000d1ff ExitControls=002fefff
[  311.240113] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  311.246584] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  311.246601]         reason=80000021 qualification=0000000000000000
[  311.246618] IDTVectoring: info=00000000 errcode=00000000
[  311.246632] TSC Offset = 0xffffff55c7994ccc
[  311.246652] TPR Threshold = 0x00
[  311.254159] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  311.260374] EPT pointer = 0x0000000091d1301e
[  311.263625] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  311.475328]         reason=80000021 qualification=0000000000000000
[  311.481779] IDTVectoring: info=00000000 errcode=00000000
[  311.487259] TSC Offset = 0xffffff55cb930f38
[  311.491599] TPR Threshold = 0x00
[  311.495088] EPT pointer = 0x00000000a8b2801e
07:27:05 executing program 5:

07:27:05 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  311.740756] *** Guest State ***
[  311.744241] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  311.753262] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  311.762190] CR3 = 0x0000000000000000
[  311.765929] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  311.772111] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  311.778190] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  311.785013] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  311.793284] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.801347] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.809440] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.817592] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  311.825675] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:05 executing program 5:

07:27:05 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:05 executing program 1:

07:27:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  311.833821] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  311.842046] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  311.850115] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  311.859522] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  311.867703] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  311.874218] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  311.881809] Interruptibility = 00000000  ActivityState = 00000000
[  311.888059] *** Host State ***
[  311.891282] RIP = 0xffffffff81312160  RSP = 0xffff888092a8f398
[  311.897422] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  311.903944] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  311.911882] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  311.917806] CR0=0000000080050033 CR3=00000000ab3c6000 CR4=00000000001426f0
[  311.924960] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  311.931662] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  311.937826] *** Control State ***
[  311.941310] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  311.948078] EntryControls=0000d1ff ExitControls=002fefff
[  311.953645] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  311.960604] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  311.967424] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  311.974105]         reason=80000021 qualification=0000000000000000
[  311.980501] IDTVectoring: info=00000000 errcode=00000000
[  311.986045] TSC Offset = 0xffffff5562d96a0a
07:27:06 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  311.990425] TPR Threshold = 0x00
[  311.993885] EPT pointer = 0x0000000104ff301e
07:27:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  312.169273] *** Guest State ***
[  312.172847] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  312.181863] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  312.190725] CR3 = 0x0000000000000000
[  312.194562] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  312.200638] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  312.206767] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  312.213561] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  312.221594] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.229675] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.237756] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.245837] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.253913] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.261971] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
07:27:06 executing program 1:

[  312.269977] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  312.278092] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  312.286169] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  312.294221] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  312.300649] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  312.308276] Interruptibility = 00000000  ActivityState = 00000000
[  312.314627] *** Host State ***
07:27:06 executing program 5:

[  312.317852] RIP = 0xffffffff81312160  RSP = 0xffff8880938ef398
[  312.323940] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  312.330393] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  312.338270] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  312.344303] CR0=0000000080050033 CR3=0000000088bb3000 CR4=00000000001426f0
[  312.351351] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  312.358231] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  312.364383] *** Control State ***
07:27:06 executing program 4:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  312.367863] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  312.374617] EntryControls=0000d1ff ExitControls=002fefff
[  312.380117] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  312.387159] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  312.394359] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  312.400984]         reason=80000021 qualification=0000000000000000
[  312.407426] IDTVectoring: info=00000000 errcode=00000000
[  312.412968] TSC Offset = 0xffffff5529c20335
[  312.417369] TPR Threshold = 0x00
[  312.420805] EPT pointer = 0x0000000091db501e
[  312.509026] *** Guest State ***
[  312.512656] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  312.521551] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  312.530573] CR3 = 0x0000000000000000
[  312.534440] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  312.540463] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  312.546639] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  312.553453] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  312.561584] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.569763] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.577912] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.586024] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.594177] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  312.602271] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  312.610283] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  312.618408] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  312.626507] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  312.634625] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  312.641060] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  312.648657] Interruptibility = 00000000  ActivityState = 00000000
07:27:06 executing program 5:

[  312.656824] *** Host State ***
[  312.660057] RIP = 0xffffffff81312160  RSP = 0xffff88809402f398
[  312.666183] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  312.672697] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  312.680533] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  312.686553] CR0=0000000080050033 CR3=00000000934a7000 CR4=00000000001426f0
[  312.693700] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  312.700400] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  312.706599] *** Control State ***
07:27:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  312.710081] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  312.716863] EntryControls=0000d1ff ExitControls=002fefff
[  312.722404] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  312.729379] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  312.736176] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  312.742875]         reason=80000021 qualification=0000000000000000
[  312.749223] IDTVectoring: info=00000000 errcode=00000000
[  312.754796] TSC Offset = 0xffffff54fc698234
[  312.759136] TPR Threshold = 0x00
[  312.762617] EPT pointer = 0x00000000939fe01e
07:27:06 executing program 1:

07:27:06 executing program 4:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  312.951687] *** Guest State ***
[  312.955272] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  312.964281] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  312.973267] CR3 = 0x0000000000000000
[  312.977023] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  312.983083] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  312.989085] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  312.995902] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  313.003975] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.012085] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.020107] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.028190] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.036278] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.044347] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  313.052444] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  313.060474] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  313.068630] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  313.076696] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  313.083192] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  313.090677] Interruptibility = 00000000  ActivityState = 00000000
[  313.096991] *** Host State ***
[  313.100237] RIP = 0xffffffff81312160  RSP = 0xffff88809594f398
[  313.106324] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  313.112838] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  313.120724] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  313.126722] CR0=0000000080050033 CR3=00000000a1937000 CR4=00000000001426e0
[  313.133876] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  313.140578] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  313.146736] *** Control State ***
07:27:07 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:07 executing program 1:

07:27:07 executing program 5:

07:27:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  313.150216] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  313.157016] EntryControls=0000d1ff ExitControls=002fefff
[  313.162584] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  313.169542] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  313.176345] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  313.183034]         reason=80000021 qualification=0000000000000000
[  313.189379] IDTVectoring: info=00000000 errcode=00000000
[  313.195142] TSC Offset = 0xffffff54bdd139d4
[  313.199504] TPR Threshold = 0x00
[  313.203015] EPT pointer = 0x00000000912dd01e
07:27:07 executing program 1:

07:27:07 executing program 4:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:07 executing program 5:

07:27:07 executing program 1:
memfd_create(0x0, 0x0)
openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = epoll_create(0x0)
write$P9_RLERRORu(r0, 0x0, 0x0)

[  313.524447] *** Guest State ***
[  313.527828] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  313.536974] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  313.545960] CR3 = 0x0000000000000000
[  313.550155] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  313.556290] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  313.562795] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  313.569612] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  313.577722] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.585857] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.593952] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.602090] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.610144] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.618214] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  313.626338] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  313.634572] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  313.642879] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  313.650900] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  313.657452] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  313.665028] Interruptibility = 00000000  ActivityState = 00000000
[  313.671313] *** Host State ***
[  313.674623] RIP = 0xffffffff81312160  RSP = 0xffff88812d76f398
[  313.680644] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  313.687203] FSBase=00007f04313d6700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  313.695106] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  313.701019] CR0=0000000080050033 CR3=0000000091c0c000 CR4=00000000001426f0
[  313.708209] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  313.715050] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  313.721124] *** Control State ***
[  313.724753] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  313.731450] EntryControls=0000d1ff ExitControls=002fefff
[  313.737087] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  313.744135] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  313.750848] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  313.757589]         reason=80000021 qualification=0000000000000000
[  313.764018] IDTVectoring: info=00000000 errcode=00000000
[  313.769491] TSC Offset = 0xffffff54711606ea
[  313.773987] TPR Threshold = 0x00
[  313.777384] EPT pointer = 0x000000009241401e
[  313.814346] *** Guest State ***
[  313.817747] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  313.826888] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  313.835823] CR3 = 0x0000000000000000
[  313.839565] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  313.845823] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  313.851981] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  313.858868] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  313.866965] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.875077] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.883207] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.891225] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.899380] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  313.907467] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  313.915691] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  313.923790] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  313.933168] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  313.941179] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  313.947714] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  313.955273] Interruptibility = 00000000  ActivityState = 00000000
[  313.961534] *** Host State ***
[  313.964856] RIP = 0xffffffff81312160  RSP = 0xffff88809594f398
[  313.970886] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  313.977435] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  313.985339] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  313.991259] CR0=0000000080050033 CR3=0000000094116000 CR4=00000000001426f0
[  313.998418] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  314.005198] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  314.011271] *** Control State ***
[  314.014854] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
07:27:08 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = memfd_create(0x0, 0x0)
ioctl$TIOCLINUX7(r0, 0x541c, 0x0)

[  314.021586] EntryControls=0000d1ff ExitControls=002fefff
[  314.027177] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  314.034328] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  314.041059] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  314.047780]         reason=80000021 qualification=0000000000000000
[  314.054199] IDTVectoring: info=00000000 errcode=00000000
[  314.059683] TSC Offset = 0xffffff5447993d1b
[  314.064095] TPR Threshold = 0x00
[  314.067508] EPT pointer = 0x000000009420601e
07:27:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:08 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:08 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:08 executing program 1:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000200)='security.capability\x00', 0x0, 0xffffffffffffffae, 0x1)

[  314.410826] *** Guest State ***
[  314.414545] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  314.423701] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  314.434729] CR3 = 0x0000000000000000
[  314.438522] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  314.444616] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  314.450698] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  314.457482] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  314.465586] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.473676] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.481790] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.489819] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.497930] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.506031] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  314.514143] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  314.522240] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  314.530265] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  314.538367] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  314.544889] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  314.552459] Interruptibility = 00000000  ActivityState = 00000000
[  314.558738] *** Host State ***
[  314.562041] RIP = 0xffffffff81312160  RSP = 0xffff8880a132f398
[  314.568072] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  314.574678] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  314.582594] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  314.588568] CR0=0000000080050033 CR3=0000000092ab5000 CR4=00000000001426f0
[  314.595682] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  314.602479] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
07:27:08 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

[  314.608570] *** Control State ***
[  314.612170] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  314.618863] EntryControls=0000d1ff ExitControls=002fefff
[  314.624475] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  314.631479] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  314.638327] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  314.645013]         reason=80000021 qualification=0000000000000000
[  314.651407] IDTVectoring: info=00000000 errcode=00000000
[  314.656985] TSC Offset = 0xffffff53f5eb623c
[  314.661370] TPR Threshold = 0x00
[  314.664836] EPT pointer = 0x0000000092af301e
07:27:08 executing program 5:
memfd_create(0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, 0x0)
sched_getaffinity(0x0, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = epoll_create(0x0)
ioctl$TIOCSPGRP(r0, 0x5410, 0x0)

[  314.865694] *** Guest State ***
[  314.869318] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  314.878358] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  314.887292] CR3 = 0x0000000000000000
[  314.891040] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  314.897323] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  314.903389] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  314.910157] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  314.918251] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.926336] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.934411] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.942497] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.950549] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  314.958641] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  314.966730] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  314.974807] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  314.982964] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  314.990972] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  314.997483] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  315.005124] Interruptibility = 00000000  ActivityState = 00000000
[  315.011380] *** Host State ***
[  315.014711] RIP = 0xffffffff81312160  RSP = 0xffff888093b7f398
[  315.020748] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  315.027299] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  315.035224] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  315.041200] CR0=0000000080050033 CR3=0000000091755000 CR4=00000000001426e0
[  315.048328] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  315.055127] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  315.061209] *** Control State ***
[  315.064891] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  315.071584] EntryControls=0000d1ff ExitControls=002fefff
[  315.077166] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  315.084194] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  315.090936] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  315.097612]         reason=80000021 qualification=0000000000000000
[  315.104100] IDTVectoring: info=00000000 errcode=00000000
[  315.109661] TSC Offset = 0xffffff53b71ae161
07:27:09 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffff68, 0x0, 0x0, 0xfffffffffffffd67)

07:27:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  315.114074] TPR Threshold = 0x00
[  315.117516] EPT pointer = 0x000000009430201e
07:27:09 executing program 1:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = memfd_create(0x0, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, 0x0, 0x0)

07:27:09 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  315.265525] *** Guest State ***
[  315.269105] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  315.278144] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  315.287142] CR3 = 0x0000000000000000
[  315.290978] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  315.297063] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  315.303171] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  315.309882] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  315.317995] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.326093] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.334179] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.342246] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.350267] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.358378] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  315.366473] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  315.374601] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  315.382693] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  315.390747] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  315.397824] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  315.405404] Interruptibility = 00000000  ActivityState = 00000000
[  315.411653] *** Host State ***
[  315.414986] RIP = 0xffffffff81312160  RSP = 0xffff8880a132f398
[  315.421079] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  315.427599] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  315.435540] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  315.441461] CR0=0000000080050033 CR3=00000000a108b000 CR4=00000000001426e0
[  315.448618] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  315.455390] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  315.461467] *** Control State ***
[  315.465043] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  315.471785] EntryControls=0000d1ff ExitControls=002fefff
[  315.477326] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  315.484338] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  315.491092] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  315.497772]         reason=80000021 qualification=0000000000000000
[  315.504219] IDTVectoring: info=00000000 errcode=00000000
[  315.509706] TSC Offset = 0xffffff53826219dd
07:27:09 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000240)="360fc76b020f017a3a0f32baf80c66b84ad85f8e66efbafc0cec0f015a002e0f01980200ba4000ec640f01cbf20f233c66b8669400000f23d00f21f866352000000d0f23f8", 0x45}], 0x1, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:09 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = memfd_create(0x0, 0x0)
ioctl$TCSETA(r0, 0x5406, 0x0)

[  315.514145] TPR Threshold = 0x00
[  315.517546] EPT pointer = 0x00000000a853c01e
07:27:09 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000bc0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cdf0319fa22748f9a91c66b3", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000027c0)="cda05ee85dbd5f680838d9042ae6b8e7d7fae0467f79c2ec6bc7df641853d4b930a4834cbf109481518b8e74118647bb4307f249a83d1ecf578b787e77c384cec9", 0x41}], 0x1}, 0x240088c4)
sendmmsg$alg(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000006880)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000017c0)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)

[  315.682037] *** Guest State ***
[  315.685467] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  315.694622] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  315.703569] CR3 = 0x0000000000000000
[  315.707319] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  315.713456] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  315.719486] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  315.726409] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  315.734486] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.742614] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.750633] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.758789] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  315.766988] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:09 executing program 4:
futex(&(0x7f000000cffc)=0x4, 0x80000000010b, 0x4, 0x0, &(0x7f0000048000), 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

07:27:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  315.775797] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  315.783921] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  315.791980] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  315.799997] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  315.808113] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  315.814727] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  315.822306] Interruptibility = 00000000  ActivityState = 00000000
[  315.828560] *** Host State ***
[  315.831886] RIP = 0xffffffff81312160  RSP = 0xffff88809476f398
[  315.837922] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  315.844441] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  315.852326] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  315.858290] CR0=0000000080050033 CR3=00000000a8533000 CR4=00000000001426e0
[  315.865581] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  315.872369] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  315.878543] *** Control State ***
[  315.882115] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  315.888839] EntryControls=0000d1ff ExitControls=002fefff
[  315.894376] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  315.901368] VMEntry: intr_info=800000ff errcode=00000000 ilen=00000000
[  315.908211] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  315.914908]         reason=80000021 qualification=0000000000000000
[  315.921257] IDTVectoring: info=00000000 errcode=00000000
[  315.926821] TSC Offset = 0xffffff534753cfcd
07:27:10 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

[  315.931238] TPR Threshold = 0x00
[  315.934691] EPT pointer = 0x00000000939f001e
07:27:10 executing program 5:
r0 = getpgrp(0xffffffffffffffff)
prctl$PR_SET_PTRACER(0x59616d61, r0)
clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaa8aaaaaaa018cc201000086dd60d8652b00140000fe8000000000000000000d"], 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x2f)
ptrace$cont(0x18, r1, 0x0, 0x0)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000100))
ptrace$cont(0x7, r1, 0x0, 0x0)

[  316.118613] *** Guest State ***
[  316.122259] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  316.131193] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  316.140160] CR3 = 0x0000000000000000
[  316.143971] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  316.150075] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  316.156152] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  316.162972] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  316.170980] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.179071] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.187145] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.195225] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.203311] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.211344] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  316.219428] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  316.227500] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  316.235618] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  316.243685] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  316.250125] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  316.257669] Interruptibility = 00000000  ActivityState = 00000000
[  316.263994] *** Host State ***
[  316.267234] RIP = 0xffffffff81312160  RSP = 0xffff88809476f398
[  316.273324] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  316.279779] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  316.287676] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  316.293682] CR0=0000000080050033 CR3=00000000a4c80000 CR4=00000000001426f0
[  316.300744] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  316.307527] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  316.313663] *** Control State ***
[  316.317149] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  316.327208] EntryControls=0000d1ff ExitControls=002fefff
[  316.332759] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  316.339721] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  316.346526] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  316.353197]         reason=80000021 qualification=0000000000000000
[  316.359554] IDTVectoring: info=00000000 errcode=00000000
[  316.365101] TSC Offset = 0xffffff530b511cf0
07:27:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:10 executing program 1:
pipe(&(0x7f00000006c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
socket$inet(0x2, 0x3, 0x7f)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x10005, 0x0)

[  316.369442] TPR Threshold = 0x00
[  316.372899] EPT pointer = 0x000000009050a01e
07:27:10 executing program 5:
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)

[  316.531299] *** Guest State ***
[  316.534797] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  316.543783] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  316.552704] CR3 = 0x0000000000000000
[  316.556445] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  316.563056] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  316.569086] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  316.576366] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  316.584445] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.592559] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.600705] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.608806] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.616907] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  316.625013] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  316.633151] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  316.641225] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  316.649307] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  316.657403] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  316.663906] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  316.671430] Interruptibility = 00000000  ActivityState = 00000000
[  316.677739] *** Host State ***
07:27:10 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:10 executing program 5:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

[  316.681011] RIP = 0xffffffff81312160  RSP = 0xffff88809476f398
[  316.687106] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  316.693648] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  316.701558] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  316.707579] CR0=0000000080050033 CR3=00000000ae0dc000 CR4=00000000001426e0
[  316.714715] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  316.721438] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  316.727588] *** Control State ***
[  316.731108] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  316.737995] EntryControls=0000d1ff ExitControls=002fefff
[  316.743546] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  316.750549] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  316.757292] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  316.763986]         reason=80000021 qualification=0000000000000000
[  316.770369] IDTVectoring: info=00000000 errcode=00000000
[  316.775919] TSC Offset = 0xffffff52d250e279
07:27:10 executing program 4:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000508ff6)='./control\x00', 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f00007a7000)='./control\x00', 0xa4000960)
close(r0)

[  316.780305] TPR Threshold = 0x00
[  316.783784] EPT pointer = 0x000000009468601e
[  316.941691] *** Guest State ***
[  316.945328] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  316.954388] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  316.963327] CR3 = 0x0000000000000000
[  316.967072] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  316.973154] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  316.979220] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  316.986080] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  316.994201] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.002287] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.010300] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.018402] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.026540] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:11 executing program 5:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0)
mmap(&(0x7f00002e4000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
name_to_handle_at(r0, &(0x7f00002e4000)='./file\xff\xff', &(0x7f0000000000)={0x8}, 0x0, 0x1400)

07:27:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  317.034754] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  317.042853] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  317.050866] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  317.059020] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  317.067114] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  317.073688] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  317.081196] Interruptibility = 00000000  ActivityState = 00000000
[  317.087556] *** Host State ***
[  317.090780] RIP = 0xffffffff81312160  RSP = 0xffff888091dff398
[  317.096923] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  317.103460] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  317.111308] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  317.117311] CR0=0000000080050033 CR3=00000000a8705000 CR4=00000000001426f0
[  317.124420] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  317.131154] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  317.137312] *** Control State ***
[  317.140802] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  317.147617] EntryControls=0000d1ff ExitControls=002fefff
[  317.153168] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  317.160192] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.166961] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.173672]         reason=80000021 qualification=0000000000000000
[  317.180058] IDTVectoring: info=00000000 errcode=00000000
[  317.185634] TSC Offset = 0xffffff529c07cfef
[  317.190059] TPR Threshold = 0x00
[  317.193611] EPT pointer = 0x000000009299d01e
07:27:11 executing program 4:
syz_genetlink_get_family_id$tipc(&(0x7f00000009c0)='TIPC\x00')
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_proto_private(r0, 0x89e1, &(0x7f0000000240))

[  317.333632] *** Guest State ***
[  317.337049] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  317.346136] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  317.355192] CR3 = 0x0000000000000000
[  317.358935] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  317.365024] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  317.371058] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:11 executing program 1:
clone(0x84007ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mknod(&(0x7f0000000340)='./file0\x00', 0x10001040, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00\xc2(t\xf56c\xf71E\x9e\x90\xac\xa4\x19\x7f\xa1\xb8\x02x9\xff0\x7f\x94\xa7\xbeX\xd2\xed\x0e^>@\xaf\x11c\xce19\xf5\xf8\xd3\x19k\x1d\xa5\x99\x89\xb4=\x1b\xde\x88g\xf4\xadi\xef\xbe\x13\xaaU\xdc\xdcw\r\xe1 jy8\n%\xde\x86\xb8ExAkCBp\x18/\x80W.[\r\x13\xc0e\x8f9i\xc5\x95\xca\xd1\xba&?\xe65}\xe9\nl\xb4b\xa7\x9dH\"\xf3\xaa>4\xe9A$\xf9\x04\xeb\xd5\x00\xb7,\x80\x1a\xaf\xbeP\f\xec\xa8\xc1l\xbb\xe9\xc2\x01\xe7\xf4mD\x80m\xc2\xbd|\x06\b\xd2\xc9\xdb\xcb\x83\xb2\xda\xa7\xc5\xf1J\xd2\xf7i\x95\xb7\xc0\xf4nEU.\x0e\x9b\xb6\x87\x13\xd5\xa8\x7f\x16\xc3\xac\x9d,\xa24>9\xa46\x8c\x7f\x00\x00\x00\x00\x00\x00\x00\x04\xf6\x8f\x0e|\xa0|\x8aw\x87\x9f\xec\xebQ\xa2\xf4[3\xdeF\xce\xf2\xb4\xf9H@\xce8\xe4\xf8\xd3\xf0', 0x200002, 0x0)
fchdir(r1)
r2 = creat(&(0x7f0000000680)='./bus\x00', 0x0)
fcntl$setstatus(r2, 0x4, 0x6104)
ftruncate(r2, 0x8200)
r3 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x8000fffffffe)
fallocate(r2, 0x0, 0x0, 0x8008001)

07:27:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  317.377863] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  317.385951] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.394586] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.402683] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.410758] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.418826] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.426901] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  317.434985] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  317.443085] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  317.451174] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  317.459229] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  317.465759] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  317.473304] Interruptibility = 00000000  ActivityState = 00000000
[  317.479553] *** Host State ***
[  317.482869] RIP = 0xffffffff81312160  RSP = 0xffff8880a12ff398
[  317.488973] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  317.495483] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  317.503400] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  317.509370] CR0=0000000080050033 CR3=0000000092616000 CR4=00000000001426e0
[  317.516487] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  317.523296] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  317.529447] *** Control State ***
07:27:11 executing program 5:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
rt_sigqueueinfo(0x0, 0x0, 0x0)

[  317.533022] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  317.539757] EntryControls=0000d1ff ExitControls=002fefff
[  317.545309] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  317.552369] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.559074] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.566298]         reason=80000021 qualification=0000000000000000
[  317.572718] IDTVectoring: info=00000000 errcode=00000000
[  317.578233] TSC Offset = 0xffffff5266967497
[  317.582647] TPR Threshold = 0x00
[  317.586100] EPT pointer = 0x000000009395901e
07:27:11 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  317.740555] *** Guest State ***
[  317.744270] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  317.753328] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  317.762236] CR3 = 0x0000000000000000
[  317.765975] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  317.772081] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  317.778156] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  317.784952] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  317.793036] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.801098] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.809190] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.817266] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  317.825362] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:11 executing program 4:
r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000780)={0x4c, 0x0, &(0x7f0000000600)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, &(0x7f00000005c0)=[0x0, 0x0]}}}], 0x0, 0x0, 0x0})

[  317.833424] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  317.841459] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  317.849553] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  317.857640] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  317.865724] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  317.872232] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  317.879768] Interruptibility = 00000000  ActivityState = 00000000
[  317.886086] *** Host State ***
[  317.889351] RIP = 0xffffffff81312160  RSP = 0xffff88809d45f398
[  317.895428] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  317.901978] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  317.909999] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  317.916000] CR0=0000000080050033 CR3=00000000aee4a000 CR4=00000000001426e0
[  317.923165] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  317.929927] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  317.936070] *** Control State ***
[  317.939599] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  317.946350] EntryControls=0000d1ff ExitControls=002fefff
[  317.951925] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  317.958951] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.965710] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.972426]         reason=80000021 qualification=0000000000000000
[  317.978844] IDTVectoring: info=00000000 errcode=00000000
[  317.984386] TSC Offset = 0xffffff522e6d15f7
[  317.988730] TPR Threshold = 0x00
[  317.992208] EPT pointer = 0x00000000ab06201e
[  318.069112] binder: 12110:12111 transaction failed 29189/-22, size 0-16 line 2994
[  318.143472] *** Guest State ***
[  318.147064] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  318.156166] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  318.165097] CR3 = 0x0000000000000000
[  318.168848] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  318.174925] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  318.180934] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  318.187767] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  318.195859] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  318.203959] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  318.208004] binder: undelivered TRANSACTION_ERROR: 29189
[  318.212044] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  318.212079] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  318.233723] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  318.241832] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  318.249838] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  318.257911] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  318.266116] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  318.274202] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  318.280649] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  318.288306] Interruptibility = 00000000  ActivityState = 00000000
[  318.294712] *** Host State ***
[  318.297941] RIP = 0xffffffff81312160  RSP = 0xffff88808a25f398
[  318.304038] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  318.310491] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  318.318395] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  318.324389] CR0=0000000080050033 CR3=000000008b3e5000 CR4=00000000001426f0
[  318.331473] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  318.338279] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  318.344427] *** Control State ***
[  318.347948] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  318.354755] EntryControls=0000d1ff ExitControls=002fefff
[  318.360247] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  318.367277] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  318.374050] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  318.380662]         reason=80000021 qualification=0000000000000000
[  318.387084] IDTVectoring: info=00000000 errcode=00000000
07:27:12 executing program 4:
syz_emit_ethernet(0x7a, &(0x7f0000000040)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "c1a250", 0x44, 0x0, 0x0, @ipv4={[], [], @local}, @dev, {[], @gre}}}}}, 0x0)

07:27:12 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x219278c9c7fcb5da}, 0xc)

[  318.393078] TSC Offset = 0xffffff51f5636dfc
[  318.397422] TPR Threshold = 0x00
[  318.400821] EPT pointer = 0x00000000944c701e
07:27:12 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r0, 0x0, 0x400000a77, 0x0)
write$binfmt_misc(r3, &(0x7f0000000300)={'\x012\fl'}, 0xffffff5b)
ioctl$int_in(r3, 0x5421, &(0x7f0000000000)=0xa)
close(r1)

07:27:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:12 executing program 4:
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0)
r0 = creat(&(0x7f00000001c0)='./file0/bus\x00', 0x0)
io_setup(0x5, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000028c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}])

07:27:12 executing program 5:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)

07:27:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:12 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x200000002, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21}, 0x10)
syz_emit_ethernet(0x140, &(0x7f0000000000)={@random="7525820aedb8", @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0)

07:27:13 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:13 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r0, 0x0, 0x400000a77, 0x0)
write$binfmt_misc(r3, &(0x7f0000000300)={'\x012\fl'}, 0xffffff5b)
ioctl$int_in(r3, 0x5421, &(0x7f0000000000)=0xa)
close(r1)

07:27:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:13 executing program 4:
syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, 0x0, 0x0)
ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, &(0x7f0000000240)={{}, {0x8, 0x7}})
r0 = socket$pppoe(0x18, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x2, @empty, 'batadv0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000005b40), 0x40000000000014d, 0x0)

07:27:13 executing program 5:
r0 = socket$kcm(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000040)={'icmp\x00'}, &(0x7f0000000080)=0x1e)

07:27:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:13 executing program 1:
r0 = socket$kcm(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, <r1=>0x0}, &(0x7f0000000140)=0xc)
setresgid(0x0, r1, 0x0)

07:27:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:13 executing program 5:
r0 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
read(r0, 0x0, 0x0)

[  319.793019] *** Guest State ***
[  319.796502] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  319.805562] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  319.814540] CR3 = 0x0000000000000000
[  319.818288] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  319.824424] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  319.830438] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  319.837250] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  319.845334] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  319.853505] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  319.861533] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  319.869679] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  319.877754] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  319.885860] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  319.893946] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  319.902046] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  319.910067] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  319.918172] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  319.924688] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  319.932249] Interruptibility = 00000000  ActivityState = 00000000
[  319.938498] *** Host State ***
[  319.941829] RIP = 0xffffffff81312160  RSP = 0xffff88809597f398
[  319.947853] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  319.954392] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  319.962284] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  319.968206] CR0=0000000080050033 CR3=0000000091eee000 CR4=00000000001426e0
[  319.975361] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  319.982283] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  319.988366] *** Control State ***
07:27:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  319.991940] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  319.998637] EntryControls=0000d1ff ExitControls=002fefff
[  320.004216] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  320.011174] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  320.018037] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  320.024743]         reason=80000021 qualification=0000000000000000
[  320.031096] IDTVectoring: info=00000000 errcode=00000000
[  320.036685] TSC Offset = 0xffffff5115f0f5bf
[  320.041053] TPR Threshold = 0x00
07:27:14 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha512\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
close(r0)

07:27:14 executing program 1:

[  320.044564] EPT pointer = 0x0000000088aa301e
07:27:14 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:14 executing program 4:

07:27:14 executing program 1:

07:27:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:14 executing program 4:

[  320.499335] *** Guest State ***
[  320.502994] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  320.512018] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  320.520894] CR3 = 0x0000000000000000
[  320.524755] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  320.530759] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  320.536929] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  320.543794] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  320.552011] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  320.560036] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  320.568161] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  320.576270] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  320.584392] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  320.592497] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  320.600590] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  320.608714] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  320.616867] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  320.624972] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  320.631415] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  320.638987] Interruptibility = 00000000  ActivityState = 00000000
[  320.645337] *** Host State ***
[  320.648584] RIP = 0xffffffff81312160  RSP = 0xffff88809509f398
[  320.654697] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  320.661205] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  320.669496] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  320.675593] CR0=0000000080050033 CR3=00000000925c0000 CR4=00000000001426f0
[  320.682760] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  320.689535] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  320.695780] *** Control State ***
07:27:14 executing program 5:

07:27:14 executing program 1:

[  320.699276] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  320.706106] EntryControls=0000d1ff ExitControls=002fefff
[  320.711630] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  320.718714] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  320.725506] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  320.732235]         reason=80000021 qualification=0000000000000000
[  320.738603] IDTVectoring: info=00000000 errcode=00000000
[  320.744203] TSC Offset = 0xffffff50b333cdd2
07:27:14 executing program 4:

[  320.748564] TPR Threshold = 0x00
[  320.752074] EPT pointer = 0x00000000878e301e
07:27:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:15 executing program 1:

07:27:15 executing program 4:

07:27:15 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:15 executing program 5:

07:27:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:15 executing program 1:

07:27:15 executing program 4:

07:27:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:15 executing program 5:

07:27:15 executing program 1:

07:27:15 executing program 4:

07:27:15 executing program 5:

07:27:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  321.717314] *** Guest State ***
[  321.720792] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  321.729978] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  321.738932] CR3 = 0x0000000000000000
[  321.742809] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  321.748897] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  321.755026] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  321.761882] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  321.769919] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  321.778059] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  321.786165] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  321.794307] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  321.802410] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  321.810418] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  321.818599] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  321.826690] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  321.834851] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  321.842941] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  321.849433] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  321.856994] Interruptibility = 00000000  ActivityState = 00000000
[  321.863374] *** Host State ***
[  321.866609] RIP = 0xffffffff81312160  RSP = 0xffff88809504f398
[  321.872693] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  321.879154] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  321.887117] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  321.893122] CR0=0000000080050033 CR3=0000000088b25000 CR4=00000000001426f0
[  321.900219] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  321.907009] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  321.913202] *** Control State ***
[  321.916700] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  321.923503] EntryControls=0000d1ff ExitControls=002fefff
[  321.929009] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  321.936097] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  321.942881] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  321.949552]         reason=80000021 qualification=0000000000000000
[  321.955990] IDTVectoring: info=00000000 errcode=00000000
[  321.961466] TSC Offset = 0xffffff500c40071a
[  321.965923] TPR Threshold = 0x00
[  321.969343] EPT pointer = 0x0000000091d2301e
07:27:16 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:16 executing program 1:

07:27:16 executing program 4:

07:27:16 executing program 5:

07:27:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  322.207701] *** Guest State ***
[  322.211229] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  322.220219] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  322.229231] CR3 = 0x0000000000000000
[  322.233042] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  322.239051] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  322.245126] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  322.251931] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  322.259948] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  322.268023] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  322.276122] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  322.284203] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  322.292283] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  322.300285] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  322.308355] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  322.316418] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  322.324495] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  322.332577] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  322.339020] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  322.346587] Interruptibility = 00000000  ActivityState = 00000000
[  322.352977] *** Host State ***
[  322.356209] RIP = 0xffffffff81312160  RSP = 0xffff88809583f398
[  322.362289] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  322.368748] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  322.376668] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  322.382763] CR0=0000000080050033 CR3=000000008a3ea000 CR4=00000000001426e0
[  322.389825] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  322.396623] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  322.402765] *** Control State ***
[  322.406248] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  322.413030] EntryControls=0000d1ff ExitControls=002fefff
[  322.418550] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  322.425626] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  322.432395] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  322.439057]         reason=80000021 qualification=0000000000000000
[  322.445473] IDTVectoring: info=00000000 errcode=00000000
[  322.450978] TSC Offset = 0xffffff4fc8a91c83
[  322.455438] TPR Threshold = 0x00
07:27:16 executing program 1:

07:27:16 executing program 5:

07:27:16 executing program 4:

[  322.458850] EPT pointer = 0x0000000088aba01e
07:27:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:16 executing program 5:

07:27:16 executing program 4:

07:27:17 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:17 executing program 1:

07:27:17 executing program 5:

07:27:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:17 executing program 4:

07:27:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:17 executing program 5:

07:27:17 executing program 1:

07:27:17 executing program 4:

07:27:17 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:17 executing program 5:
r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x5, 0x0)
lseek(r0, 0xa40f, 0x0)

07:27:17 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
syz_execute_func(&(0x7f00000003c0)="410f01f964ff090f01d941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dccc4a180c6d100")
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setrlimit(0x7, &(0x7f0000a9cff8))
socket$packet(0x11, 0x3, 0x300)
ioctl$KDDISABIO(r0, 0x4b37)

07:27:17 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r0, &(0x7f0000000100), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
syz_execute_func(&(0x7f0000000000)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110400f86810d6fc86f")
clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, 0x0, 0x10627)
mknod(&(0x7f0000f80000)='./file0\x00', 0x1040, 0x0)
clone(0x803102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execveat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0)
open$dir(&(0x7f0000000580)='./file0\x00', 0x0, 0x0)

07:27:17 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:17 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha512\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cd72309fa22748f9a91c6633", 0x10)

07:27:18 executing program 1:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
recvmmsg(r0, &(0x7f0000000200), 0x38c, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4)

07:27:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:18 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, 0x0)

07:27:18 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:18 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:18 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

[  324.508790] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
[  324.548791] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
07:27:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:18 executing program 4:
r0 = socket$caif_stream(0x25, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
accept(r0, 0x0, &(0x7f0000000080))

07:27:18 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:18 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

[  324.764716] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
[  324.905208] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
07:27:19 executing program 1:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)

07:27:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:19 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
fsetxattr$security_evm(r0, 0x0, 0x0, 0x0, 0x0)

07:27:19 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:19 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  325.207500] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
07:27:19 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:19 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x800000002, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
setxattr$trusted_overlay_opaque(0x0, &(0x7f0000000080)='trusted.overlay.opaque\x00', 0x0, 0xffffffffffffff45, 0x1)

[  325.396325] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
07:27:19 executing program 1:
socket$kcm(0x29, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000015c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg(r1, &(0x7f0000000080)={&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x80, 0x0}, 0x20000000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x3, &(0x7f0000346fc8)=@framed, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f00000002c0)=""/251}, 0x48)
r3 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000000c0)={r1, r2})
ioctl$sock_kcm_SIOCKCMUNATTACH(r3, 0x89e1, &(0x7f0000000280)={r1})

[  325.593807] *** Guest State ***
[  325.597267] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  325.606345] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  325.615333] CR3 = 0x0000000000000000
[  325.619174] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  325.625367] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  325.631388] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  325.638240] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  325.646353] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  325.654496] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  325.662681] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  325.670805] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  325.678967] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:19 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

[  325.687068] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  325.695238] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  325.703348] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  325.711378] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  325.719537] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  325.726179] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  325.733814] Interruptibility = 00000000  ActivityState = 00000000
[  325.740074] *** Host State ***
07:27:19 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x8001, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0046d00, 0x0)

[  325.743413] RIP = 0xffffffff81312160  RSP = 0xffff88809509f398
[  325.749434] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  325.755960] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  325.763988] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  325.769960] CR0=0000000080050033 CR3=000000009d374000 CR4=00000000001426e0
[  325.777147] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  325.784058] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  325.790131] *** Control State ***
[  325.793805] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  325.800603] EntryControls=0000d1ff ExitControls=002fefff
[  325.806188] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  325.813277] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  325.820047] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  325.826743]         reason=80000021 qualification=0000000000000000
[  325.833207] IDTVectoring: info=00000000 errcode=00000000
[  325.838690] TSC Offset = 0xffffff4dfa2470c2
[  325.843165] TPR Threshold = 0x00
[  325.846583] EPT pointer = 0x000000009264b01e
07:27:20 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  325.913232] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
07:27:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:20 executing program 1:
socket$kcm(0x29, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000015c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg(r1, &(0x7f0000000080)={&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x80, 0x0}, 0x20000000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x3, &(0x7f0000346fc8)=@framed, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f00000002c0)=""/251}, 0x48)
r3 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000000c0)={r1, r2})
ioctl$sock_kcm_SIOCKCMUNATTACH(r3, 0x89e1, &(0x7f0000000280)={r1})

07:27:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f3188b070")
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}}, 0x0)

07:27:20 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  326.297931] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
[  326.314204] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
07:27:20 executing program 1:
epoll_create1(0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp6\x00')
preadv(r0, &(0x7f0000000480), 0x1000000000000330, 0x0)

07:27:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:20 executing program 5:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:20 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  326.586348] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
[  326.590231] *** Guest State ***
[  326.597751] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  326.606717] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  326.615677] CR3 = 0x0000000000000000
[  326.619433] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  326.625565] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  326.631654] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  326.638505] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  326.646633] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  326.654863] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  326.662950] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  326.670976] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  326.679114] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  326.687209] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  326.695323] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  326.703491] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  326.711512] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  326.719669] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  326.726189] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  326.733759] Interruptibility = 00000000  ActivityState = 00000000
[  326.740103] *** Host State ***
[  326.743430] RIP = 0xffffffff81312160  RSP = 0xffff888037aef398
[  326.749446] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  326.756025] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  326.763948] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  326.769871] CR0=0000000080050033 CR3=0000000095904000 CR4=00000000001426f0
[  326.777045] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  326.783803] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  326.789915] *** Control State ***
[  326.793462] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  326.800158] EntryControls=0000d1ff ExitControls=002fefff
[  326.805821] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  326.812850] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  326.819598] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  326.826255]         reason=80000021 qualification=0000000000000000
07:27:20 executing program 4:
socket$kcm(0xa, 0x2, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0)
pipe(0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = request_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='wlan0\x00', 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r3, &(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)='/dev/kvm\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:20 executing program 1:
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
creat(&(0x7f0000000340)='./file1/file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpid()
socket$inet(0x2, 0x200000002, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x17, 0x0, 0x0)
syz_emit_ethernet(0x140, &(0x7f0000000000)={@random="7525820aedb8", @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0)

[  326.832690] IDTVectoring: info=00000000 errcode=00000000
[  326.838175] TSC Offset = 0xffffff4d70aea1e9
[  326.842651] TPR Threshold = 0x00
[  326.846128] EPT pointer = 0x000000009d4bd01e
07:27:20 executing program 5:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  327.062026] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program
07:27:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:21 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:21 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
accept$unix(0xffffffffffffffff, 0x0, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x80001, 0x32, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x28)

07:27:21 executing program 5:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:21 executing program 1:

07:27:21 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:21 executing program 4:
socket$kcm(0xa, 0x2, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0)
pipe(0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = request_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='wlan0\x00', 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r3, &(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)='/dev/kvm\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

07:27:21 executing program 1:

07:27:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:21 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:22 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:22 executing program 1:

[  328.178121] *** Guest State ***
[  328.181623] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  328.190758] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  328.199751] CR3 = 0x0000000000000000
[  328.203622] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  328.209709] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  328.215899] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  328.222693] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  328.230701] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.238800] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.246886] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.254998] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.263085] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.271091] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  328.279273] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  328.287349] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  328.295459] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  328.303577] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  328.310012] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  328.317585] Interruptibility = 00000000  ActivityState = 00000000
[  328.324054] *** Host State ***
07:27:22 executing program 1:

[  328.327280] RIP = 0xffffffff81312160  RSP = 0xffff88809476f398
[  328.333428] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  328.339877] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  328.347816] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  328.353806] CR0=0000000080050033 CR3=000000008b3fa000 CR4=00000000001426f0
[  328.361424] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  328.368272] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  328.374424] *** Control State ***
[  328.377957] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  328.384735] EntryControls=0000d1ff ExitControls=002fefff
[  328.390221] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  328.397914] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  328.404682] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  328.411447]         reason=80000021 qualification=0000000000000000
[  328.417870] IDTVectoring: info=00000000 errcode=00000000
[  328.423467] TSC Offset = 0xffffff4c97df00b5
07:27:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  328.427822] TPR Threshold = 0x00
[  328.431215] EPT pointer = 0x000000003332901e
07:27:22 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:22 executing program 4:

07:27:22 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:22 executing program 1:

[  328.873017] *** Guest State ***
[  328.876525] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  328.885625] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  328.894582] CR3 = 0x0000000000000000
[  328.898338] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  328.904401] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  328.910409] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  328.917305] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  328.925384] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.933490] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.941515] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.949619] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  328.957736] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:22 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:23 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(0x0, 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

[  328.965818] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  328.973988] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  328.982070] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  328.990108] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  328.998200] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  329.004733] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  329.012341] Interruptibility = 00000000  ActivityState = 00000000
[  329.018661] *** Host State ***
07:27:23 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x408c5333, &(0x7f0000000000)={0x0, 0x0, 0x0, 'queue1\x00'})

07:27:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  329.021977] RIP = 0xffffffff81312160  RSP = 0xffff888037f0f398
[  329.027992] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  329.034544] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  329.042752] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  329.048711] CR0=0000000080050033 CR3=0000000093a04000 CR4=00000000001426e0
[  329.055903] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  329.062752] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  329.068824] *** Control State ***
[  329.072403] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  329.079140] EntryControls=0000d1ff ExitControls=002fefff
[  329.084771] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  329.091829] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  329.098573] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  329.105267]         reason=80000021 qualification=0000000000000000
[  329.111610] IDTVectoring: info=00000000 errcode=00000000
[  329.117261] TSC Offset = 0xffffff4c387611fa
07:27:23 executing program 1:
r0 = syz_open_dev$sndseq(&(0x7f0000b39000)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000080)={{}, 'port0\x00'})

[  329.121602] TPR Threshold = 0x00
[  329.125136] EPT pointer = 0x0000000088ae101e
07:27:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:23 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
getrandom(0x0, 0x0, 0x0)

07:27:23 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(0x0, 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, 0x0)

07:27:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:23 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue0\x00'})

07:27:23 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(0x0, 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:24 executing program 1:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl$PPPIOCATTACH(r0, 0x4004743d, &(0x7f0000000100))

07:27:24 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:24 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
lsetxattr$security_smack_entry(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.SMACK64\x00', &(0x7f0000000140)='\x00', 0x0, 0x0)

07:27:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:24 executing program 1:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = memfd_create(0x0, 0x0)
ioctl$RNDADDTOENTCNT(r0, 0x40045201, 0x0)

07:27:24 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

07:27:24 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

07:27:24 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc)

[  330.485532] *** Guest State ***
[  330.489050] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  330.498181] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  330.507106] CR3 = 0x0000000000000000
[  330.510845] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  330.516990] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  330.523155] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  330.529871] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  330.537978] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.546061] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.554175] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.562259] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.570456] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:24 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
lsetxattr$security_smack_entry(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.SMACK64\x00', &(0x7f0000000140)='\x00', 0x0, 0x2)

07:27:24 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

[  330.579897] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  330.587975] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  330.596026] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  330.604120] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  330.612197] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  330.618738] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  330.626312] Interruptibility = 00000000  ActivityState = 00000000
[  330.632640] *** Host State ***
[  330.635889] RIP = 0xffffffff81312160  RSP = 0xffff8880a865f398
[  330.642006] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  330.648461] FSBase=00007f0e7a127700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  330.656381] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  330.662370] CR0=0000000080050033 CR3=000000002dc1f000 CR4=00000000001426f0
[  330.669466] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  330.676251] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  330.682406] *** Control State ***
[  330.685897] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  330.692719] EntryControls=0000d1ff ExitControls=002fefff
[  330.698207] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  330.705260] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  330.712012] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  330.718631]         reason=80000021 qualification=0000000000000000
[  330.725074] IDTVectoring: info=00000000 errcode=00000000
[  330.730554] TSC Offset = 0xffffff4b5b13bfdf
07:27:24 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)

[  330.735067] TPR Threshold = 0x00
[  330.738507] EPT pointer = 0x000000002c94e01e
[  330.878776] *** Guest State ***
[  330.882296] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  330.891180] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  330.900264] CR3 = 0x0000000000000000
[  330.904075] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  330.910073] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  330.916165] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  330.922949] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  330.930961] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.939069] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.947160] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.955268] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.963343] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  330.971389] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
07:27:25 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

[  330.979467] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  330.987562] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  330.995656] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  331.003749] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  331.010224] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  331.017876] Interruptibility = 00000000  ActivityState = 00000000
[  331.024181] *** Host State ***
07:27:25 executing program 1:
memfd_create(0x0, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = epoll_create(0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, 0x0)

[  331.027409] RIP = 0xffffffff81312160  RSP = 0xffff88802c87f398
[  331.033512] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  331.039971] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  331.047889] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  331.053869] CR0=0000000080050033 CR3=00000000888e2000 CR4=00000000001426f0
[  331.060963] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  331.067719] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  331.073887] *** Control State ***
[  331.077421] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  331.084174] EntryControls=0000d1ff ExitControls=002fefff
[  331.089679] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  331.096710] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.103502] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.110155]         reason=80000021 qualification=0000000000000000
[  331.116563] IDTVectoring: info=00000000 errcode=00000000
[  331.122140] TSC Offset = 0xffffff4b23689a82
[  331.126485] TPR Threshold = 0x00
07:27:25 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, 0x0, 0x0, 0x0, 0x1000)

[  331.129872] EPT pointer = 0x000000002ddf501e
07:27:25 executing program 4:
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000004c0))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)=""/255, 0x443}], 0x10000000000000e0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x2002)
dup3(r1, r0, 0x0)
write(r0, &(0x7f0000c34fff), 0xffffff0b)

[  331.317845] *** Guest State ***
[  331.327002] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  331.335997] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  331.344938] CR3 = 0x0000000000000000
[  331.348678] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  331.354776] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  331.360818] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  331.367610] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  331.375703] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.383786] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.391938] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.400545] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.408667] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:25 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, 0x0, 0x0, 0x0, 0x1000)

07:27:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  331.416753] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  331.424834] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  331.432898] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  331.440956] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  331.449031] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  331.455591] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  331.463159] Interruptibility = 00000000  ActivityState = 00000000
[  331.469445] *** Host State ***
[  331.472749] RIP = 0xffffffff81312160  RSP = 0xffff88802ddef398
[  331.478802] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  331.485320] FSBase=00007f0e7a127700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  331.493265] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  331.499229] CR0=0000000080050033 CR3=0000000088af2000 CR4=00000000001426e0
[  331.506356] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  331.513133] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  331.519266] *** Control State ***
[  331.522875] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  331.529621] EntryControls=0000d1ff ExitControls=002fefff
[  331.535233] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  331.542290] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.549049] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.555747]         reason=80000021 qualification=0000000000000000
[  331.562715] IDTVectoring: info=00000000 errcode=00000000
07:27:25 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

[  331.568186] TSC Offset = 0xffffff4ae876d240
[  331.572646] TPR Threshold = 0x00
[  331.576046] EPT pointer = 0x000000002c8e801e
[  331.718615] *** Guest State ***
[  331.722273] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  331.731151] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  331.740131] CR3 = 0x0000000000000000
[  331.743918] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  331.749919] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  331.756081] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  331.762913] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  331.770952] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.779114] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.787199] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.795270] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.803368] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  331.811376] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  331.819439] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  331.827496] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  331.835681] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  331.843740] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  331.850182] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  331.857722] Interruptibility = 00000000  ActivityState = 00000000
[  331.864026] *** Host State ***
07:27:25 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x9cffffff, 0x7, 0x0, 0x1, 0x30}]}, &(0x7f0000f6bffb)='GPL\x00'}, 0x48)

07:27:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  331.867257] RIP = 0xffffffff81312160  RSP = 0xffff88803039f398
[  331.873335] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  331.879781] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  331.887689] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  331.893675] CR0=0000000080050033 CR3=000000002c98b000 CR4=00000000001426f0
[  331.900732] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  331.907484] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  331.913624] *** Control State ***
07:27:26 executing program 4:

[  331.917138] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  331.923884] EntryControls=0000d1ff ExitControls=002fefff
[  331.929368] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  331.936419] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.943185] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.949802]         reason=80000021 qualification=0000000000000000
[  331.956234] IDTVectoring: info=00000000 errcode=00000000
[  331.961784] TSC Offset = 0xffffff4ab0e374aa
[  331.966174] TPR Threshold = 0x00
07:27:26 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, 0x0, 0x0, 0x0, 0x1000)

[  331.969598] EPT pointer = 0x000000002e3de01e
07:27:26 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0x0)

07:27:26 executing program 4:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0)
fchdir(r0)
socketpair(0x5, 0x0, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000500)={0x0, r1, 0x80, 0x7f, 0x8, 0x3db0})
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000001c0), 0xfffffef3)
read(r2, &(0x7f0000000200)=""/250, 0x50c7e3e3)
ioctl$TUNSETOFFLOAD(r2, 0x400454d0, 0x4)
lstat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480))
r4 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r3, 0x29, 0x1, &(0x7f00000003c0), 0x4)
socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r5=>0x0, @multicast1, @broadcast}, &(0x7f0000000300)=0xc)
sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0)
getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x23, &(0x7f0000000380)={@remote, @dev}, 0x0)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000400)={r5, @multicast1, @multicast2}, 0xc)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00')
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)={0x24, r6, 0xc, 0x70bd2b, 0x25dfdbfd, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x1}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x8050}, 0x40000)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0)=0x1)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000040)={@loopback}, &(0x7f0000000080)=0x5)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000e80)=ANY=[@ANYBLOB="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"], 0x3ed)
ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609)
ioctl$void(r1, 0xc0045c79)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)

07:27:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:26 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x0)

07:27:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:27:26 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x9cffffff, 0x7, 0x0, 0x1, 0x30}]}, &(0x7f0000f6bffb)='GPL\x00'}, 0x48)

[  332.423511] *** Guest State ***
[  332.426944] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  332.435958] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  332.444890] CR3 = 0x0000000000000000
[  332.448637] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  332.454883] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  332.460908] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  332.467804] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  332.475903] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  332.484022] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  332.492108] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  332.500125] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  332.508253] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
07:27:26 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0x0)

[  332.516403] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  332.524510] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  332.532646] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  332.540659] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  332.548838] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  332.555339] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  332.562914] Interruptibility = 00000000  ActivityState = 00000000
[  332.569169] *** Host State ***
[  332.572488] RIP = 0xffffffff81312160  RSP = 0xffff8880a618f398
[  332.578511] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  332.585053] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  332.592942] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  332.598899] CR0=0000000080050033 CR3=000000002e363000 CR4=00000000001426f0
[  332.606010] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  332.612800] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  332.618898] *** Control State ***
07:27:26 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x0)

[  332.622464] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  332.629150] EntryControls=0000d1ff ExitControls=002fefff
[  332.634712] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  332.641664] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  332.648716] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  332.655391]         reason=80000021 qualification=0000000000000000
[  332.661823] IDTVectoring: info=00000000 errcode=00000000
[  332.667297] TSC Offset = 0xffffff4a50e8c816
[  332.671637] TPR Threshold = 0x00
[  332.675091] EPT pointer = 0x00000000878b601e
07:27:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

07:27:26 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x9cffffff, 0x7, 0x0, 0x1, 0x30}]}, &(0x7f0000f6bffb)='GPL\x00'}, 0x48)

07:27:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:27 executing program 5:
syz_emit_ethernet(0x0, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0x0)

07:27:27 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0x0)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x0)

[  333.060331] *** Guest State ***
[  333.063847] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  333.072885] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  333.081797] CR3 = 0x0000000000000000
[  333.085539] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  333.091547] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  333.097685] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  333.104489] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  333.112628] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.124907] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.133023] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.141055] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.149149] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.157235] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  333.165328] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  333.173398] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  333.181418] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  333.189527] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  333.196045] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  333.203625] Interruptibility = 00000000  ActivityState = 00000000
[  333.209878] *** Host State ***
[  333.213203] RIP = 0xffffffff81312160  RSP = 0xffff88802e37f398
[  333.219256] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  333.225779] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  333.233679] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  333.239628] CR0=0000000080050033 CR3=000000002dc33000 CR4=00000000001426f0
[  333.246760] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  333.253506] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  333.259665] *** Control State ***
[  333.263206] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  333.269945] EntryControls=0000d1ff ExitControls=002fefff
[  333.275498] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  333.282535] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  333.289260] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  333.295958]         reason=80000021 qualification=0000000000000000
[  333.302351] IDTVectoring: info=00000000 errcode=00000000
[  333.307825] TSC Offset = 0xffffff49f8632bbe
[  333.312266] TPR Threshold = 0x00
[  333.315675] EPT pointer = 0x000000008841d01e
07:27:27 executing program 4:
open(0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
mkdir(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000100)='NET_DM\x00')
r1 = perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20000200000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup3(0xffffffffffffffff, r1, 0x0)
write$vnet(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
getpeername$netlink(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000300)=0xc)
accept(0xffffffffffffffff, 0x0, 0x0)
write$capi20(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000480)={0x79})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe1000/0x18000)=nil, 0x0, 0x179, 0x0, 0x0, 0xffffffffffffff9a)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
flistxattr(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = geteuid()
r5 = add_key(0x0, &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000900), 0x0, 0xfffffffffffffffa)
keyctl$get_persistent(0x16, r4, r5)
kexec_load(0x100697, 0x10, &(0x7f0000000180)=[{&(0x7f00000001c0), 0x2, 0x9e945000, 0x3e0000}], 0x0)

07:27:27 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x9cffffff, 0x7, 0x0, 0x1, 0x30}]}, &(0x7f0000f6bffb)='GPL\x00'}, 0x48)

07:27:27 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000240)='/dev/loop#\x00', 0x10, 0x0)
r1 = memfd_create(&(0x7f0000000000)='\xb7\xef\xab\x8e\x89\xd7zU74iX\xdf\xa4\xe6G\xdf\xd6\xbc\xd1i\xbf\xf5\x1a,Bv~D\x1c1\x99\xff\xc5k\xf9\xf1\x93 S\xa9\xce\'&P,\x80P1\xf8\x18\'\x7fR<^\x14\xe7R\x82r|\xa4\xda\xdc\x89\xaa\xf4\xe5\xab[\xa1(E\x9d\x9br\x12/R8O<\xf0\xdb\xe3g^\xf4\xb9\xa0(\xaa\x81#\xf9P\xdd\xab_\xf2\x01\xdc\x816\x7f\x89s\r\xb7\a\t/', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
read(r0, 0x0, 0x0)
dup3(r1, r0, 0x0)

07:27:27 executing program 5:
r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000040), 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000200)={0x4, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="11634840"], 0x0, 0x0, 0x0})

07:27:27 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@multicast2}, {@in6=@ipv4={[0xfffffff0], [], @broadcast}, 0x0, 0x32}, @in6=@ipv4, {}, {}, {}, 0x0, 0x0, 0xa, 0xd101, 0x0, 0x60}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vga_arbiter\x00', 0x20000, 0x0)

07:27:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  333.526880] binder: 12761:12762 transaction failed 29189/-22, size 0-0 line 2994
07:27:27 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_nanosleep(0x0, 0x0, &(0x7f0000000080)={0x77359400}, &(0x7f0000000380))

[  333.622327] binder: 12761:12773 transaction failed 29189/-22, size 0-0 line 2994
[  333.631234] binder: undelivered TRANSACTION_ERROR: 29189
[  333.636837] binder: undelivered TRANSACTION_ERROR: 29189
[  333.746351] *** Guest State ***
[  333.749893] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  333.758929] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  333.767870] CR3 = 0x0000000000000000
[  333.771620] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  333.777729] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  333.783853] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  333.790566] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  333.798775] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.806867] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.814943] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.823022] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.831139] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  333.839236] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  333.847381] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  333.856457] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  333.864548] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  333.872630] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  333.879068] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  333.886620] Interruptibility = 00000000  ActivityState = 00000000
[  333.892937] *** Host State ***
[  333.896158] RIP = 0xffffffff81312160  RSP = 0xffff88802dc0f398
[  333.902240] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  333.908693] FSBase=00007f04313f7700 GSBase=ffff88812fd00000 TRBase=fffffe000003d000
[  333.916632] GDTBase=fffffe000003b000 IDTBase=fffffe0000000000
[  333.922629] CR0=0000000080050033 CR3=000000003627b000 CR4=00000000001426e0
[  333.929684] Sysenter RSP=fffffe000003c200 CS:RIP=0010:ffffffff8b0015f0
[  333.936458] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  333.942609] *** Control State ***
[  333.946093] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  333.952840] EntryControls=0000d1ff ExitControls=002fefff
[  333.958315] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  333.965695] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  333.972448] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  333.979061]         reason=80000021 qualification=0000000000000000
[  333.985470] IDTVectoring: info=00000000 errcode=00000000
[  333.990946] TSC Offset = 0xffffff499bcd6d6a
07:27:27 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)

07:27:27 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000bc0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cdf0319fa22748f9a91c66b3", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000440))
clock_nanosleep(0x6, 0x0, &(0x7f0000000080)={0x77359400}, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000006880)=[{{&(0x7f0000000000)=@ipx, 0x80, &(0x7f00000000c0)=[{&(0x7f00000017c0)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)

07:27:28 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000bc0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cdf0319fa22748f9a91c66b3", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
clock_nanosleep(0x6, 0x0, &(0x7f0000000080)={0x77359400}, &(0x7f0000000380))
ioctl$PPPIOCGIDLE(0xffffffffffffffff, 0x8008743f, &(0x7f0000000140))
sendmsg$alg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000027c0)="cda05ee85dbd5f680838d9042ae6b8e7d7fae0467f79c2ec6bc7df641853d4b930a4834cbf109481518b8e74118647bb4307f249a83d1ecf578b787e77c384cec9bf7f0852425f2bb62be35f86428a185b8acadacee3a451aebacfab5c2ab96f2c6d1fd5a4ad0dac12b7158a3a7fa61a62c501dae213268a4f5469", 0x7b}], 0x1, 0x0, 0x0, 0x1}, 0x240088c4)
sendmmsg$alg(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000006880)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000017c0)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)

[  333.995359] TPR Threshold = 0x00
[  333.998759] EPT pointer = 0x000000008a1a201e
07:27:28 executing program 3:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000000)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x1)

07:27:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x11, &(0x7f0000000300), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

07:27:28 executing program 5:
r0 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, 0x0)
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x800000000000012, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setrlimit(0x7, &(0x7f00000000c0))
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

07:27:28 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)

07:27:28 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000012, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

[  334.404970] *** Guest State ***
[  334.408399] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[  334.418034] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  334.427015] CR3 = 0x0000000000000000
[  334.430808] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  334.436889] RFLAGS=0x0001a202         DR7 = 0x0000000000000400
[  334.442950] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
07:27:28 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x800200000001, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="05001706337fecb662d0882b008d730000303f0bfc10460000000000631ceb13311d39711efd8142e835a9d4ee1d253b03bd3807c9e0a8f4f9e35a54"], 0x0, 0x3, 0xc3, &(0x7f0000000480)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

[  334.449655] CS:   sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000
[  334.457757] DS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  334.465871] SS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  334.473975] ES:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  334.482147] FS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  334.490202] GS:   sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000
[  334.498285] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  334.506387] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[  334.514479] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[  334.523246] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[  334.531306] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  334.537806] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  334.545380] Interruptibility = 00000000  ActivityState = 00000000
[  334.551634] *** Host State ***
[  334.554957] RIP = 0xffffffff81312160  RSP = 0xffff88803034f398
[  334.560983] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  334.567520] FSBase=00007f04313f7700 GSBase=ffff88812fc00000 TRBase=fffffe0000003000
[  334.575416] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  334.581351] CR0=0000000080050033 CR3=00000000a6177000 CR4=00000000001426f0
[  334.588494] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff8b0015f0
[  334.595253] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  334.601358] *** Control State ***
[  334.604897] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3
[  334.611600] EntryControls=0000d1ff ExitControls=002fefff
[  334.617192] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  334.624206] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  334.630921] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  334.637627]         reason=80000021 qualification=0000000000000000
[  334.644109] IDTVectoring: info=00000000 errcode=00000000
[  334.649596] TSC Offset = 0xffffff4942aa2a36
07:27:28 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)

[  334.654027] TPR Threshold = 0x00
[  334.657467] EPT pointer = 0x00000000303ad01e
07:27:28 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getpgid(0x0)

07:27:28 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00\x00\xc3\x00', 0x40004002})
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x30a)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000340)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb96\x9b\xcda\xef~Iy:\xe1\x87\x12\xec\x97\x80\xe9\xa1S\f\xc7?\xa6\x95I\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\r\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~\xff\xff\x00\x00#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xd5\x1b\xca\xa9\xc7[\xa2\xef\xacM\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83\xf2\xf3\xcf7\x8aCZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b\x06!\x982\xeck+8Dk;\x95\xfe7q\x8e\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xb4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x14\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\x04R\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xafh_\x9c\x91\xc1q_|L\x11\x03\x94\xc0\t=\x17\x95P\xd6\xcdH\x1c8^ARL\x9b\x1f\xf6P\rSj\x95\xd9o\x03\xd4\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x13\x82Rk\x9cAz\xab\rT\xadLO\f\x17Y\x1dg\x10\xe3LL\x1fC\xfa\xd9\xb0\xfb\xb4\xf3[\xdf\xd0\xd6\x82\xf6~0\xb8\xf4\xb0X\xfew\xbdY\n\xd6\x105\x9c\xb7\xe5F\xc1:9\xb8\xc2\x85\b\xfd\x92\xb0k\x93\xd7\xc40J\xc2\xf0\x83\xb1\xcb\xd1K\xb9(\"9(~\xf4\xf4\x94`\xe8\xdb\x17\xf9\xcf#)T\xcdj^\xa61\x12\x91 \xd7\x92\xc0\xd0s\xa9\xe4\x18:\xb4(-$\xde`\x97\x8c\xe6\xcd\x8d\x99\x03\xe5u\x97\x14\xb0\xd6\xd0\xae\xcf\xd9\x1e\x1f\xd00=#\xa3\xd4v\xd8\xbdj\x10(\xb6\xf7\x15\xe1\x88\xfe\xe2\x86\xb72\xc4HC@T\xea\xb7XmW\xffk\xc4\x96M|\xf1\x1f\xfa$\xf8IW\xc4\xa9\xcc\x02(\'\x81}S\xe9\xa7\rJ\xc6\xf0_\xc3\x86\x0f\xbd\x83V\x9ar\x02\xbf\xa0+\xe2.i\x7fP\xebnW\x90\x8d\xc5\xc7w\t\xeb\xd9\xec\xd8\x87WA\xee\x15O]\xafI\x03\x9b\x9f\"\x1c\vMdKm\x7f$\"cIB#\xe1Zt\xc7\xc7\x9f\xa0\xd3\x18\x1d\t\xee\x86\xe8\xda\xae\xeeo\xf8s6WK5:\a\xa5\x89\x9a8\xb4\'\xf7\a\xe6\xbe\"<\xd2IS\x04\xb4\xb4\xee\x80\a\x9d\x1b\x15\xfa\xadAB\xdf\x17l\'7\xf9[\xe17\xcb\xdcF\xa4\xddW[#\xa5\x1cK&\x13\x1cF\x0e\xd5O\xf3\xd9\xc1\x0eYwk}\xbc \xe8\xd0l\xe1\xe2\x9a\x84\x00'/787)

07:27:28 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup\x00\f#\x9f\xd0\x85\xac\xc4\x9b\x81-\xb3\xd7=C\xea', 0x200002, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x18, &(0x7f0000000000)='./cgroup\x00\f#\x9f\xd0\x85\xac\xc4\x9b\x81-\xb3\xd7=C\xea'}, 0x30)
bpf$MAP_CREATE(0x0, &(0x7f0000000200), 0x2c)
bpf$MAP_CREATE(0x2, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000200)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f00000000c0)=0xee2f, 0x4)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000100)={0x1, 0x400}, 0x8)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
socketpair(0xb, 0x807, 0x0, 0x0)
accept$inet6(r1, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000000, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
unshare(0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
sendto$inet6(r1, &(0x7f00000002c0)="0aa1adefdb8cc85a864018ae463716531666a29e531de6d91bd4c52fae0d9b223cca055cd8c6114986e0516e29dc69a9f3fd40c4295262c4defae22e2fd4dd5b3b6f1e1b02dacab9ec2efd0d4bb6cb16e9d1f22bef81a45348ce3fe026f0f3e8a63a4aa778fcb19ea5750901dc7418bb8f17e3fb0c94884081dd3244fea1bb39557c9353d70c7084eb0af3fc50bc8979b3ea28bb8bdf682e1b04d365773e8deaecf13e", 0xa3, 0x0, 0x0, 0x0)
close(r1)

[  334.894097] ==================================================================
[  334.901641] BUG: KMSAN: uninit-value in memcmp+0x117/0x180
[  334.907273] CPU: 0 PID: 12822 Comm: syz-executor.0 Not tainted 5.1.0-rc2+ #25
[  334.914538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  334.923889] Call Trace:
[  334.926487]  dump_stack+0x173/0x1d0
[  334.930131]  kmsan_report+0x131/0x2a0
[  334.933938]  __msan_warning+0x7a/0xf0
[  334.937737]  memcmp+0x117/0x180
[  334.941009]  __dev_mc_del+0x16c/0x690
[  334.944808]  dev_mc_del+0x6d/0x80
[  334.948255]  __igmp_group_dropped+0x237/0x12f0
[  334.952838]  ? kmsan_get_shadow_origin_ptr+0x73/0x480
[  334.958034]  ip_mc_down+0x1e7/0x3b0
[  334.961653]  inetdev_event+0x24a/0x1e40
[  334.965627]  ? kmsan_get_shadow_origin_ptr+0x73/0x480
[  334.970804]  ? arp_netdev_event+0xeb/0x250
[  334.975056]  ? ipv4_doint_and_flush+0x280/0x280
[  334.979717]  ? ipv4_doint_and_flush+0x280/0x280
[  334.984388]  raw_notifier_call_chain+0x13d/0x240
[  334.989147]  dev_close_many+0x621/0xa10
[  334.993126]  rollback_registered_many+0x9a4/0x21f0
[  334.998052]  ? kmsan_get_shadow_origin_ptr+0x73/0x480
[  335.003236]  unregister_netdevice_queue+0x55d/0xa70
[  335.008249]  __tun_detach+0x21be/0x2b00
[  335.012250]  tun_chr_close+0xda/0x1c0
[  335.016041]  ? tun_chr_open+0x790/0x790
[  335.020001]  __fput+0x4d2/0xbb0
[  335.023281]  ____fput+0x37/0x40
[  335.026546]  ? fput_many+0x340/0x340
[  335.030245]  task_work_run+0x22e/0x2a0
[  335.034134]  prepare_exit_to_usermode+0x321/0x420
[  335.038971]  syscall_return_slowpath+0xb2/0x650
[  335.043639]  do_syscall_64+0xe2/0xf0
[  335.047346]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  335.052539] RIP: 0033:0x412071
[  335.055723] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 e4 1a 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  335.074960] RSP: 002b:0000000000a4fd70 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  335.082652] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000412071
[  335.089908] RDX: 0000000000000001 RSI: 0000000000740718 RDI: 0000000000000003
[  335.097166] RBP: 0000000000000000 R08: 0000000000051bf6 R09: 0000000000051bf6
[  335.104419] R10: 0000000000a4fca0 R11: 0000000000000293 R12: 0000000000000001
[  335.111675] R13: 0000000000a4fdb0 R14: 0000000000000000 R15: 0000000000a4fdc0
[  335.118941] 
[  335.120550] Local variable description: ----buf.i@__igmp_group_dropped
[  335.127193] Variable was created at:
[  335.130920]  __igmp_group_dropped+0x70/0x12f0
[  335.135405]  ip_mc_down+0x1e7/0x3b0
[  335.139008] ==================================================================
[  335.146345] Disabling lock debugging due to kernel taint
[  335.151867] Kernel panic - not syncing: panic_on_warn set ...
[  335.157740] CPU: 0 PID: 12822 Comm: syz-executor.0 Tainted: G    B             5.1.0-rc2+ #25
[  335.166384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  335.175719] Call Trace:
[  335.178298]  dump_stack+0x173/0x1d0
[  335.181917]  panic+0x3d1/0xb01
[  335.185120]  kmsan_report+0x29a/0x2a0
[  335.188919]  __msan_warning+0x7a/0xf0
[  335.192709]  memcmp+0x117/0x180
[  335.195983]  __dev_mc_del+0x16c/0x690
[  335.199788]  dev_mc_del+0x6d/0x80
[  335.203232]  __igmp_group_dropped+0x237/0x12f0
[  335.207811]  ? kmsan_get_shadow_origin_ptr+0x73/0x480
[  335.212996]  ip_mc_down+0x1e7/0x3b0
[  335.216622]  inetdev_event+0x24a/0x1e40
[  335.220603]  ? kmsan_get_shadow_origin_ptr+0x73/0x480
[  335.225781]  ? arp_netdev_event+0xeb/0x250
[  335.230000]  ? ipv4_doint_and_flush+0x280/0x280
[  335.234655]  ? ipv4_doint_and_flush+0x280/0x280
[  335.239313]  raw_notifier_call_chain+0x13d/0x240
[  335.244075]  dev_close_many+0x621/0xa10
[  335.248049]  rollback_registered_many+0x9a4/0x21f0
[  335.252979]  ? kmsan_get_shadow_origin_ptr+0x73/0x480
[  335.258182]  unregister_netdevice_queue+0x55d/0xa70
[  335.263196]  __tun_detach+0x21be/0x2b00
[  335.267178]  tun_chr_close+0xda/0x1c0
[  335.270965]  ? tun_chr_open+0x790/0x790
[  335.274930]  __fput+0x4d2/0xbb0
[  335.278207]  ____fput+0x37/0x40
[  335.281472]  ? fput_many+0x340/0x340
[  335.285189]  task_work_run+0x22e/0x2a0
[  335.289174]  prepare_exit_to_usermode+0x321/0x420
[  335.294008]  syscall_return_slowpath+0xb2/0x650
[  335.298678]  do_syscall_64+0xe2/0xf0
[  335.302385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  335.307563] RIP: 0033:0x412071
[  335.310759] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 e4 1a 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  335.329645] RSP: 002b:0000000000a4fd70 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  335.337351] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000412071
[  335.344613] RDX: 0000000000000001 RSI: 0000000000740718 RDI: 0000000000000003
[  335.351885] RBP: 0000000000000000 R08: 0000000000051bf6 R09: 0000000000051bf6
[  335.359224] R10: 0000000000a4fca0 R11: 0000000000000293 R12: 0000000000000001
[  335.366486] R13: 0000000000a4fdb0 R14: 0000000000000000 R15: 0000000000a4fdc0
[  335.374869] Kernel Offset: disabled
[  335.378490] Rebooting in 86400 seconds..