SNDINFO(r3, 0x84, 0x22, &(0x7f0000000080)={0x9ed, 0x0, 0xdbb, 0x4, r4}, &(0x7f0000000100)=0x10)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc058565d, &(0x7f0000000300)={0x0, 0x2, 0x0, {0x0, @raw_data="2085f3072c9b42f03f10be83b68ebcf014a0409fdf8be3d3e82c747c7f79f7cee00b443f02000000a91ca25441677d16ff0adc9e2d6eebf4bef6c96076d67f243aebaac6430c9ef1a788e60eb3d0a7c29a5e3416871c8a51df55701a05e0a2f09883c482efaf6dc9e1695038733a23bbf0faf76a1d3fae5c251c4fad507b2ead2f1581057e3f84f3e8503ee570d8069eb53a897d2dd5f3d89629917fb171132181e9f3c510ac5229a6b6096547977578c5795d84cf23fe1d042df97dbd37a4b3d0e338a1b611e3ae"}})

14:05:37 executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
r1 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x3, 0x44000)
accept4$nfc_llcp(r1, &(0x7f0000000200), &(0x7f0000000280)=0x60, 0x800)
sendmsg$key(r0, &(0x7f0000cd0fc8)={0x0, 0x0, &(0x7f0000ca6000)={&(0x7f0000000000)=ANY=[@ANYBLOB="020f00001500000000000000000000000100180000000000080012000000030000000000000000000600000000000000000000000000000000000000000000000000000000000000ff02000000000000000000000000000105000500000000000a0000000000000000000000000000000000ffffac011400000080000000000005000600000000000a00000000000000fe8000000000000000000000000000ff0000000000000000"], 0xa8}}, 0x0)
ioctl$CAPI_GET_MANUFACTURER(r1, 0xc0044306, &(0x7f00000001c0)=0x100)

14:05:37 executing program 0:
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000080)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}}, 0x24)
r1 = socket$inet(0x2b, 0x0, 0x8)
listen(0xffffffffffffffff, 0x0)
listen(r1, 0x57f)
r2 = openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IMGETVERSION(0xffffffffffffffff, 0x80044942, &(0x7f0000000100))
ioctl(0xffffffffffffffff, 0x1000008912, 0x0)
mkdir(0x0, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x6, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{0x0}], 0x1, 0x2)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0)
r3 = syz_open_dev$audion(0x0, 0x0, 0x0)
getpid()
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000004c0)={{{@in6=@initdev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@initdev}, 0x0, @in6=@initdev}}, &(0x7f00000001c0)=0xe8)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYRES32=r4, @ANYBLOB], 0x2}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
ioctl$VIDIOC_ENUMAUDIO(r3, 0xc0345641, &(0x7f00000000c0)={0x4, "5569fbfb028f36b4fb0ae45af54107ff94f82aff9701288ce6cb339db3aca6be", 0x3})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000140)={0x0, 0x80000, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000480)='/dev/nullb0\x00', 0x0, 0x0)
fcntl$F_SET_FILE_RW_HINT(r5, 0x40e, &(0x7f0000000040))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
write$binfmt_misc(r5, &(0x7f00000006c0)=ANY=[@ANYBLOB="000000008e9464a206bd25e188bc0994ddc3d9575e6dec2aa5588b8bff2e1c2222551fbc604e3e3b37d33db65ff0d115168aaccef4eeb7e1eb24c584a03a2b10ece5ca1f61e06965b298c8ce3dd02c68a147a8ec7063e732be04fec951f934879ed74cfde53d9a4f0dd315fd4b8b8ca68aa7d1b08841e555727e8c767ee245828827867edc7a1153576dd34779fce9ab868692959ceba04e576d3c530d6671d7f1e3a0389707571d3366af65da074ad23cade2cecfaf942b0b4dd95b532479a7c2c73146d1e82cb0b679aa2aafadc8ff4162836a56718e77701ac5fdce60d3eb930e566722278144ed27b640c546372ad430cc000000000000000000000000003a18d4f2ded79dee2ca6a7f2d96fdeea46ed7fddcafad19e6897da41da666f40e87130361c28ab23cee019dc840bafd4830b59ffb2fe7a4f3499040e1788295e17ac431fc8ad42a0f96148d3f988781a977d018e01d3cb40c59b99e822f440a0cf3ea2d76a92fdbde54278720aafdb"], 0x16f)
io_setup(0x0, 0x0)
io_submit(0x0, 0x2f6, 0x0)
sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x110, 0x1, 'w'}], 0x18}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f00000031c0), 0x0, 0x10002, 0x0)

14:05:37 executing program 5:
finit_module(0xffffffffffffffff, &(0x7f0000000000)='/dev/sg#\x00', 0x2)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, 0xffffffffffffffff, 0x4000000)

14:05:37 executing program 2:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x10000, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f00000005c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000600)=0x14)
r2 = getuid()
sendmsg$nl_xfrm(r0, &(0x7f0000000780)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20400}, 0xc, &(0x7f0000000740)={&(0x7f0000000640)=@newsa={0xf0, 0x10, 0x1, 0x70bd25, 0x25dfdbfd, {{@in=@multicast2, @in6=@mcast2, 0x4e20, 0x4, 0x4e21, 0x72e3f05b, 0xa, 0xa0, 0x20, 0xbf, r1, r2}, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d2, 0x3b}, @in=@multicast1, {0x5, 0xee3, 0x7, 0x1, 0x2c3, 0x6, 0x400, 0x6ad8}, {0x100000001, 0x1, 0x0, 0x800}, {0x4, 0x1, 0x1}, 0x70bd2c, 0x3503, 0x2, 0x3, 0x9}}, 0xf0}, 0x1, 0x0, 0x0, 0x54}, 0x40)
socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
chroot(&(0x7f00000002c0)='./file0\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x1f, 0x9, 0x7414, 0x7fffffff, 0xa8, 0xffffffffffffffff, 0xa7, [], 0x0, 0xffffffffffffffff, 0x3, 0x1}, 0x3c)
fcntl$setflags(r4, 0x2, 0x1)
r5 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r5, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x414a00, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r6, 0xc0305302, &(0x7f0000000180)={0xffffffff, 0x2, 0x6, 0x37f, 0x7, 0x200})
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x1}, {{@in, 0x0, 0x33}, 0x2, @in=@loopback, 0x0, 0x4, 0x0, 0x2fd6}}, 0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000380)={{{@in=@remote, @in6=@empty, 0x4e23, 0x7, 0x4e20, 0x5, 0xa, 0x80, 0x20, 0x5e, r1, r2}, {0xfffffffffffff6e5, 0x1, 0x1000, 0x4c, 0x5, 0x7, 0xb5, 0x3f}, {0x2, 0xb7c, 0x9, 0x22}, 0xff, 0x6e6bb5, 0x1, 0x1, 0x1, 0x1}, {{@in=@multicast1, 0x4d5}, 0xa, @in6=@mcast2, 0x3506, 0x2, 0x1, 0x9, 0x5000000000000, 0x3, 0x8}}, 0xe8)
sendmmsg(r5, &(0x7f0000005fc0), 0x800000000000059, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r3, 0x40505330, &(0x7f00000000c0)={{0x1, 0x400}, {0xe6, 0x3f}, 0x8, 0x7, 0x3})

14:05:37 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:37 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f00000000c0))
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x80000000, 0x2000)
ioctl$SIOCRSSL2CALL(r1, 0x89e2, &(0x7f0000000080)=@bcast)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

[  533.629108] use of bytesused == 0 is deprecated and will be removed in the future,
[  533.678485] use the actual size instead.
14:05:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x3)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000)
socket$pppoe(0x18, 0x1, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f00000004c0)={'eql\x00', @ifru_addrs=@hci})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x8000, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f0000000140)={0x7, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}]})
syz_open_dev$midi(&(0x7f0000000180)='/dev/midi#\x00', 0x80000001, 0x101200)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000300)={{}, {}, {0x0, 0x0, 0x0, 0x0, 0x100000001}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:37 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x8, 0x203)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f00000000c0)={0xffff, 0x6, 0xfff}, 0xc)
openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/member\x00', 0x2, 0x0)

[  533.716011] *** Guest State ***
14:05:37 executing program 0:
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000080)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}}, 0x24)
r1 = socket$inet(0x2b, 0x0, 0x8)
listen(0xffffffffffffffff, 0x0)
listen(r1, 0x57f)
r2 = openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IMGETVERSION(0xffffffffffffffff, 0x80044942, &(0x7f0000000100))
ioctl(0xffffffffffffffff, 0x1000008912, 0x0)
mkdir(0x0, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x6, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{0x0}], 0x1, 0x2)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0)
r3 = syz_open_dev$audion(0x0, 0x0, 0x0)
getpid()
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000004c0)={{{@in6=@initdev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@initdev}, 0x0, @in6=@initdev}}, &(0x7f00000001c0)=0xe8)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYRES32=r4, @ANYBLOB], 0x2}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
ioctl$VIDIOC_ENUMAUDIO(r3, 0xc0345641, &(0x7f00000000c0)={0x4, "5569fbfb028f36b4fb0ae45af54107ff94f82aff9701288ce6cb339db3aca6be", 0x3})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000140)={0x0, 0x80000, <r5=>0xffffffffffffffff})
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000480)='/dev/nullb0\x00', 0x0, 0x0)
fcntl$F_SET_FILE_RW_HINT(r5, 0x40e, &(0x7f0000000040))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
write$binfmt_misc(r5, &(0x7f00000006c0)=ANY=[@ANYBLOB="000000008e9464a206bd25e188bc0994ddc3d9575e6dec2aa5588b8bff2e1c2222551fbc604e3e3b37d33db65ff0d115168aaccef4eeb7e1eb24c584a03a2b10ece5ca1f61e06965b298c8ce3dd02c68a147a8ec7063e732be04fec951f934879ed74cfde53d9a4f0dd315fd4b8b8ca68aa7d1b08841e555727e8c767ee245828827867edc7a1153576dd34779fce9ab868692959ceba04e576d3c530d6671d7f1e3a0389707571d3366af65da074ad23cade2cecfaf942b0b4dd95b532479a7c2c73146d1e82cb0b679aa2aafadc8ff4162836a56718e77701ac5fdce60d3eb930e566722278144ed27b640c546372ad430cc000000000000000000000000003a18d4f2ded79dee2ca6a7f2d96fdeea46ed7fddcafad19e6897da41da666f40e87130361c28ab23cee019dc840bafd4830b59ffb2fe7a4f3499040e1788295e17ac431fc8ad42a0f96148d3f988781a977d018e01d3cb40c59b99e822f440a0cf3ea2d76a92fdbde54278720aafdb"], 0x16f)
io_setup(0x0, 0x0)
io_submit(0x0, 0x2f6, 0x0)
sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x110, 0x1, 'w'}], 0x18}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f00000031c0), 0x0, 0x10002, 0x0)

14:05:37 executing program 1:
mkdir(&(0x7f0000000700)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='overlay\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=./file1,workdir=./file1'])
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000d80)='/dev/dlm-control\x00', 0x4100, 0x0)
connect$inet6(r1, &(0x7f0000000dc0)={0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, [], 0xe}, 0x1}, 0x1c)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

[  533.748559] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  533.786761] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:05:37 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x200000, 0x0)
ioctl$PPPIOCSMRU(r1, 0x40047452, &(0x7f0000000100)=0x2)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000080)={0x2, 0x7, 0x7, 0xac, 0x3}, 0x14)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

14:05:37 executing program 4:
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r2 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0xffffffffffffffe0, 0x80000)
ioctl$ASHMEM_SET_PROT_MASK(r2, 0x40087705, &(0x7f0000000080)={0x4ed, 0x2})
bind$inet6(r0, &(0x7f0000001080)={0xa, 0xfffffffffffffffe}, 0x1c)

[  533.813917] CR3 = 0x0000000000000000
[  533.822312] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  533.838264] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
14:05:37 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008915, &(0x7f0000000200)="c0dca5055e0bcfec7be070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000040)=0x400900000001, 0x31f)
connect$inet6(r1, &(0x7f0000000000), 0x1c)
r2 = dup2(r1, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132224)
fchmod(r0, 0x42)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$inet6_tcp_int(r1, 0x6, 0x11, &(0x7f0000000100), 0x4)
renameat2(r2, &(0x7f0000000080)='./file0\x00', r2, &(0x7f0000000140)='./file0\x00', 0x3)
setsockopt$inet6_int(r1, 0x29, 0x0, 0x0, 0x2fc)
ioctl$IMDELTIMER(r2, 0x80044941, &(0x7f00000000c0)=0x3)

14:05:37 executing program 4:
openat$snapshot(0xffffffffffffff9c, 0x0, 0x200220, 0x0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, &(0x7f0000000600)={'TPROXY\x00'}, &(0x7f0000000640)=0x1e)
socket$packet(0x11, 0x0, 0x300)
pipe2(0x0, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8020}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x0, 0x8, 0x70bd2c, 0x25dfdbfb}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(0xffffffffffffffff, 0x111, 0x3, 0x0, 0x4)
ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000180)={0x0, 0x6})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, 0x0)
unlink(0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x1600, 0x3ef, 0x2000000, 0x3f00000000000000, 0x100000000000600, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
prctl$PR_GET_FP_MODE(0x2e)
ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000040)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @local, @local})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, &(0x7f00000002c0)="60b7fdfefe5f021ce1eef846f2e3402518b4878718dba7bc53eaaec76281255a6d32f40eb26b15108f75cf531c785ec46fd4eca035aa274e01456277d142de586e0300f3046a957353d67c0266a97601e4a538a6cb7463b32137efa8bc601828341d945dfff47e0ade421675a0c3076bbd039ec4060f05965c5035356f520e2899008659e1fcbaca361da5c7ca5faa66b64f541c581a474eb2dec05831a3fc5c10535733ab4534bac96e6d46729211453ca25db42097a9ac0713ba06ab0cadc8a36dc2c6e631ed26b4502f219060a9cdad00000000", 0xd5)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x3f, &(0x7f0000000000)=0x100000001, 0x4)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm_plock\x00', 0x800, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x200000, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x80000e23a, 0x204002)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x0, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000400)='/dev/dlm-monitor\x00', 0x121080, 0x0)
lchown(0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000240)={<r4=>0x0, 0x80000, r3})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000280)={r4})
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x4008040, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)

[  533.873113] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  533.891906] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  533.911663] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
14:05:37 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x1)
stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000140)={{{@in=@remote, @in6=@empty, 0x4e22, 0x1, 0x4e22, 0x3f, 0xa, 0x20, 0xa0, 0x2f, 0x0, r2}, {0x7cb137b5, 0x7ff, 0x5, 0x4a1, 0x7, 0x0, 0x3, 0x6}, {0xe05, 0x4, 0xfffffffffffff800, 0x6}, 0x7, 0x6e6bb1, 0x0, 0x0, 0x1, 0x3}, {{@in=@remote, 0x4d3, 0xff}, 0x2, @in6=@empty, 0x3500, 0x3, 0x3, 0x137, 0xfffffffffffffffb, 0x99}}, 0xe8)
write$UHID_INPUT2(r1, &(0x7f0000000240)={0xc, 0x51, "eedc605b6b57cfcc8ca63c737d48a06053578b6f0d058495bb2702a0bdc6dc28575df1ae67cad5bea69f47c03d1d2d1730ce3ba6233e8d21aa5bce6f2b9b0633a1540bc4be85290835548100d4e28df808"}, 0x57)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

[  533.945969] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  533.964631] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.027430] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.083968] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.125518] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.154970] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.186749] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  534.209746] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.218020] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  534.231672] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  534.239849] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  534.257504] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  534.265360] Interruptibility = 00000000  ActivityState = 00000000
[  534.285695] *** Host State ***
[  534.293210] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a6047998
[  534.299308] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  534.307565] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  534.319150] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  534.327802] CR0=0000000080050033 CR3=00000000551b0000 CR4=00000000001426e0
[  534.338237] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  534.346732] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  534.356093] *** Control State ***
[  534.375352] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  534.402953] EntryControls=0000d1ff ExitControls=002fefff
[  534.426168] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  534.445166] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  534.463237] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  534.482660]         reason=80000021 qualification=0000000000000000
[  534.496910] IDTVectoring: info=00000000 errcode=00000000
[  534.508048] TSC Offset = 0xfffffedf99cd582b
[  534.518085] EPT pointer = 0x00000000518b101e
[  534.527161] Virtual processor ID = 0x0002
14:05:38 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x3, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x4082)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
r3 = memfd_create(&(0x7f0000000200)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r3, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x81806)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
sendfile(r1, r2, 0x0, 0x2000006)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(r1, 0x0, 0x483, &(0x7f0000000000)={0x33, @multicast2, 0x4e24, 0x2, 'sed\x00', 0x18, 0x6, 0x54}, 0x2c)

14:05:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x200, 0x0)
write$FUSE_GETXATTR(r1, &(0x7f0000000080)={0x18, 0x0, 0x6, {0xfffffffffffffc00}}, 0x18)
writev(r0, &(0x7f0000000540)=[{&(0x7f00000000c0)="3a78f7e49b788705a0d364b450aa0b4b4032ba79ed8107f9b45b724eee0900fab8a68277ad1cb8c356a13c59bc3d6c4ef6aecd8967a85adb4fa1cbf0a624f5ef2f6266a8e71e9d45d01f462f4958b18d22e0b5c71b9bdb2c4e55f2688fcf5da588973c5d26cf501b9adbdf48a23a90f8040148d1e18013cf277c1f9a3aa8c6", 0x7f}, {&(0x7f0000000140)="87ea3c13d6a4c95c36722ee2ad944109394147c8bd595eff0da949707ac5599b8d6469d34246f0cf6bd4229d3758ec517e5d107a0791f89525ccebdc1f5a72ea87851a4d5948128c97dd2626aa778b68ec4681fcdbcf4991", 0x58}, {&(0x7f00000001c0)="9a8245ab822a18016ba708e344321ec5d85e01beca2c201b835eb72372941a16661a8049af6db8ae11682669d4534fe70522bde8de52b2f615", 0x39}, {&(0x7f0000000200)="43532862081b62477c1ffe2e0f2f309acf470fe98595b32e2dca88c4e00ba84276a3297e4b772becf3fe9837f421e960f407635b8c7711a56f647890", 0x3c}, {&(0x7f0000000240)="fe10865632f94e0bd5dde7594e3e6f0989a53b9f1656c04fb282c7977270e97770f0402c5bc4f1a3da4f9f0fd0e43a764c653968126d5b5bcfff4013aa0d7cb98d1dab76db0ff19c7423faa8f5ee05eca667ea0d34835d822c00a7086e7eed8647c4efb7edeb226d8eac55eb006d5c2b635a306e26521e70c10337066d7b023b55c9de85ba878116ce5b3578edbd705818eaf2f1dfc4098f4a2f18e53f030b65cec06d8a7bb686c5cb9389d2bf63439bd4518ac5e8510d3ebed7d117137c8093c27007f4a4f3cae14211e787077815f1b8c93b5cc9013653a00427c202c8bb49f7dac6deadfd37ee4cfc0aa427717223a2df771d2dca781bdb7129de08ac", 0xfe}, {&(0x7f0000000340)="f91681c6820bb2899d54fff117f8b6d263c5d7003d458e3e9056d5db56372365fcf32aa8165078f535f975b32b343f18ac49fd69c713e851a7d907b8", 0x3c}, {&(0x7f0000000380)="171756df8d075c8abd35a8283248524cd9d44df5ce8c9d137c2aeb1543d11b534298d079dc9129e619685dcdd8bf9a8862260c91f27ee4276ed67e366c133d84a782f56a17ecba29c848ee731a4320cb988b3c0c68671bc220079c7c41ab16ce5825933b62598a622ad79482b98249fc343a948f28b20f72174af0994dc7f43c31fa1d75a107ac7f28", 0x89}, {&(0x7f0000000440)="656dc5921f5a4e2d1b4f6b56492f586884e3475f83565174f64b47e1d5cb1d282daad09e8d29f98bb60cfff6b8791c26278529969636fa8d83474ac1cb4929d7ef70d377e68f49fe87e93ff491dc504a150fee34f9258c27df1c9f8c0b5d8e85e50b87d1f2ac0bddb03ec97fa6bfbdbe56bfd377b5bcd6c848e1f2ffdb4f4010fbda14207e1f7ab26c051801fa22ae381b4746515d602a7fee1d9873f063843954b3daa4f97e38e6d09de0dc68e0ffd03ec1360a78a2536856e321be760ee64e1ba68a89e9e1eb07d872478928095b998196fcade94401181c590390e61ab0926a4697bd364233c8bfbfdb", 0xeb}], 0x8)

14:05:38 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
close(r0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
close(r2)
shutdown(r1, 0x0)
close(r3)
pipe(&(0x7f0000000100))
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x1}}, 0x0)
splice(r0, 0x0, r3, 0x0, 0xc0, 0x0)

14:05:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:38 executing program 4:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r0, &(0x7f00000000c0), 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
gettid()
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="6d636e676c6500000000000000000000000000000000000000000000000000001f0000000668273dff000000000000003ee87e0000000006000000000000f000000040040000f0020000400400003005000030050000301078fd0d72401cf131e55ffab57d1f2cd91e0e8cdc6ab7b6c62c3bf183ef05cb62a4286c535d6f6608c608051400c4244d7145c5de27abe1a4b7ca3814e8d194b282ee7ecd27d3fd5d95e0aa52168137becea3d53e"], 0x1)
fcntl$setstatus(r0, 0x4, 0x80000000002c00)
setxattr$security_smack_entry(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.SMACK64\x00', &(0x7f00000001c0)='+\x00', 0x2, 0x2)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x400, 0x0)
write$UHID_INPUT(r1, &(0x7f00000002c0)={0x8, "e7ed066fff6ed964701b0a6a6a1a12f3ebd207731291b342776da2842de9d340a3c70193fe2e199bc993e8aad0974044861d420c45b0d319f4e8905c5eea69f9fc4d04d858e482f5ca506604e544d2a24be7c4eae36361e5d6bd3a767ab7e24a1c5c96231b4d6c3921ab7fd660c27e5858c371024fd994400075c59e0176e7b54f972583e6d7ce04b23696cafc93fbaa42085228bde8bc706b618ff14946080ec845a5d26653f3d83f47d31df0a0bd6504169c2b5079c6fb8b68ed17446a1eb3d5735746414fd9ebb013aac354ac5f8c9d6ae07edfb47f36c46f35e62ca1bd755b9181449785e779b6337013e37e3ba8f0313ca864c019af9d8570aceb94ca005c84cfeebf2690711032def57d2241abb11fe458b01120d6b93c2767427c14e7ffc20914729746dcbe8ece7fda22b5da008e40d28a98aeb99af4feeffb0b47e420d7cfc8739979ea1d577a84fbcda9d1d0d416d2e9a2df48f9d199399383a463ec107a118a8f3c4b72e574d7c5037a4a3b255362462ef6feea48679c2214c084116be95ccbf2c8b43592ef9398b962fd1c169b0053ef7dbfa278423a5bf521544e544f85d404aeee76df746640fa87e9749a798fc881e1129d70509cf89341c99489f59d7cfc318a20d5bce7b5c741aad748f4ec2fdd865977b74a70545ab183c1ade3de8b51f59b28f55595e0e11fdca135b090d173f09e2f7c60ac04666e407352d66514b71e8916a64c79b100948e25a9f515b49d4d3b52b4e9a82d920b134063a2d2d77e39f3d316d208129592961fbe91aceab194316979811538560cab71aeedb5bcdb6c17ede460eed75de9dfaeb28221302f49516a3fc3414fe7c290bfd7441640c2064f64043b0453a5769036f4848ca33dd1b4b91569a1c098441d113db851905fc9c092d3f23833635947a254772f0c9e0bbd9dc6ee4e7e02b35e4a21eff4e5d5e54710097c277e2d976d3c133e32e835ea84acb155ef1d2244a3460bbd94dd35bb03be1d47b05f76ec9a8c058c4576113d3100e574be5d9c7c9141fcccdac4fee1398f0d8247035004f38b14d5a0c647c260fcb8e79edce9efe722460817e4c54c2fe6039a504cc1cc7357107e26dfdab3a9f203bd90e4cfb36a027df037658e88fe4ffd783e558d1fa87d20e2818756b4fd6309fdfea9cf0aee27a1032932d22b4b65d98c649473fffddcae565175d68b0a9c5e904b82a25e45637ea14147c0a0598349354164919373b0a32ff4286099c08c8b6c7e80688d76523f09f723e91a8f42879444c4767244ab521042ea3f1964b490c3ee437a477a1e711debc885882815174aea1b27d4833361f4d896c41edf19a9420faa2391847eb624c8c125805d6a21891af3976c80c8996e04c2d334a64b25b969c520fbfe05756157373fc672c3ef790d77c09a99a8ddfd1fca41be84b1d248dd3c25a55347da9aa9a57436393f711e279963d364829bd5d098c5d7eaa036a092e48e8b60fd4cadfa231065d37fafea7258257a8ab2f66a2015ece7ffb5996dcd980610e15561fe6dd37cf2ddf3b89edee0c9acac23d831d49d22715ac8c58591cb02b4724fb2136a089360a2b0e8d7424c173183ef599355de95fcf30d6cf163d46fa4d3d75276067262546cd75e947e1312fead34e4ebf4a8b81b8309c39ccd9bd121e4f29908cc1e56560748157e9a4b2c59f62ca0934d1a11d7f268d9599ad1deb8935a7777349b9d1482e354ae96b521b3c7790243c70693d93a72d3c34ab337b47ebe81eaff648b93c6793e5dedcc1f679d527da46ef542fd6438b23df70f2a1ee4bb97d1e2f4af89ce8d2ef9c60bd493e166860d83de8ff9e3eb94613b49de0619703f2fb20654c99507e8e7ff09d02817668992240c604265b9f46d480fd5b7bb877fd12e1ef625760d37e1711d9cfa9bf52b01c5b596dcef95da577bc7d0b1cff22bf01599e952575e6216d25398750b82cdd9f245bc3d53a56d79bc1200813300df91f8e367934bf185aa46f1f31722f3b9d4fd5d275fb876d45d3e4e1e00264e370d1dc6d304805c962831419acefe9249ea7ea3aa60f365d960013ca972bd74cee1da0dbb6b5a3b9e1abd2b645168378a6ba095345da00e4fd22efe4397060683f967b121231bc1061887c0257c60d1cec4d53e7ef048573c2ca1671499850f6f686df37e6b127b839c591ee3ad5245af7068a6138fa278d03ea4ea9c5911988a4fcfa85fec630474af54d3b65ecfb3de43f1863afa15bbc151ac1f04ce2e8dc8e1c964d2d306553201e408a96f5f98849e9b6fdd7bd74955141e97c2ef42768fd4a639ecd01b61b302f0de9b34336ac8fc88db71d4f38dfef5fa60def8725830c8fd03aa8fbd0290e0d1e28c8a34296bffa6e4cb6648e55f53434d01d46d83f227a8794f04537014b23d07fbcb24ff7f0baa40372ecc45e227f334f50d1db1a6b4f311044c11db3c1cad196d2d62160723c06f09ae78c72d02ee2dd03728bbae90de02eaa135ffa2cee641fdf0cbeaf277a220cca52cdf5ed4b359e10a6ef9d99ae32b9485395dd5d778cec10ac626a2bc827fcb70d4ecd51d6d37d77708c9bce40b05ba9573f72666f3c69d64d314db52556281995f37c7be628c87351d519ddda87d1a00745319ae1ecb86a221ab3236d70c61360bb8932a100e278d2af66a66934bf9ab0805421c20f32aa456c88413b33632cfbbb0c2ef4bcee5b4a5729a7b02dda407dbdb74fdffca89f65ffcea55d55e451049b170d9f0a6994812b4fb991e9d0a417480c6d070df489dca9884b7dc3f553f9a2dc8907a0eb8cabe50ef95a594928e8d2f5cb47b8ba90090eb8b98f9af4f57f27f55f82fad9ba02e42a7ff072703549ffe7274f3e244f22be290abee0661a317095ce01c0541233e03f7103d76244c01c2078f154e27e09cb8e4573e8d8c88ea12bed71321417e7e94077dca3eea25ac73079349d2893faf93355d7a40635ba3c2ca5565365ea46a560d420377859d5b654f4f7f8808e806eb16721c266d6357b080ba1632650cb290149f2a557774b28f54ec49f4bc79d3d967d20da6da9b24d943e707bc4c3b3ce11853bb132395d3305f17c2022db56783b68b023dd7b9c29d2c211d0399b78427deb3b9a7314b667cb254e29a15f8e096529609fb18e18bc995e46833cf8b145a6d2bf1c80f71a04e2fb86f1543eb35864d78701768851c8b24561559841c58c0b4889ca43f0c5a825f26dabb38cfca99424ee4d28d4c3aff51b5c2f5b7b2751e0939243e0bb5142cbc9ae817d06523be0fa25075a4f192e4eafbc30a5b4591426cd76942da9d63272f6bf0814fa39586b8c7edd4ec62ecda75f6c0190ab2fb5d23145f64e1985a4691b19662262a8e5dceb063cf1cb27cba3a03a8619277e2df86fa9eb1aba6c02d87f889d83d2b32544d971ff5c64c6187acc124206cc44390be73d8c83c4d934b4037ada520204f17336db53dad82cc9aeec1a34a374a0705615e091d3d4b0cdc4c4beda3a6ba62b65db6bf1bde3d04f9a6c363092840ee4bfce6e202a721e6cde6b5d792d72653986d21612397ca22633d7b8754cae85ecf024f55141e4460908923219e50e419421689e7e1b588becb5c50cd73034a83c53360ebee1401cc00cfc2950b92814afad6e6787a7da5e3dcbc36a8a0e28eb61253b536e2033220ee9865876d0beb311ddb6686b99acc1cb8205e198b227ee53d85bfeff0298c615f4f69d8050b35948c08121ac108f8a2b727adb6d886652d866d0c26881c1e74834a4f51cf412f2fc637c4872a3995b97f049b1aca57bbbf3ad217d5091a73bf681af694ad601b5878ed38b33b23e0105da0a56d0b498b765d5a37e53bda08e71ce96d49ab333d351d787d84778095fc8d97637e52af584b7656870c379090cc58e6efb71f83fb1a561d0a8dbd9ecbfa2ab4ed7224ce13076beb293484b96bfa827bff7db40a326c145b058d2dcde1e28db1a627bb55d40bf8f6cf31192d1c0470203eeae36ce4e0d65c3c5c04cf9fcb62e537f56596a7dcb825c7ae87ec1ef312942b4ceb8c1715038ac3cc9e6820bd4545adbf0c8a64ace6a6770bc5c5f54f7cdffb1a515bec17278c6a927c3c638cb314115e8fb781549ec52d5026761c245e510fc5873da9233c28bd81cb79af025f7f0e5aad14d3719c9da00762c79dbde9ebf51d6a6eec417702c0ecc26c074e355edb0f9e5f5b797b8c4d9d95d47e26a20e37089435d7e9450ebd0601ed57c3222091cedc23151dbc18162f301e40c28485203bbb7ee2ad980e757cd383f118791a0a0f24e4c68bd8c9f5d2ca0b31173a61629393441d2a3ad9a166e1068605e9441e4ab5ff1138cd736422ca79dabd2ed99f4ace75b88a69aeb6eb10563115aa34834812235a2fddbd3e3f0325b66db218bccacc8be93f4ad987eb46520f82318e1b8016d4eae61853e0d7ebe3c9b04769674c0ff0a3a7c26f8d59c14d84c0abccac6f1e9bdfb24a887758a77e09635b75a91cf111027c2b843da8cdcc59f8e195f9b0a716f4bc76f15ea085fd999e9ac5067b659946f04d022459a12ee455dd4704803fe8532ac737f1b0154fcd669d9e36e01bd4f4e7828ea70ea58d76354e4fc50f8ffa625d56513545231f62db0d717261100b52db5481a04168c6d8c0c71fa0eb92773d1c7fb0e37e97464359336faeb86f3f3c3e78107c31f6aa1c8fb8e0cf6edc1fbb7b8571bedc41eaeea3ef578eca7df2352fb04bf8dca2607567559157f1fa26c02fe0f0baed7ba0238afb99eca3cb0d3db04de84bfcddcf20e122a08be198e092552b730d0ca4b14d91fd300cd08a4940ff411de00da4ccc55762ed9123a2e3fb9c9d92a1a687dd52f5e0e9b790db027cb60f87e47b28474a6c49936a0fb298eebaa1f232c594ecc06c8c0ce1e53dbf2cf7463abdfd09a5bbdfe348841206ca462c97c50ee91f967d6035d86155dc2cff7bb632ca6eed78db807baffcc6979d2892adafdecd85c1b2d5875e154c4d391d9f8614d200bfd221c15a1bcb1f76e47def79f58802080583c1abbc3c0a597fb9b51e3f9ca5eb9e9578b80e7f4c17cbb9b8cbc5ae110575d1be9defe864a3b408008a4378c0ca99ad10c381266aed920ff147c77a28fae323f9ed75cd1270dcd3593d566d8e706db99ca406a910889199157a42ba15070fe65b4385331e25b60acd2fccdaef122bb737d61b7bc1d09b810e73a63faa867f8af33001385f985a6e644a537db1fdb9f2fc296331c9b336325a744ec6e8a1dfb4fd85065d379a9cd8389429de7818a46ef1fba88cf7b927a5444a2611a9e1d25503484b959302aa71089c251ecf37a356292de2477ff1bcde4a042e8a71ecf7dc37f625cceed899195316eb57ac99dfb9936a810fbd6341f59490e4b557fe5870bc86609731b8bcd5caf19d4f2930ed5b6008af3d7cf2adaa81ed0ff0b1f4b9053216eeee9b200cb33b4672d4539f7cab1f0e62fe785e06115f51bf899bdf2c74ba8235e33675406e6472e708e3efd2a3ea198e616089adf9530a21d504d5b4c7ec0c53be1850c5d01226f673b1bf249e9e3b12f30f3de032903feea91cd901cea78e64e6f8b405cb32596b82e20bfce6df8587f33286598a4f550541f9522043ee961507fdd7f1e68042bf4aa4b7c2c0d79d10e7f6172cf204aba235822a65356b2207791740fa27e7622a34b675a629b8f1d96e3777fe460f9b3dcca5ac89993612e47222826e73edd1e9aab3b9376425ca61347e87c654bb4649b0ec985a4b46a04b664c7c8f383cce4ee2befcba3854050b729dfcfee96c", 0x1000}, 0x1006)

14:05:38 executing program 0:
r0 = add_key(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={'syz'}, 0x0, 0x0, 0xffffffffffffffff)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000340)={0x0, <r1=>0x0})
ptrace$setregset(0x4205, r1, 0x4, &(0x7f00000004c0)={&(0x7f00000003c0)="d44c040950d69e7179aa4f1cbf6105e57f3b80ea37429a2478b3e2008a1c7f32ed59dba6d1e9da71e8a289d0312ca230daf08d99a772478b28f29f6599d1a9c7f0d39eb515c99f70e2750e301da9e5f9c2916024221186373ff4e6fca2fb5d2002310165a1a3e87c940deab01ad94d47e4efe14f3962a2ce50e54aa2a16283503e227cb361d67a7dccbc966f6fc58b997b1563284475bfa2fd264d26367ffa4de157a22f8c556729da4102e42aeca4b4b043763ec60ee1e0ca7881ad83917ed4288d6667144d0a6b0a5b316ec59203fd54e4ff5deb9e7a10ac0f49e53a7bf8f84dadd6", 0xe3})
keyctl$dh_compute(0x17, &(0x7f0000000380)={0x0, r0}, 0x0, 0x0, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/hwrng\x00', 0x20000, 0x0)
accept4$packet(r2, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000740)=0x14, 0x800)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x300, 0x0)
ioctl$BLKFRASET(r3, 0x1264, &(0x7f0000000500)=0x3ff)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x111, 0xd}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r3, &(0x7f0000000200)={0xb, 0x10, 0xfa00, {&(0x7f00000000c0), r4, 0x401}}, 0x18)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000240), 0x111, 0xb}}, 0x20)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0xffff)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0xa000, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(r3, 0x0, 0x61, &(0x7f0000000680)=ANY=[@ANYBLOB="66696c0000000000000000000000000000000000000000000035000000a4395c149e1f68359901beb8d46c6421736bf463907fcac720b99e433f06a5a3384fbb6eb53db2a927d9082109f0cdfebca753dc96d9b62d58f525a682c011a80294f5eb8753ecd8c3596ebfd6b24c2acd05743a3258c2354868f52506d7c2c81721e572cf8f8e2994c376950fbc1b048f4cdf4c712cbe6c52"], &(0x7f0000000640)=0x59)
prctl$PR_CAPBSET_READ(0x17, 0x16)
ioctl$KVM_SET_DEBUGREGS(r5, 0x4080aea2, &(0x7f0000000540)={[0x0, 0x100000, 0x12001, 0x102000], 0x4, 0x2, 0x7})
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r5, 0x5386, &(0x7f0000000040))

14:05:38 executing program 5:
r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2)
setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r0, 0x111, 0x4, 0x1, 0x4)
r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x400000000000f6, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r1, 0x4000000)

14:05:38 executing program 0:
r0 = socket(0x400000000000010, 0x802, 0x8)
sendmsg$nl_route(r0, &(0x7f0000004300)={0x0, 0x0, &(0x7f00000042c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000cc64f3181d0100000000000000000002000000eee36fc000000000"], 0x1c}}, 0x0)

14:05:38 executing program 1:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000003dc0)=0x216)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x80000000)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f00000000c0)={<r1=>0x0, 0x8, 0x6, 0x4, 0xfff, 0x215, 0x9, 0x0, {0x0, @in6={{0xa, 0x4e23, 0x6, @remote, 0x6}}, 0x8, 0x1a8, 0x5, 0x1, 0x9}}, &(0x7f0000000000)=0xb0)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={r1, 0x80}, 0x8)

14:05:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x200800, 0x0)
ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f00000001c0))
syz_open_dev$rtc(&(0x7f0000000200)='/dev/rtc#\x00', 0xffff, 0x400400)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f0000001000/0x1000)=nil, &(0x7f0000000000/0x1000)=nil, &(0x7f0000002000/0x3000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000000000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000007000/0x2000)=nil, &(0x7f0000004000/0x4000)=nil, &(0x7f0000006000/0x1000)=nil, &(0x7f0000001000/0x1000)=nil, &(0x7f0000001000/0x1000)=nil, &(0x7f0000000080)="05786357c22b00a7fe34825529156f4091321f914da0547eacb98bb9dbe82c167cb163e52fc8e275572cda0393c0fcce70042e49bd09ec501a94a0413478b7a29f4e22a05013fd18b422372bbc33acd603473960908bd63fa1eda8e0fc2016d6116256b3fb72014fb7c2a0bd2f69cc72664f169e79dc30a2a140c0790e34fd05bfd1", 0x82, r0}, 0x68)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

[  534.895514] *** Guest State ***
[  534.909155] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  534.944609] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  534.963980] CR3 = 0x0000000000000000
[  534.972469] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  534.985927] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  535.000103] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  535.013005] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  535.025938] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  535.032835] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.042374] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:38 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect(r1, &(0x7f0000000300)=@ll, 0x80)
setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000000280)=0x3ff, 0x4)
sendmsg$can_bcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="050000000f080000f949", @ANYRES64=0x0, @ANYRES64=0x7530, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000000000000000000000de79f533823601c0362d0d210a169c22b52e2a3d627edc0646e14a76f3a74e3650381100bd940ba37e57c28939cefaa5839342bb1e5ff3694333cf802f2f9288"], 0x80}}, 0x0)
recvmmsg(r1, &(0x7f0000002940), 0x658, 0x2, 0x0)
r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x28000, 0x0)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000180), 0x4)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x2, 0x10)

[  535.055259] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.063426] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.082152] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:38 executing program 1:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmget(0x2, 0x4000, 0x140, &(0x7f0000ffb000/0x4000)=nil)
shmget(0x0, 0x1000, 0x9000000000100, &(0x7f0000ffd000/0x1000)=nil)
shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffb000/0x4000)=nil)
shmget(0x1, 0x2000, 0x30, &(0x7f0000ffc000/0x2000)=nil)
shmget(0x3, 0x2000, 0x100, &(0x7f0000ffc000/0x2000)=nil)
shmget$private(0x0, 0x4000, 0x540000a0, &(0x7f0000ffc000/0x4000)=nil)
r0 = shmget(0x3, 0xc000, 0x11, &(0x7f0000ff4000/0xc000)=nil)
shmctl$SHM_UNLOCK(r0, 0xc)
syz_open_dev$evdev(0x0, 0x7fff, 0x101)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x940, 0x0)
ioctl$TCFLSH(r1, 0x540b, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f0000000040)=0x1)
io_submit(0x0, 0x0, 0x0)
ioctl$BLKROSET(0xffffffffffffffff, 0x125d, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040004,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f7570888baae1ffb75f69643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
syz_genetlink_get_family_id$net_dm(0x0)
sendmsg$NET_DM_CMD_START(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0)
umount2(&(0x7f0000000340)='./file0\x00', 0x100000000000009)
chdir(&(0x7f00000004c0)='./file0/file0\x00')
r4 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x9, 0x80)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r4, 0xc0845658, &(0x7f00000000c0)={0x0, @reserved})

[  535.113673] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.124866] audit: type=1400 audit(1564841138.608:983): avc:  denied  { write } for  pid=24323 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_iscsi_socket permissive=1
[  535.132752] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  535.241013] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.265796] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  535.278566] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.295038] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  535.312078] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  535.325582] Interruptibility = 00000000  ActivityState = 00000000
[  535.350193] *** Host State ***
[  535.356622] RIP = 0xffffffff81173b5f  RSP = 0xffff888061127998
[  535.363401] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  535.379213] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  535.387285] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  535.393361] CR0=0000000080050033 CR3=00000000a9221000 CR4=00000000001426e0
[  535.400776] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  535.407546] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  535.414584] *** Control State ***
[  535.418125] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  535.424950] EntryControls=0000d1ff ExitControls=002fefff
[  535.430522] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  535.437550] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  535.444366] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  535.451093]         reason=80000021 qualification=0000000000000000
[  535.457505] IDTVectoring: info=00000000 errcode=00000000
[  535.463090] TSC Offset = 0xfffffedef9cac54b
[  535.467500] EPT pointer = 0x00000000a840301e
[  535.472029] Virtual processor ID = 0x0002
14:05:39 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070")
r1 = syz_open_dev$evdev(&(0x7f00000009c0)='/dev/input/event#\x00', 0x0, 0x5)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[@ANYPTR64=&(0x7f0000000100)=ANY=[@ANYBLOB="a67a3d1df449450b7e16ee1c1526f19fa138fdbfa860b9d1bfa54582f602bd4d75aa984cdc42795e", @ANYRESOCT=r1, @ANYRESOCT=r1, @ANYPTR64, @ANYBLOB="6b4014ae5b521a9ce4a3ac84b6b26e756269f2371beab1d18994e73d1b7c0c5090977560174f8690cd881c53a1ab5271de873ed7606209aa837ddc34f6dd371284a38bf227038814198de3344e7abdff610587163fb19e95576b046346ad50b2de58e440d66747bd34c39d5a1de49ae34ab429b587281bcae5"]], 0x8)
r2 = gettid()
timer_create(0x0, &(0x7f0000000540)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
r3 = dup2(r1, r1)
ioctl$KIOCSOUND(r3, 0x4b2f, 0x0)
tkill(r2, 0x401004000000016)

14:05:39 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000000)=0xc890)

14:05:39 executing program 0:
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x101800, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000040)={0x0, 0x70, 0x2, 0xffffffff, 0x2, 0x6, 0x0, 0x0, 0x80, 0x6, 0x2, 0x4f9, 0x13cc0, 0x3f, 0x2, 0x7, 0x1, 0x8, 0xffffffffffff8001, 0x4e, 0x3, 0x0, 0x4, 0x7, 0x2, 0x1, 0x8, 0x20, 0x3, 0xffffffff, 0x9, 0x10001, 0x4, 0x7, 0x0, 0x42, 0x5, 0x1, 0x0, 0x5777, 0x0, @perf_config_ext={0x1, 0x8000}, 0x2000, 0x3, 0x401, 0x0, 0x7, 0x6, 0x6})
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)

14:05:39 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:39 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000007c0)={'vcan0\x00', <r1=>0x0})
connect(r0, &(0x7f0000000000)=@ll={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x80)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000fdffffff0000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="000000000100000000000000000000008887ccb2644b44968e6dc1c6c911ad67e61588f48a6eaf8218b602c06a2d30cb0b595f28aead6b04d882c4d96e7243f38a15d71ac895a26836ffce8853f5d1c3"], 0x80}}, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080)=<r2=>0x0)
process_vm_writev(r2, &(0x7f0000000500)=[{&(0x7f00000000c0)=""/185, 0xb9}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000000240)=""/218, 0xda}, {&(0x7f0000000340)=""/135, 0x87}, {&(0x7f0000000400)=""/252, 0xfc}], 0x5, &(0x7f00000019c0)=[{&(0x7f0000000600)=""/226, 0xe2}, {&(0x7f0000001800)=""/240, 0xf0}, {&(0x7f00000001c0)=""/12, 0xc}, {&(0x7f0000000700)=""/41, 0x29}, {&(0x7f0000000740)=""/72, 0x48}, {&(0x7f0000001900)=""/137, 0x89}], 0x6, 0x0)

14:05:39 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x4000010, r0, 0x0)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, &(0x7f0000000080)=0x10, 0x800)
accept4$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @initdev}, &(0x7f0000000100)=0x10, 0x800)

14:05:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:39 executing program 0:
syz_mount_image$hfs(&(0x7f00000000c0)='hfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffff8a, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="b5aad6a67301b89cf3841c0f00"])

14:05:39 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x7ff, 0x0)
setsockopt$RDS_FREE_MR(r1, 0x114, 0x3, &(0x7f0000000200)={{0xfffffffffffffff7, 0x3f}, 0x58}, 0x10)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@loopback}, 0x0, @in6=@dev}}, &(0x7f0000000180)=0xe8)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000001c0)={r2, 0x1, 0x6, @random="9181d2e06392"}, 0x10)

[  535.641770] *** Guest State ***
[  535.655165] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:05:39 executing program 0:
r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x10001, 0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
fchdir(r1)
open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
rename(&(0x7f0000000080)='./bus\x00', &(0x7f0000000100)='./file0\x00')

[  535.707343] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  535.754822] CR3 = 0x0000000000000000
[  535.774376] *** Guest State ***
[  535.787189] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  535.790540] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  535.806280] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  535.829454] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  535.845450] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  535.851960] CR3 = 0x0000000000000000
[  535.855740] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  535.859709] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  535.872175] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  535.884982] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  535.887038] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891620] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  535.891629] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  535.891639] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  535.891647] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891660] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891673] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891684] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891698] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891711] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891720] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  535.891732] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.891742] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  535.905506] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  535.926596] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:39 executing program 4:
syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x200000, 0x0)
r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/status\x00', 0x0, 0x0)
getsockopt$ax25_int(r1, 0x101, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000080)={0x5, 0x7, 0x40, 0x10000})

14:05:39 executing program 5:
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/status\x00', 0x0, 0x0)
connect$ax25(r0, &(0x7f0000000080)={{0x3, @default, 0x5}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000280)={0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {<r1=>0x0}, {}]})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f00000002c0)={r1, 0xa8f9fceeb2941876})
r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r2, 0x4000000)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000100)={<r3=>0x0, 0x24, "94580ed51e90ddd6dc4b0c0d0b350bc8211de89d5bebbf498ecd177bc694a4f2780b1249"}, &(0x7f0000000140)=0x2c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000180)={r3, @in={{0x2, 0x4e22, @local}}, 0x3, 0x3f}, 0x90)

[  535.974840] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  536.049037] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  536.070440] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  536.089443] Interruptibility = 00000000  ActivityState = 00000000
[  536.114175] *** Host State ***
[  536.123846] RIP = 0xffffffff81173b5f  RSP = 0xffff888086ccf998
[  536.136916] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  536.145740] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  536.150418] FSBase=00007ffacf107700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  536.170482] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  536.178095] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  536.178544] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  536.193404] CR0=0000000080050033 CR3=00000000a9221000 CR4=00000000001426e0
[  536.193417] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  536.193426] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  536.235714] *** Control State ***
[  536.244008] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  536.245730] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  536.257464] EntryControls=0000d1ff ExitControls=002fefff
[  536.258769] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  536.272078] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  536.288516] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  536.304959] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  536.314591] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  536.318512]         reason=80000021 qualification=0000000000000000
[  536.334572] IDTVectoring: info=00000000 errcode=00000000
[  536.334742] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  536.345855] TSC Offset = 0xfffffede807a920f
[  536.348174] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  536.348184] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  536.360575] EPT pointer = 0x0000000096a5101e
[  536.385764] Virtual processor ID = 0x0003
[  536.418066] Interruptibility = 00000000  ActivityState = 00000000
[  536.427542] *** Host State ***
[  536.437412] RIP = 0xffffffff81173b5f  RSP = 0xffff888051f87998
[  536.446758] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  536.468553] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  536.504601] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  536.512221] CR0=0000000080050033 CR3=000000004a804000 CR4=00000000001426f0
[  536.519311] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  536.529627] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  536.537530] *** Control State ***
[  536.544996] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  536.553459] EntryControls=0000d1ff ExitControls=002fefff
[  536.559000] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  536.569551] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  536.577874] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  536.587946]         reason=80000021 qualification=0000000000000000
[  536.596007] IDTVectoring: info=00000000 errcode=00000000
[  536.605013] TSC Offset = 0xfffffede9090c22e
[  536.609411] EPT pointer = 0x000000005bd9a01e
[  536.615868] Virtual processor ID = 0x0002
14:05:40 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003ec0)=[{{0x0, 0x0, &(0x7f0000002a00)=[{0x0}], 0x1}, 0x1}], 0x3fffffffffffccb, 0x0, 0x0)
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x40004a, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_threshold\x00', 0x2, 0x0)
ioctl$LOOP_GET_STATUS64(r3, 0x4c05, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, 0x0, 0x0)
r4 = dup2(r0, r1)
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000140)={0x0, 0x0})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x60000, 0x0)
open(0x0, 0x0, 0x0)
writev(r1, &(0x7f00000023c0), 0x1000000000000252)
fcntl$setsig(r4, 0xa, 0x1e)
ioctl$BLKPBSZGET(r2, 0x127b, &(0x7f00000000c0))

14:05:40 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001400)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="9e", 0xfffffeaf}], 0x1, &(0x7f0000000400)=[@op={0x18}], 0x18}, 0x0)
r2 = syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x0, 0x8400)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000004c0)=[@in6={0xa, 0x4e24, 0x2, @empty, 0x8}, @in6={0xa, 0x4e22, 0x71, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x3}, @in6={0xa, 0x4e22, 0x4, @mcast2, 0x8}, @in6={0xa, 0x4e21, 0x7fff, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x5}], 0x70)
recvmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/251, 0xfb}, {&(0x7f00000002c0)=""/221, 0xdd}], 0x3}}, {{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000840)=""/110, 0x6e}], 0x1}}], 0x2, 0x0, 0x0)

14:05:40 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x200, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f00000000c0)={0x4, r2, 0x1})

14:05:40 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000080), 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080)={'team0\x00', <r1=>0x0})
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_pressure\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0xb, 0x0, 0x400, 0x5, 0x4, 0xffffffffffffffff, 0x1, [], r1, r2, 0x5, 0x5}, 0x3c)
open(&(0x7f00000000c0)='./file0\x00', 0x800, 0x100)
getegid()
ioctl$int_out(r0, 0x2, &(0x7f0000000040))

14:05:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:40 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x4000, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001600)={{{@in6=@remote, @in6=@ipv4={[], [], @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@dev}, 0x0, @in6=@dev}}, &(0x7f0000001700)=0xe8)
setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000001740)={r2, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
ioctl$BLKALIGNOFF(r1, 0x127a, &(0x7f0000000080))
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

14:05:40 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='/\x02roup.stap\x00', 0x2761, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x2902001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$sock_ifreq(r1, 0x300000200008990, &(0x7f00000000c0)={'bond0\x00\x00z\a\x00\x00\x00\x00\x06\x00\x05', @ifru_names='ip_vti0\x00\x03\x00'})
shmctl$IPC_STAT(0x0, 0x2, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000000)="c0dca5055e0b")
syz_open_dev$sndtimer(&(0x7f00000004c0)='/dev/snd/timer\x00', 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)
bind$alg(r0, 0x0, 0xcd8b)

[  536.799371] *** Guest State ***
[  536.815791] *** Guest State ***
[  536.822192] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  536.842578] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:05:40 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x100000001, 0x900)
ioctl$KVM_SET_XCRS(r1, 0x4188aea7, &(0x7f0000000080)={0x7, 0x3, [{0x2, 0x0, 0x40387ca8}, {0x6, 0x0, 0xfffffffffffffcc6}, {0x3f, 0x0, 0x1}, {0xff, 0x0, 0x5}, {0x0, 0x0, 0x80000000}, {0x3, 0x0, 0x8}, {0x7, 0x0, 0x2dc2}]})
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

14:05:40 executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x8, 0x18, &(0x7f0000000400)=ANY=[@ANYBLOB="850000000800000027000000000000009500000000000000413f555952bc6c75bc06c9ee6b0b7789a8b57a106ac1053a80dc52dde422ed7df467c8080ad264b0b44da24c968f859426dd2ba0fe9bed3e0611a42fa70e8e7c05cf99771c72935be9aefd7de999ad5f7afb3310437ab0a9fd7aa24b1a1a5b8e74a0e41c239901902fa6d717c86af2be30be9c3f3d9108d0283389b4885378ee470295353c3ab711590099b6a0b15b867dcd9e9bc2b3b3a1846c54ad69d5558f013991b041c10d9f"], &(0x7f0000000080)='GPL\x00\x83\xff\x13\x0f_\xb0\x0e][dC/\xa6\xbb)p\xc5\xa6$\x1e\x8d\xef\xd6S>*\xe1\x06\xbee\\lRcI!l0\xbb\x1f\x80\xfbE\x0e\xc0\xd5\xbe', 0x1, 0x99, &(0x7f0000000100)=""/153, 0xfffffffffffffffd, 0x8004, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x1, 0xffffffffffffffff}, 0x10}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="54698bc92ce20700000000000077", 0x0}, 0x28)
creat(&(0x7f0000000280)='./file0\x00', 0x10)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r1, 0xc0105303, &(0x7f0000000240)={0x9, 0x5, 0x3})

[  536.869768] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  536.887519] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:05:40 executing program 5:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x20800, 0x0)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
pipe2(&(0x7f0000000200), 0x84800)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000008c}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}]}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'fo\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x3}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}]}, 0x4c}}, 0x4000)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r1, 0x4000000)

[  536.921906] CR3 = 0x0000000000000000
[  536.933544] CR3 = 0x0000000000000000
[  536.943270] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  536.953840] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  536.969543] audit: type=1804 audit(1564841140.448:984): pid=24421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.4" name="/root/syzkaller-testdir252019005/syzkaller.jbGX5K/947/file0" dev="sda1" ino=16564 res=1
[  536.978529] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  537.010937] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
14:05:40 executing program 4:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x0, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, 0x0, 0x0, 0x0)
syncfs(r0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
ioctl$VIDIOC_SUBDEV_G_EDID(r0, 0xc0285628, &(0x7f00000002c0)={0x0, 0x8, 0x80000001, [], &(0x7f0000000280)=0x7ff})
r1 = request_key(&(0x7f0000000040)='trusted\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000100)='\'\x00', 0xfffffffffffffffd)
write$P9_RFSYNC(r0, &(0x7f0000000300)={0x7, 0x33, 0x1}, 0x7)
getsockopt$rose(r0, 0x104, 0x6, &(0x7f0000000340), &(0x7f0000000380)=0x4)
lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
fstat(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f00000003c0)={0x8, 0x0, {0xffffffffffffffff, 0x3, 0x0, 0x0, 0x4800000000000}})
keyctl$chown(0x4, r1, r2, r3)

[  537.032414] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  537.059912] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  537.074925] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  537.077111] audit: type=1804 audit(1564841140.498:985): pid=24421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.4" name="/root/syzkaller-testdir252019005/syzkaller.jbGX5K/947/file0" dev="sda1" ino=16564 res=1
[  537.088818] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  537.129149] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.147570] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.166311] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.185441] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  537.192925] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.207979] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  537.219559] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.231407] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.246477] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.258148] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.273213] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  537.276506] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.304080] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.305970] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.318897] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  537.337975] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.341676] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.356202] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.375215] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  537.375435] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  537.392904] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.403509] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  537.410589] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  537.423295] Interruptibility = 00000000  ActivityState = 00000000
[  537.429484] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  537.442184] *** Host State ***
[  537.448440] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  537.448834] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a6047998
[  537.463523] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  537.477888] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  537.480645] Interruptibility = 00000000  ActivityState = 00000000
[  537.495488] FSBase=00007ffacf107700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000
[  537.502538] *** Host State ***
[  537.517919] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  537.521543] RIP = 0xffffffff81173b5f  RSP = 0xffff88808b47f998
[  537.535086] CR0=0000000080050033 CR3=0000000097d89000 CR4=00000000001426e0
[  537.536607] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  537.554339] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  537.562101] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  537.573235] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  537.583868] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  537.591999] *** Control State ***
[  537.598884] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  537.605846] CR0=0000000080050033 CR3=0000000099b7f000 CR4=00000000001426e0
[  537.605858] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  537.605867] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  537.605871] *** Control State ***
[  537.605876] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  537.605881] EntryControls=0000d1ff ExitControls=002fefff
[  537.605890] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  537.605896] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  537.605901] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  537.605905]         reason=80000021 qualification=0000000000000000
[  537.605909] IDTVectoring: info=00000000 errcode=00000000
[  537.605913] TSC Offset = 0xfffffeddf232e158
[  537.605920] EPT pointer = 0x0000000056c1701e
[  537.606119] Virtual processor ID = 0x0003
[  537.613094] net_ratelimit: 24 callbacks suppressed
[  537.613099] protocol 88fb is buggy, dev hsr_slave_0
[  537.613146] protocol 88fb is buggy, dev hsr_slave_1
[  537.613221] protocol 88fb is buggy, dev hsr_slave_0
[  537.613262] protocol 88fb is buggy, dev hsr_slave_1
[  537.613339] protocol 88fb is buggy, dev hsr_slave_0
[  537.613390] protocol 88fb is buggy, dev hsr_slave_1
[  537.638801] EntryControls=0000d1ff ExitControls=002fefff
[  537.749704] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  537.764459] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  537.786402] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  537.793155]         reason=80000021 qualification=0000000000000000
[  537.799560] IDTVectoring: info=00000000 errcode=00000000
[  537.809887] TSC Offset = 0xfffffeddf1e775ad
[  537.814756] EPT pointer = 0x0000000090e2101e
[  537.819376] Virtual processor ID = 0x0002
14:05:41 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003ec0)=[{{0x0, 0x0, &(0x7f0000002a00)=[{0x0}], 0x1}, 0x1}], 0x3fffffffffffccb, 0x0, 0x0)
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x40004a, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_threshold\x00', 0x2, 0x0)
ioctl$LOOP_GET_STATUS64(r3, 0x4c05, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, 0x0, 0x0)
r4 = dup2(r0, r1)
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000140)={0x0, 0x0})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x60000, 0x0)
open(0x0, 0x0, 0x0)
writev(r1, &(0x7f00000023c0), 0x1000000000000252)
fcntl$setsig(r4, 0xa, 0x1e)
ioctl$BLKPBSZGET(r2, 0x127b, &(0x7f00000000c0))

14:05:41 executing program 5:
openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x40, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x40000, 0x0)
write$selinux_attr(r0, &(0x7f00000000c0)='system_u:object_r:ssh_keygen_exec_t:s0\x00', 0xfffffffffffffed3)
write$P9_RFSYNC(r0, &(0x7f0000000080)={0x7, 0x33, 0x2}, 0x7)
syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x8000)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r1, 0x4000000)

14:05:41 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r3 = getpgrp(0x0)
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000200)=r3)
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x90)
bind$inet6(r0, 0x0, 0xec)
ioctl$sock_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000001, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
splice(r2, 0x0, r1, 0x0, 0x1000000000000003, 0x0)
inotify_init1(0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_open_dev$admmidi(0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_mtu(r1, 0x29, 0x17, 0x0, 0xffffffffffffff48)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0)
syz_genetlink_get_family_id$nbd(0x0)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x4, 0x4)
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, 0x0)
ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x0)
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, 0x0)
sendto$packet(r2, &(0x7f0000000340), 0xfffffffffffffd4d, 0x57, 0x0, 0x0)

14:05:41 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:41 executing program 4:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000004000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x1800000000000060, 0x8, 0x1, &(0x7f0000000000)="b90703e6680d698cb89e40f02cea", 0x0, 0x8000000100}, 0x28)
syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2)

14:05:41 executing program 5:
r0 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x2, 0x100ffe)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
io_setup(0x1, &(0x7f0000000000)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite\x00')
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='environ\x00')
r5 = syz_open_dev$swradio(&(0x7f0000001480)='/dev/swradio#\x00', 0x1, 0x2)
io_submit(r1, 0x5, &(0x7f0000001600)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x5, r0, &(0x7f0000000100)="7cac011b689ac63633ade449c88048b99d68d607f824cb5a057f92843f2a0c3ae36f7feff440b120b2d6696d3c9ae78afaca4a78cbe2dff29bd88b6beda05ae24e9b9e7a15397b13420477b5e9471ab7e1d7d2b26c54e8710df592e52def49472846542981853b7d4302a73d10f5f9c0660a01e2e1bc4cd5cf394af6915c8aa1a4f9ac0f520e935c9e0c2c05ba25b8bc57b32e62e0e7b804ffc46fb53d6861fa5fe0b864d3dafe", 0xa7, 0x0, 0x0, 0x4ba413e1c0e833e2, r2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x6, 0x2f030f9, r0, &(0x7f00000001c0)="f8bc0929e069ad16950f6bec25cf966fd5a153cc675bec31ff8c4ee0594f262f460bf04703c170d71e1f5f8e3656ded589f3cae13d8c2ee6d60c256846e46a59bb44871c8b526897e1e55c322c1a5db5bdc804304aeda7d429593b278b3b55e2f58ea1d1a36485c979e904d7d3106c823947c3f76c8928929d0c74bb08f72033257a8c236a900cb27d57106f687f277255c5677e0e912d41de720c1f73daaa0c7008e0d10fd3442d0b5a4b5e54ee0181310374d4526c5b2d16d9841db9f19c2335d0fbde2b00f947a6fce37b48822f53ea2a", 0xd2, 0x13dc, 0x0, 0x2, r3}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0xa7a, r0, &(0x7f0000000340)="3d6d8596e68d948dfb743d253b28d560838d6c408818527dd0e7c08d31bafdb28de20f3d690055461390a5a6d67a004b82e09884baaf4fc62318b024ba292fe1e56ac5f37b8f822f8f0f36ebc1c5cd9236ee37523894ec661eedb83d74f43ffc2005fd2486677bc5baed3091289b84244fd485826c89b2a52a3eca8d9c877291d1909a812b9ded060474764f5ff3b993eb25f3e1d6d09c445f3e4bdaa1268d", 0x9f, 0x5, 0x0, 0x1, r4}, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x6, 0x3, r0, &(0x7f0000000480)="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", 0x1000, 0x79, 0x0, 0x1, r5}, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x2, r0, &(0x7f0000001500)="d0aee1eed45afac5353d5028653d8556556247701ec36a1b0ab04b33bd962f722d4dd4fc44c569b293d32d786cb194a24b2310a8de2cd42f857bed6c025f9ba2db94d5501b075309bf5d347fb7a8182dd1ebdc3efe42b194a5c1e1c934f1ad30b74e0f99b7e5cd98c9b055873d33f6bee72594ce4ec545c528d58bf21276b095415a5ec3e384ca8f17526ca97251be3a125cef4f35d9098a7b53e9cdba8cf3c5", 0xa0, 0x4, 0x0, 0x1}])

[  537.988984] *** Guest State ***
[  538.007155] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  538.033791] *** Guest State ***
[  538.048821] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  538.063862] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  538.080875] protocol 88fb is buggy, dev hsr_slave_0
[  538.086414] protocol 88fb is buggy, dev hsr_slave_1
14:05:41 executing program 4:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000100), r1, 0x0, 0x2, 0x4}}, 0x299)
r2 = syz_open_dev$mice(&(0x7f0000000180)='/dev/input/mice\x00', 0x0, 0x400)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000001c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x23}, 0x1, 0x1, [@dev={0xac, 0x14, 0x14, 0x21}]}, 0x14)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1}}, 0x10)

14:05:41 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
rmdir(&(0x7f0000000000)='./file0\x00')

[  538.121132] CR3 = 0x0000000000000000
[  538.127546] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  538.153954] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  538.184761] CR3 = 0x0000000000000000
[  538.196559] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  538.201776] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  538.220524] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  538.225192] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
14:05:41 executing program 5:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_DQEVENT(r0, 0x80885659, &(0x7f0000000080)={0x0, @frame_sync})
r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r1, 0x4000000)

14:05:41 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x10032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000002c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000280)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x6d, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070")
r4 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x9, 0x800)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r4, 0x40305652, &(0x7f0000000040)={0x7, 0x2, 0x8, 0x0, 0x6, 0x8, 0x7})
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}], 0x2c)
r5 = dup2(r0, r2)
dup3(r5, r1, 0x0)

[  538.245995] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  538.265453] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  538.275335] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  538.296405] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.297666] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  538.329989] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.339931] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
14:05:41 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r3 = getpgrp(0x0)
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000200)=r3)
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x90)
bind$inet6(r0, 0x0, 0xec)
ioctl$sock_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000001, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
splice(r2, 0x0, r1, 0x0, 0x1000000000000003, 0x0)
inotify_init1(0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_open_dev$admmidi(0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_mtu(r1, 0x29, 0x17, 0x0, 0xffffffffffffff48)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0)
syz_genetlink_get_family_id$nbd(0x0)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x4, 0x4)
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, 0x0)
ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x0)
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, 0x0)
sendto$packet(r2, &(0x7f0000000340), 0xfffffffffffffd4d, 0x57, 0x0, 0x0)

[  538.356728] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.368608] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.375122] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.396382] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.403176] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.414006] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.426760] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  538.428758] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.438851] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.457476] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  538.460277] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.477477] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.483282] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.498271] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  538.507505] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  538.509855] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.518907] Interruptibility = 00000000  ActivityState = 00000000
[  538.536301] *** Host State ***
[  538.536506] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  538.539647] RIP = 0xffffffff81173b5f  RSP = 0xffff888051627998
[  538.560150] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.565586] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  538.577112] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  538.594229] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  538.610210] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  538.624616] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  538.640131] Interruptibility = 00000000  ActivityState = 00000000
[  538.653174] *** Host State ***
[  538.655915] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  538.659814] RIP = 0xffffffff81173b5f  RSP = 0xffff88808ae37998
[  538.681581] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  538.694803] FSBase=00007ffacf107700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  538.705001] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  538.711645] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  538.720135] protocol 88fb is buggy, dev hsr_slave_0
[  538.725257] protocol 88fb is buggy, dev hsr_slave_1
[  538.733810] CR0=0000000080050033 CR3=000000008ab8f000 CR4=00000000001426e0
[  538.746798] CR0=0000000080050033 CR3=000000008dc85000 CR4=00000000001426f0
[  538.748808] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  538.772966] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  538.779461] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  538.785817] *** Control State ***
[  538.794163] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  538.802700] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  538.807704] EntryControls=0000d1ff ExitControls=002fefff
[  538.817411] *** Control State ***
[  538.822563] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  538.825361] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  538.829327] EntryControls=0000d1ff ExitControls=002fefff
[  538.847231] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  538.848409] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  538.854453] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  538.873024] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  538.874350] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  538.879646]         reason=80000021 qualification=0000000000000000
[  538.898449]         reason=80000021 qualification=0000000000000000
[  538.898504] IDTVectoring: info=00000000 errcode=00000000
[  538.911539] IDTVectoring: info=00000000 errcode=00000000
[  538.915622] TSC Offset = 0xfffffedd4f2e5fae
14:05:42 executing program 2:
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mISDNtimer\x00', 0x80200, 0x0)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/37, 0x25}], 0x1)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x201, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000100)={<r3=>0x0, 0xd15, 0x30, 0x380000000000, 0x9}, &(0x7f0000000180)=0x18)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f00000001c0)={r3, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)
setsockopt(r1, 0x800000000010d, 0x800000000a, &(0x7f0000000140)="d76ee3a1", 0x4)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000280)={r3, 0xeb1, 0x9}, 0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f00000002c0)={0x0, 0x8002, 0x7, 0x80000000, r3}, &(0x7f0000000300)=0x10)

14:05:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x2000, 0x2001f, r0, 0x4000000)

14:05:42 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r3 = getpgrp(0x0)
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000200)=r3)
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x90)
bind$inet6(r0, 0x0, 0xec)
ioctl$sock_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000001, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
splice(r2, 0x0, r1, 0x0, 0x1000000000000003, 0x0)
inotify_init1(0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_open_dev$admmidi(0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_mtu(r1, 0x29, 0x17, 0x0, 0xffffffffffffff48)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0)
syz_genetlink_get_family_id$nbd(0x0)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x4, 0x4)
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, 0x0)
ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x0)
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, 0x0)
sendto$packet(r2, &(0x7f0000000340), 0xfffffffffffffd4d, 0x57, 0x0, 0x0)

14:05:42 executing program 0:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video35\x00', 0x2, 0x0)
ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000180)={0xc0000000, 0x0, "33fee08de8573fc08668a7a31a0427b72c40b7f7f8315f2c403e714accedf069"})
uname(&(0x7f0000000280)=""/162)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0)

[  538.921669] EPT pointer = 0x0000000049abc01e
[  538.923805] TSC Offset = 0xfffffedd4b8302b6
[  538.926166] Virtual processor ID = 0x0002
[  538.937099] EPT pointer = 0x00000000844e501e
[  538.959012] Virtual processor ID = 0x0003
14:05:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:42 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x100)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x6, 0xc0202)
ioctl$TUNSETNOCSUM(r1, 0x400454c8, 0x0)

14:05:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="4100800000a04052d528891b0f0134ac0f2b48"], 0x0, 0x13}, 0x20)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='schedstat\x00')
ioctl$VIDIOC_ENUM_FREQ_BANDS(r3, 0xc0405665, &(0x7f0000000140)={0x6, 0x7, 0x7, 0x2, 0x6, 0x8, 0x4})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000180)={r1, 0x0, 0x2, 0x0, 0x5f0})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f00000001c0)={0x6, 0x7, 0xb000}, 0x4)
sendto$rose(r3, &(0x7f0000000440)="4c50420b2242346ccd8426ea6de8d1246810174f7d057dab89a8d6e948fb9880b47f62bfa0b63a153daaaa3f6d07d2dfdc8c7b22947232af466cbf85ae5ea9dc9ebe483796320ddf381037536074a1b8df8e066544e5eec338fcfd857c07e9b1df212237291ccdd77ac40b5ab66729d9ea556aa2704e848bddf0c9f90ec56e66e9899c8093229971fedd8709632b58de645b3b", 0x93, 0x40050, 0x0, 0x0)
r4 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r4)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0xa64a], 0x5000, 0x800})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x103800, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000200)={&(0x7f0000000080), 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x88, r2, 0x100, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_DEST={0x6c, 0x2, [@IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e22}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e21}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e21}, @IPVS_DEST_ATTR_TUN_TYPE={0x8, 0xd, 0x1}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e23}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@local}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x4}]}]}, 0x88}}, 0x40010)

[  539.136900] *** Guest State ***
[  539.149036] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  539.210355] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:05:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2000000, 0x181c, r0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)

[  539.264214] CR3 = 0x0000000000000000
[  539.274242] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  539.296360] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  539.336789] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  539.367718] RFLAGS=0x00000002         DR7 = 0x0000000000000400
14:05:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  539.397075] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  539.428064] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
acct(&(0x7f0000000000)='./file0\x00')

[  539.463981] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.527781] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.544906] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.562233] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.579522] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.621686] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  539.629694] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.629706] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  539.629720] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  539.629728] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  539.629736] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  539.629746] Interruptibility = 00000000  ActivityState = 00000000
[  539.769435] *** Host State ***
[  539.780429] RIP = 0xffffffff81173b5f  RSP = 0xffff88808b9a7998
[  539.798229] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  539.817180] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  539.840845] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  539.858078] CR0=0000000080050033 CR3=00000000954c5000 CR4=00000000001426e0
[  539.876858] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  539.895785] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  539.908705] *** Control State ***
[  539.921835] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  539.936438] EntryControls=0000d1ff ExitControls=002fefff
[  539.951429] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  539.966432] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
14:05:43 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070")
syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6572726f727335436f6e74696ee313bfec8007f903710503e2f6b256484202ddb9aadb7787e9594b259b2ed245fc0781ea25faef3eaf96fcdd4ed3be48fdc6da885b11ef750f4d0401923e9ea11a646577a3b9af631fc28de70ccaff7df1a1aef2cd3a7a6037cc3640b5399e21d3d032d72f02abe126753c233162afd63ac7e2c4bcbddaebdbdf3001f5a80cf7c36fc7f1145bdfe6b1cd680134048efe3ddc03e3098a58bb862fb9e5b492e222f04d1d684fb91f7106ff86c37f706412b343cb2d925d6437c4cae57c7066648c3bbda84a5eecd924771d503820f765b9e9801a1e530827f0002a15803578c18cd30466fc"])

14:05:43 executing program 4:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e23, 0x3, @rand_addr, 0x308}, 0x1c)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
write$P9_RLOPEN(0xffffffffffffffff, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
r0 = gettid()
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0)
preadv(r1, &(0x7f0000000500)=[{&(0x7f0000000240)=""/131, 0x83}], 0x1, 0x0)
close(r1)
openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0)
tkill(r0, 0x1000000000014)

14:05:43 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000001100)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0xfffffffffffffffc)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x8000, 0x0)
ioctl$VIDIOC_S_FBUF(r2, 0x4030560b, &(0x7f00000010c0)={0x52, 0x1c, &(0x7f00000000c0)="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", {0xb9d, 0x40, 0x4745504a, 0x3, 0x5, 0x7fff, 0xf, 0x1}})

14:05:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:05:43 executing program 0:
futex(&(0x7f000000cffc), 0x100, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x9, 0x0, 0x0, 0x0, 0x2)

14:05:43 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  539.980991] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  539.989739]         reason=80000021 qualification=0000000000000000
[  539.996500] IDTVectoring: info=00000000 errcode=00000000
[  540.003518] TSC Offset = 0xfffffedcb1cea980
[  540.007929] EPT pointer = 0x00000000603bc01e
[  540.012729] Virtual processor ID = 0x0002
14:05:43 executing program 5:
r0 = accept4$rose(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmsg(r2, &(0x7f00000000c0)={0x0, 0xa2, 0x0}, 0xc100)
sendmsg(r2, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000fc0)="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", 0x4d9}], 0x1}, 0x0)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080)={0x0, 0x2}, 0x8)
r3 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r3, 0x4000000)
r4 = syz_open_dev$usbmon(&(0x7f0000000140)='/dev/usbmon#\x00', 0x5, 0x28000)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r4, 0x4008ae73, &(0x7f0000000180)={0x2, 0x1})
fsetxattr$trusted_overlay_nlink(r0, &(0x7f00000000c0)='trusted.overlay.nlink\x00', &(0x7f0000000100)={'U-', 0xffff}, 0x28, 0x1)

[  540.143774] *** Guest State ***
14:05:43 executing program 4:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e23, 0x3, @rand_addr, 0x308}, 0x1c)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
write$P9_RLOPEN(0xffffffffffffffff, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
r0 = gettid()
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0)
preadv(r1, &(0x7f0000000500)=[{&(0x7f0000000240)=""/131, 0x83}], 0x1, 0x0)
close(r1)
openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0)
tkill(r0, 0x1000000000014)

[  540.164138] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:05:43 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000180)={&(0x7f0000000080), &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x5, 0x7, 0x4})
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x20013, r0, 0x4000000)

14:05:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  540.218977] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  540.236085] CR3 = 0x0000000000000000
14:05:43 executing program 4:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x1}, 0x10)
syz_emit_ethernet(0x7fd, &(0x7f0000000ac0)={@broadcast, @random="27c2de128914", [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x415, 0x0, 0x0, 0x0, 0x200000000000011, 0x0, @rand_addr, @multicast1}, @dccp={{0x0, 0x1, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d70502", 0x0, "f53475"}, "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"}}}}}, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
syz_emit_ethernet(0x423, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff000014000000080045000415000000000011907800000000e0000001000000010401907800d7050200f53475b441d632cdbbcb211363807aec73d3883762a61dc02d349bfa3ac974b987aa7fb97eb324d594fbbb77bab759418aa8d451d921e8f5d2cf2b08292111701192e97cac366dd3eb2e0fb039e58314ef4709c5f3556db6a1ab6b4fb2bdd83cdc26e8395ec4984ec3faf71a611d1569545d654cded93be827a85188b803c19c1b56aab522862a718b81e512b49690994d3425e33bd93f0e744c66a083c1f9f1bd7bb8f9e123c08f3f041ed3fdc058136cf0071a47cc0e38720a12e11e842a7b5b26dff07f578fdb9a7b14662a625c1ee76c41ccb2b1fc6376aa718e1067b9e4af511ef5b360dbfad326108bb033db193dab27974eb8c462739eaee51d87f31c516e7e391073770da3202e02c41a7277c847df24bd5b0a7ab6e252f3c8ebf00688cc55311d887e8bfd95a7f4c6a126af3fe26714ddb869c66d18f870631bbd497e8a06881b754ecdcdd0dcffc51cd52a6b560f8d64b63a1674745edc5f53b18a8ffcc5c2fbc4d2bbcc2faf3c189d9b36c0655d1394f5c127ec86b8a764a87b546c2b6ac37d0a8ec3edd7cda6f930570763dbdc0640d219749bd57c7c89eaadfdae41d654a46b17be069a32a7d94d29b612fbe61b8bd11a2d10ba5d4ac7014fc0465c3f144598bd1f913343e7293711040eee0ae8df1e49f04ed1037d4b742aed0e932116060aaf6b985238d2e10fb5b11d19d7801befed4833287d96a85a7cdd9e211a672760335655576fc0fa0336621c2b2b1018ef71bb5077c67ee5fa8d479d6776013363e98b1f1213710be7e47549b6035459008c509f0f983130a451531381ee3c1ab9e1cbb8e558b56ca1a70939389addc5f9632b37ff3f634abb504bb0be0a51649683f6e29588c15cda40255e173328681884ffef6729e9058c5623e1401fdcc7b8cb5623a8fd725fbeea05fc417c44e46500619218dff7c70aa068994c58883cada505a2aa85b6620dfe9c45b707c9aa1222b86972eae564b28a05ddfa3545df231fde2707d4bf67dc6ba41daba91dee8081e5c7e2bcfbebebd42d5ab8a32d6e098fd57233e3b813dc0d772134775def451823b7fef2bc93da01722cd613b9a3db7e2d4c51fb7b56006ee9cea53b62343599a56167388d45247f9289fb1cab67a7cb0c3665ddf1e1411875b4de3428b32fc6603691a023d8e4cb93c667acb7b535fb5f77af9a49640cbe8ffe3a193cf4df1b556a67cb753c60bdf978b871aa513c07074c6602037ebc32199290e3c7ac6f103ad9358951ad4de0c8f1b34951b0e6a48295975cf08b2c3c95064855fc95317e386f1c18608d1d08699003c998b93332cd316f17a5139d350cbfa9dabc3f77c4197a0186e50913978e980a7a028e7ccdeee718af028200e94a6b3a0ec93ba14b0c64dfaf3967e230d8cf876f26287d436ebc9588b52b43f2380836bfe3"], 0x0)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x10000, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000000c0)={<r2=>0x0, 0x85, "317a4bf82fb7114f4365846cf284950da9853040afd189abd257f74367a19601763a853ca75b640ae94e25f67433527780308eb685cff41255a9ea478a7195223b5839d837e47194d697a81e6919d9a6564bfbe90cafaef487e3ed1b6df9ce56e988acf6dd57e88d34d6e6b4e1313489e067b7474c4f6d14d64a8b292d315e622078cad3b5"}, &(0x7f0000000180)=0x8d)
getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f00000001c0)={r2, 0x5, 0x8, 0x2}, &(0x7f0000000200)=0x10)

[  540.285265] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  540.297624] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
14:05:43 executing program 4:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x22082, 0x0)
r1 = signalfd(r0, &(0x7f00000000c0), 0x8)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$netlink(0x10, 0x3, 0x0)
io_setup(0xffffffffffffffff, &(0x7f0000000040)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f00000003c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}])
clock_gettime(0x0, &(0x7f00000001c0)={<r5=>0x0, <r6=>0x0})
mq_timedsend(r0, &(0x7f0000000140)="d2bb99fced1671038f14c16be8254e5eba04999209357c8fab664f563ac5a0bcf2f558", 0x23, 0x401, &(0x7f0000000200)={r5, r6+10000000})
ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000280)={0x0, 0xfffffffffffffffb, 0x8, [], &(0x7f0000000240)={0x0, 0x6e000000000000, [], @value64=0x7}})
r7 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2)
ioctl$KVM_CHECK_EXTENSION_VM(r7, 0xae03, 0x4)
ioctl$CAPI_GET_MANUFACTURER(r7, 0xc0044306, &(0x7f0000000100)=0x10001)

[  540.326002] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  540.355826] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  540.386558] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  540.419592] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.464797] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.484777] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.494061] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.503717] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.512177] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.523529] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  540.532382] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.540824] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  540.548944] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  540.557378] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  540.564867] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  540.572801] Interruptibility = 00000000  ActivityState = 00000000
[  540.579178] *** Host State ***
[  540.582836] RIP = 0xffffffff81173b5f  RSP = 0xffff88808ae37998
[  540.588971] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  540.595965] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  540.603979] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  540.611137] CR0=0000000080050033 CR3=00000000906bd000 CR4=00000000001426e0
[  540.618299] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  540.625435] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  540.631658] *** Control State ***
[  540.635234] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  540.642746] EntryControls=0000d1ff ExitControls=002fefff
[  540.648367] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  540.655873] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
14:05:44 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)
r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x40000)
setsockopt$llc_int(r1, 0x10c, 0xd, &(0x7f0000000080)=0x8001, 0x4)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r1, 0xc0305616, &(0x7f0000000100)={0x0, {0xffffffffffffff95, 0x80000000}})
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x810, r0, 0x0)
sysfs$3(0x3)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000000c0)=0x927, 0x4)

14:05:44 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
accept4(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x80800)

14:05:44 executing program 4:
openat$apparmor_thread_exec(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r0, 0xc0bc5310, &(0x7f0000000180))
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x3, 0x0)
r2 = dup(r0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = perf_event_open(&(0x7f00000006c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000001300)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
r5 = accept$alg(r4, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, 0x0)
ioctl$VIDIOC_S_PRIORITY(r2, 0x40045644, 0x3)
perf_event_open(0x0, 0x0, 0x0, r3, 0x0)
recvmmsg(r1, &(0x7f0000000000), 0x0, 0x61, &(0x7f0000000080)={0x0, 0x989680})
socket$alg(0x26, 0x5, 0x0)
fcntl$setstatus(r5, 0x4, 0x2800)
ioctl$TIOCGSOFTCAR(r2, 0x5419, &(0x7f00000000c0))
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="8b", 0x1)
recvmmsg(r5, &(0x7f0000006100)=[{{&(0x7f0000000100)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000300), 0x100000b2, &(0x7f0000000340)=""/120, 0x6f}}], 0x400000000000119, 0x100, 0x0)
getpid()
sched_setattr(0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0)
prctl$PR_SET_TSC(0x1a, 0x0)
ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f0000000000)={'bpq0\x00', {0x2, 0x4e23, @rand_addr=0x9}})

14:05:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  540.663835] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  540.670878]         reason=80000021 qualification=0000000000000000
[  540.677316] IDTVectoring: info=00000000 errcode=00000000
[  540.683183] TSC Offset = 0xfffffedc282fbec6
[  540.687713] EPT pointer = 0x000000008bb9001e
[  540.692602] Virtual processor ID = 0x0002
14:05:44 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = creat(&(0x7f00000012c0)='./bus\x00', 0x0)
lseek(r1, 0x800000, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000001c0))
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="be"], 0x1)
fallocate(r1, 0x3, 0x0, 0x8020001)
dup2(r1, r0)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000040)={0x4, [0x4, 0x81, 0x7, 0x2]}, 0xc)
writev(r1, &(0x7f0000000380)=[{&(0x7f0000000200)="e5", 0x1}], 0x1)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c)

14:05:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:44 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x8000, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000080)='trusted.overlay.upper\x00', &(0x7f00000000c0)={0x0, 0xfb, 0x1015, 0x2, 0x7fffffff, "34b42ea1fc51d10dd82e59d64b084f55", "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"}, 0x1015, 0x1)
r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r1, 0x4000000)

14:05:44 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:44 executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0xe, 0x4000000004, 0x4, 0x8}, 0x2c)
bpf$MAP_CREATE(0x4, &(0x7f0000003000)={0x3, 0x0, 0x0, 0x0, 0x10020000000, r0}, 0x3c)

14:05:44 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x40000000000000)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x4000000)

14:05:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  541.050372] *** Guest State ***
[  541.053739] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:05:44 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000640)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000200)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0xa392, 0x0, [{}, {}, {}, {}, {0x0, 0x7f}, {}, {}, {}, {0x0, 0x9, 0x0, [], 0xfffffffffffff801}]}})

[  541.103256] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  541.126141] CR3 = 0x0000000000000000
[  541.140350] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  541.171638] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  541.188402] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  541.201937] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  541.212861] Disabled LAPIC found during irq injection
[  541.214761] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  541.238894] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.278430] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.299664] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.324395] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.346501] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.361837] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.369944] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  541.383064] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.392890] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  541.405291] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  541.415048] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  541.424757] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  541.433998] Interruptibility = 00000000  ActivityState = 00000000
[  541.444231] *** Host State ***
[  541.447546] RIP = 0xffffffff81173b5f  RSP = 0xffff88808b547998
[  541.455299] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  541.465038] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  541.474595] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  541.483751] CR0=0000000080050033 CR3=0000000093d14000 CR4=00000000001426f0
[  541.492497] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  541.503396] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  541.509578] *** Control State ***
[  541.514887] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  541.524808] EntryControls=0000d1ff ExitControls=002fefff
[  541.532233] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  541.539267] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  541.549402] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  541.557765]         reason=80000021 qualification=0000000000000000
[  541.568769] IDTVectoring: info=00000000 errcode=00000000
[  541.575964] TSC Offset = 0xfffffedbaf0614d2
14:05:45 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={<r1=>0x0}, &(0x7f0000000280)=0xc)
prctl$PR_SET_PTRACER(0x59616d61, r1)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x38)
ptrace$cont(0x18, r2, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0x130})
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x1f, r2, 0x0, 0x0)

14:05:45 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/status\x00', 0x0, 0x0)
ioctl$KVM_S390_UCAS_MAP(r2, 0x4018ae50, &(0x7f00000000c0)={0x7fc, 0xfffffffd, 0x6})
fallocate(r2, 0x1, 0x4, 0x400)
dup2(r0, r1)

14:05:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:45 executing program 5:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x1b, 0x0}}], 0x1, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
keyctl$reject(0x13, 0x0, 0xffffffffffffbf03, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x20000, 0x0)
ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f00000000c0))
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz'}, &(0x7f0000000080), 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x0, 0x0, 0xb2)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='oom_score\x00')
openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r3, &(0x7f00000017c0), 0x199, 0x0)
socket$netlink(0x10, 0x3, 0x0)
connect$rxrpc(r0, &(0x7f0000000100)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x24)

[  541.583648] EPT pointer = 0x000000004a5ef01e
[  541.588174] Virtual processor ID = 0x0003
14:05:45 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:45 executing program 0:
r0 = socket$inet(0x10, 0x2, 0xa)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000002340)='TIPC\x00')
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f0000002400)={&(0x7f0000002300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002380)={0x1c, r3, 0x10, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x40014)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f0000000180)={0x0, 0x0, 0x2080})
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="240000b7839060c6d6681f53ef5167fe7cef903d2600000107031dfffd946fa283002030", 0x24}], 0x1}, 0x0)
pipe2(&(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x4000)
readlinkat(r1, &(0x7f0000002200)='./file0\x00', &(0x7f0000002240)=""/113, 0x71)
ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f00000022c0))
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x9, 0xfffffffffffff801, 0x5, 0x3}]})

14:05:45 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
set_thread_area(&(0x7f0000000000)={0x2, 0x0, 0x2400, 0x1, 0xff, 0x8, 0x7, 0x7ff, 0x2, 0x5})
r1 = syz_open_dev$vbi(&(0x7f0000000100)='/dev/vbi#\x00', 0x3, 0x2)
ioctl$SCSI_IOCTL_PROBE_HOST(r1, 0x5385, &(0x7f00000001c0)=ANY=[@ANYBLOB='N\x00\x00\x00\r\x00'/82])
r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0)
ioctl$UI_SET_PHYS(r2, 0x4008556c, &(0x7f0000000180)='syz0\x00')
connect$can_bcm(r0, 0x0, 0x0)
fcntl$getflags(r0, 0x409)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x2, 0x0)
ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000080)={0x1, 0x81, 0xfffffffffffffffa, 0xffffffff, 0x16, 0x6, 0x5, 0x20, 0x9, 0x748f8998, 0x5b00, 0x3})

14:05:45 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000015000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000040)="baa000ec3e3e3e0f2b75ee65f30f008f6300a6aff4660f3a62227d0f20e06635000040000f22e0260f0350000f01cf", 0x2f}], 0x1, 0x0, 0x0, 0x238)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000100)={'nlmon\t\x00\x7f\xed\xb1[\xe5\xa3\xcd\xb6\x00'})
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x0, 0x2)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r3, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1002000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r4, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x800}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x10)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000280)={0xc, 0xba8e})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

14:05:45 executing program 4:
r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000002c0)={0x8000000})

14:05:45 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='maps\x00')
write$P9_RSYMLINK(0xffffffffffffffff, &(0x7f0000000200)={0x14, 0x11, 0x1, {0x0, 0x0, 0x4}}, 0x14)
preadv(r0, &(0x7f00000017c0), 0x199, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000100)='trusted.overlay.opaque\x00', &(0x7f0000000180)='y\x00', 0x2, 0x1)
r1 = socket$inet(0x2, 0x1, 0x0)
clone(0x2200802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
restart_syscall()
clock_gettime(0x0, &(0x7f00000002c0))
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080), 0x48, 0x0, &(0x7f0000000300)="3356bc569e1c6e7934087ca48601ebff550ebf969fe42f3c987d1a1a716b7925c9d80ee6c6ce21888bd1ea104c8cbb2ce1054f90f4e1ff63aed1631494615aca4d44c344d4a34269"})
nanosleep(&(0x7f0000000380)={0x0, 0x1c9c380}, &(0x7f00000003c0))
ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x3, 0x12})
socketpair(0xf, 0x800, 0x2, &(0x7f0000000240))
pipe(&(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000004c0)={<r4=>0xffffffffffffffff}, 0x13f, 0xef2dfd305cb4763c}}, 0x20)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r2, &(0x7f0000000540)={0x12, 0x10, 0xfa00, {&(0x7f0000000080), r4, r0}}, 0x18)
ioctl$EVIOCGVERSION(r3, 0x80044501, 0x0)
writev(r1, &(0x7f0000000440)=[{&(0x7f0000000400)="cda28a8ce5b9f802fc4fb64f0aba91fe934c9610f9ea3d31892fb1fab5fd154b6fc1f5484b4d34e2baf57b", 0x2b}], 0x1)
open(&(0x7f00000001c0)='./file0\x00', 0x2, 0x48)

14:05:45 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070")
set_mempolicy(0x4002, &(0x7f00000000c0)=0x9, 0x4)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x1, 0x44031, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r1=>0x0)
syz_open_procfs(r1, &(0x7f0000000080)='fdinfo/4\x00')

[  541.935212] *** Guest State ***
[  541.944690] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  541.971397] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  541.984023] CR3 = 0x0000000000000000
[  541.987915] PDPTR0 = 0x800000000dc0200f  PDPTR1 = 0x1dad6fa4f7c0220f
[  541.996967] PDPTR2 = 0x000f00a2b8660000  PDPTR3 = 0x000070009aa7f3d8
[  542.015653] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  542.022137] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  542.028280] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  542.035281] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.043448] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.052333] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.060564] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.068602] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.076669] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.084811] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  542.092859] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.100890] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  542.108875] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  542.116914] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  542.123347] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  542.130846] Interruptibility = 00000000  ActivityState = 00000000
[  542.137073] *** Host State ***
[  542.140330] RIP = 0xffffffff81173b5f  RSP = 0xffff88809bb07998
[  542.146302] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  542.152772] FSBase=00007f3cbef88700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  542.161377] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  542.167318] CR0=0000000080050033 CR3=0000000055afe000 CR4=00000000001426e0
[  542.174390] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  542.181093] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  542.187821] *** Control State ***
[  542.191332] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  542.198004] EntryControls=0000d1ff ExitControls=002fefff
[  542.203539] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  542.210519] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  542.217190] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  542.223840]         reason=80000021 qualification=0000000000000000
[  542.230189] IDTVectoring: info=00000000 errcode=00000000
[  542.235624] TSC Offset = 0xfffffedb333640a2
[  542.239924] EPT pointer = 0x00000000859fa01e
[  542.244701] Virtual processor ID = 0x0002
[  542.880146] net_ratelimit: 22 callbacks suppressed
[  542.880152] protocol 88fb is buggy, dev hsr_slave_0
[  542.890232] protocol 88fb is buggy, dev hsr_slave_1
[  543.280150] protocol 88fb is buggy, dev hsr_slave_0
[  543.285514] protocol 88fb is buggy, dev hsr_slave_1
[  543.840408] protocol 88fb is buggy, dev hsr_slave_0
[  543.845492] protocol 88fb is buggy, dev hsr_slave_1
[  543.850625] protocol 88fb is buggy, dev hsr_slave_0
[  543.855669] protocol 88fb is buggy, dev hsr_slave_1
[  543.860922] protocol 88fb is buggy, dev hsr_slave_0
[  543.865983] protocol 88fb is buggy, dev hsr_slave_1
14:05:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x22000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000040)="c4e1616d7c631941d12166b82e008ed8f3a7c4e2ddafb3de67e41e48b800900000000000000f23c00f21f835020006000f23f80f01ca0f0766b843000f00d8450f1f33", 0x43}], 0x1, 0x2, &(0x7f0000000140)=[@dstype3={0x7, 0x7}, @dstype0={0x6, 0xa}], 0x2)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r4, 0x107, 0xd, &(0x7f0000000280)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r4, 0x0)

14:05:48 executing program 5:
r0 = syz_open_dev$midi(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000000)={0x18, 0x0, {0x1, @link_local, 'hsr0\x00'}}, 0x1e)
sendmmsg(r1, &(0x7f000000d180), 0x4000000000000eb, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000040)=<r2=>0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000080)=0x2)

14:05:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8)
ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f0000000000)={0x100000000, 0x1, 0x1dc})
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000140)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)='syzkaller1\x00'})

14:05:48 executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0xe, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x3c)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, &(0x7f0000000080)="a11ab6515dbbbcf5aa9c690b700db5090000000000000059bb9af3ca8a134249c6ead881a274298bcd64a8777340067d37307d84cfadd046959af63268ee21b4504006572c38eeab7b0c45540e8e2f68000000000073ee00d9e79a019104b156daec08673801638cce7cc413000000000000", 0x0}, 0x18)

14:05:48 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfffffffffffffeaf, 0x0, 0x0, 0xffffffae)
pipe2(&(0x7f0000000040), 0x4000)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x102000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x73, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000011000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="0f20e035000200000f22e00f20e5b8ff5d96e20f23d80f21f835400000a00f23f8b971000040b87f000000ba000000000f30c4e36979a5d12b0ffb0b670f01cb66baf80cb869881b81ef66bafc0cec66b8a5008ee0650f01cbf082a103000000ff", 0x61}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prctl$PR_SET_FPEXC(0xc, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000080)="2e660f201766e8c03c583e0f01c90f2025dcb502550fadaf0030baf80c66b878a0d98b66efbafc0ced816a4800f0baf80c66b82c9a868566efbafc0cec66b8000000000f23d00f21f866353000000d0f23f8", 0x52}], 0x1, 0x0, 0x0, 0x0)

14:05:48 executing program 0:
ioctl(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400)='/dev/sequencer2\x00', 0x410000, 0x0)
sendto(r0, &(0x7f0000001440)="e1c6f1b601174232c110a852229ad4de2773b360ce62ca752f479222e7171054d79e7260994684ae412946eff2f8e5d5ae3159dce547b320df0fcc838876b2b13b197a7b9962cb17b587162d4ec4b2d80cf211f3e69aff80625701d9ea38ed9f72baa4291b3b8c494e97a74f1359fe77eb91bf9097b1b15167f969bbe32aec61ab3252f63ef76150f7a113799185e8665b3cbd223f3e58400c985be8af16fcbc4cf0bf55156a1e6b267c54c0", 0xac, 0x0, &(0x7f0000001500)=@isdn={0x22, 0x101, 0x149a, 0x7, 0x123}, 0x80)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001580)='/dev/mISDNtimer\x00', 0x10601, 0x0)
r1 = syz_open_pts(r0, 0x101400)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000002b80)={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x7, @local}, 0x0, {0x2, 0x4e21, @multicast1}, 'netdevsim0\x00'})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000001340)={<r3=>0x0, 0xfffffffffffffffe}, &(0x7f0000001380)=0x8)
setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x3, 0x4)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
recvmsg$kcm(r4, &(0x7f0000002ac0)={&(0x7f0000001680)=@ipx, 0x80, &(0x7f0000002a00)=[{&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/237, 0xed}, {&(0x7f0000002800)=""/9, 0x9}, {&(0x7f0000002840)=""/123, 0x7b}, {&(0x7f00000028c0)=""/202, 0xca}, {&(0x7f00000029c0)=""/53, 0x35}], 0x6, &(0x7f0000002a80)=""/38, 0x26}, 0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
read(r1, &(0x7f00000015c0)=""/133, 0x85)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000002b00)={r3, 0x800, 0x0, 0x1f}, &(0x7f0000002b40)=0x18)
ioctl$SIOCRSSCAUSE(r2, 0x89e1, &(0x7f0000002c00)=0x3)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000cfc000/0x18000)=nil, 0x0, 0x0, 0xe05000, 0x0, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, <r7=>0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/186, 0xba}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x2, &(0x7f00000001c0)=""/44, 0x2c}, 0x120)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000240), &(0x7f0000000280)=0x4)
openat$smack_task_current(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/attr/current\x00', 0x2, 0x0)
syz_open_dev$mice(&(0x7f0000001300)='/dev/input/mice\x00', 0x0, 0x202000)

[  545.106980] *** Guest State ***
[  545.143407] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  545.184704] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  545.223454] CR3 = 0x0000000000000000
14:05:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:48 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x40000000001, 0x0)
ioctl$IOC_PR_CLEAR(r1, 0x401070cd, &(0x7f0000000040)={0x1})
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0xfffffffffffffffd, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000001800020000000000000000001d01000018000100000000000000000028850e61afda8cb704000000"], 0x1}}, 0x0)
link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00')

[  545.237781] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  545.270559] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  545.305590] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  545.344573] RFLAGS=0x00000002         DR7 = 0x0000000000000400
14:05:48 executing program 4:
r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x5, 0xffffffffffffffff)
preadv(r0, &(0x7f0000000a40)=[{&(0x7f0000000940)=""/15, 0xf}, {&(0x7f0000000980)=""/129, 0x81}], 0x2, 0x0)

[  545.373247] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  545.399119] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.427489] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.460281] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:48 executing program 4:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$UI_SET_FFBIT(r1, 0x4004556b, 0xfffffffffffffffc)
fstat(r1, &(0x7f00000000c0))
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{0x8000, 0x7f, 0x3, 0x5}, 'syz0\x00', 0x11})
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r1, 0x110, 0x4, &(0x7f0000000080), 0x4)

[  545.518517] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.531264] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.557549] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.597372] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  545.629472] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.639675] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  545.662429] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  545.673071] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  545.679671] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  545.693103] Interruptibility = 00000000  ActivityState = 00000000
[  545.699516] *** Host State ***
[  545.716742] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a8857998
[  545.731247] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  545.749179] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  545.765156] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  545.775455] CR0=0000000080050033 CR3=000000008168d000 CR4=00000000001426e0
[  545.783512] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  545.790364] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  545.796544] *** Control State ***
[  545.800910] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  545.807698] EntryControls=0000d1ff ExitControls=002fefff
[  545.813579] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  545.820666] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  545.830416] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  545.837087]         reason=80000021 qualification=0000000000000000
[  545.843856] IDTVectoring: info=00000000 errcode=00000000
[  545.849390] TSC Offset = 0xfffffed97fb53ac5
[  545.854081] EPT pointer = 0x0000000054ff001e
[  545.858573] Virtual processor ID = 0x0002
14:05:49 executing program 2:
r0 = syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="9ca0a5055e0bcfe47bf070")
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r2, 0x40046205, &(0x7f0000000100)=0xffffffff)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x301, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0x5646, 0x0)

14:05:49 executing program 0:
ioctl(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400)='/dev/sequencer2\x00', 0x410000, 0x0)
sendto(r0, &(0x7f0000001440)="e1c6f1b601174232c110a852229ad4de2773b360ce62ca752f479222e7171054d79e7260994684ae412946eff2f8e5d5ae3159dce547b320df0fcc838876b2b13b197a7b9962cb17b587162d4ec4b2d80cf211f3e69aff80625701d9ea38ed9f72baa4291b3b8c494e97a74f1359fe77eb91bf9097b1b15167f969bbe32aec61ab3252f63ef76150f7a113799185e8665b3cbd223f3e58400c985be8af16fcbc4cf0bf55156a1e6b267c54c0", 0xac, 0x0, &(0x7f0000001500)=@isdn={0x22, 0x101, 0x149a, 0x7, 0x123}, 0x80)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001580)='/dev/mISDNtimer\x00', 0x10601, 0x0)
r1 = syz_open_pts(r0, 0x101400)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000002b80)={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x7, @local}, 0x0, {0x2, 0x4e21, @multicast1}, 'netdevsim0\x00'})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000001340)={<r3=>0x0, 0xfffffffffffffffe}, &(0x7f0000001380)=0x8)
setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x3, 0x4)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
recvmsg$kcm(r4, &(0x7f0000002ac0)={&(0x7f0000001680)=@ipx, 0x80, &(0x7f0000002a00)=[{&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/237, 0xed}, {&(0x7f0000002800)=""/9, 0x9}, {&(0x7f0000002840)=""/123, 0x7b}, {&(0x7f00000028c0)=""/202, 0xca}, {&(0x7f00000029c0)=""/53, 0x35}], 0x6, &(0x7f0000002a80)=""/38, 0x26}, 0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
read(r1, &(0x7f00000015c0)=""/133, 0x85)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000002b00)={r3, 0x800, 0x0, 0x1f}, &(0x7f0000002b40)=0x18)
ioctl$SIOCRSSCAUSE(r2, 0x89e1, &(0x7f0000002c00)=0x3)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000cfc000/0x18000)=nil, 0x0, 0x0, 0xe05000, 0x0, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, <r7=>0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/186, 0xba}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x2, &(0x7f00000001c0)=""/44, 0x2c}, 0x120)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000240), &(0x7f0000000280)=0x4)
openat$smack_task_current(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/attr/current\x00', 0x2, 0x0)
syz_open_dev$mice(&(0x7f0000001300)='/dev/input/mice\x00', 0x0, 0x202000)

14:05:49 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:49 executing program 4:
r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000040)=""/175)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000100)={0x5, 0x100, 0x4, 0x3482, 0x4, "aee716e713fb51075343a37c0c849633b3b00e", 0x5, 0x100000000})
sendto$inet(r0, &(0x7f0000000140)="b962ed619ec64f2e2d5b16fbcebc186da43426eb38e660048e64260edded6a179b11c141a03a56adc8430a457db869ddbb0f90bbe260251aa907e6d141c6d4c7634cdc92ea576745c479e54621f873df9a5cabd46f87dc48428bc0668d5b475f98410fec5266b87744b73186e9a20518a8dc57c42e31771abb50e244257c6623fcc2db100a3d9c99c0b4f7534c738651568376a709dc869b4cb4158a5376ff97a75b19b5ff059b64ebbfe371113399f163b31db64efe20bfa021456d2d7a54bdc550359531fc0d8ef81412f350f19b61792b59430e137a9f829ed4bc38999f0d31270d0fa55d661d17a7", 0xea, 0x10, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000280))
fstat(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
ioctl$VIDIOC_SUBDEV_S_EDID(r0, 0xc0285629, &(0x7f0000000380)={0x0, 0x68c, 0x80000001, [], &(0x7f0000000340)=0x8})
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000003c0)=<r2=>0x0)
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000400)=r2)
r3 = accept$packet(r0, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000480)=0x14)
ioctl$SG_GET_NUM_WAITING(r0, 0x227d, &(0x7f00000004c0))
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000500)='/dev/mixer\x00', 0x1, 0x0)
fstat(r4, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
timerfd_create(0x7, 0x800)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f00000005c0))
ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000600))
stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680))
ioctl$RTC_PLL_GET(r3, 0x80207011, &(0x7f0000000700))
write$vnet(r0, &(0x7f0000000900)={0x1, {&(0x7f0000000740)=""/254, 0xfe, &(0x7f0000000840)=""/142, 0x3, 0x3}}, 0x68)
write$vnet(r0, &(0x7f0000000ac0)={0x1, {&(0x7f0000000980)=""/80, 0x50, &(0x7f0000000a00)=""/157, 0x0, 0x1}}, 0x68)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r4, 0x84, 0x12, &(0x7f0000000b40)=0x3d, 0x4)
ioctl$BLKTRACESTART(r4, 0x1274, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000b80)={{{@in6=@initdev, @in6=@ipv4={[], [], @dev}}}, {{@in6=@empty}, 0x0, @in6}}, &(0x7f0000000c80)=0xe8)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000cc0)='/dev/audio\x00', 0x400000, 0x0)
write$input_event(r6, &(0x7f0000000d00)={{0x0, 0x2710}, 0x17, 0xe5, 0x5}, 0x18)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000d40)={0xffffffff, 0x5, 0xd4d6})
getpid()
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$gfs2(&(0x7f0000000d80)='gfs2\x00', &(0x7f0000000dc0)='./file0\x00', 0xf92, 0x3, &(0x7f0000001080)=[{&(0x7f0000000e00)="8aa617b2aee05df94fd8f04c2ed715b07c48cae4c853ecc2b4248e6cad7f4679382673f0349de38bfaa14cee00c48e20a9d17071503c7b99f41934c0192fffbb287ddd2e11848e038c80fdbb6fa81a172ffe8b095911cd96", 0x58, 0x424}, {&(0x7f0000000e80)="defa35613f9abd3edec22760d197911c11ea853737c0c6d8733af5aeb5c625d291a7a7da58136b57596d3f09bd0062fbe86d9d7d16be32d6a4c67f3646088b296470b529dbb089699a6fd6293962b16b3165ea4426a658fea48670ee39736c451a47dce22b3c59466f892e30987ea267a4c2faa717e83bbe72357cdf1f5bbe580bcfd898871237b992268741bfe9a9eae2be48c2396708df338429b3db51ce120f1a152bfa00872468ca9c0a9ced9fdb0d6bfcc5dcc8a281cf4aeaec2a7f2362434f119fd8c8688469d55e65605908e30ef8024b0ded3598d02f9072cb", 0xdd, 0x8}, {&(0x7f0000000f80)="25d8502dfe63859588229126c033b24f83d70d1c03d8e766c2748075008fc7ee6ada2931c69bf9e8866eec5d2b1ad932f7bad9ce513839acf8e2c76132f7b855e846b00939395bf4c7a2e97183f11b015ff23fe5012cc0f3ecdff981fd92f46f9705ab31f1b255497f781216d7e9660e5b5928bd35b3e1d5784687498ab0256754cd93a9514d238f37b541e5bb7d8534fda051a009132331d0b85605c6843ff925f738b5ca232a2fe7d2182531ae103d6cdb225319bcc8429711650fcf8c80035b549a7c1c88cd3a", 0xc8, 0x3}], 0x2000, &(0x7f0000001100)={[{@statfs_quantum={'statfs_quantum', 0x3d, 0xfffffffffffffffd}}, {@discard='discard'}], [{@context={'context', 0x3d, 'user_u'}}, {@obj_type={'obj_type', 0x3d, '/dev/swradio#\x00'}}, {@pcr={'pcr', 0x3d, 0x3d}}, {@pcr={'pcr', 0x3d, 0x10}}, {@fowner_gt={'fowner>', r1}}, {@euid_gt={'euid>', r5}}, {@pcr={'pcr', 0x3d, 0x15}}]})

14:05:49 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
shutdown(r0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0xa, 0x0, @dev}}, 0x0, 0x0, 0xb1da, 0x0, 0x90}, 0x98)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000040)=[@in6={0xa, 0x0, 0x0, @local, 0x5}], 0xfffffffffffffff9)

14:05:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:49 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:49 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x4000, 0x0)
socket$vsock_dgram(0x28, 0x2, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000180))
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_pts(r0, 0x0)
write(r0, &(0x7f0000c34fff), 0xffffff0b)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8000, 0x0, 0x80000000})
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, 0x0, &(0x7f00000026c0))
r2 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x7, 0x200000)
ioctl$RTC_WIE_OFF(r2, 0x7010)
r3 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x101, 0x0)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000200)={0x1000, 0x2, 0x80000001, 0x0, 0x3, 0x5, 0x3, 0x3, 0x4, 0x6, 0x9, 0x9, 0x0, 0x7ff, 0x0, 0x7, 0x81, 0x3e3, 0x6})
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f00000000c0))
write$RDMA_USER_CM_CMD_DISCONNECT(r3, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0xca)
ioctl$TUNGETDEVNETNS(r4, 0x54e3, 0x0)
connect$rose(r4, &(0x7f0000000080)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @null}, 0x1c)
syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x7, 0x400)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000005, 0x5c831, 0xffffffffffffffff, 0x0)

14:05:49 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  546.162372] *** Guest State ***
[  546.165909] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  546.193232] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  546.204115] CR3 = 0x0000000000000000
14:05:49 executing program 4:
add_key$keyring(&(0x7f0000000480)='keyring\x00', 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$inet(0x2, 0x4000020000000001, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r2, 0x0, 0xfffffffffffffc6d, 0x20000800, &(0x7f0000000240)={0x2, 0x4e23, @local}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x80000008})
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f00000000c0)="0204", 0x2)
setsockopt$inet_mtu(r2, 0x0, 0xa, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f00000001c0)='ip6_vti0\x00', 0x1000001d0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000040)={0x9, 0x5, 0x100, 0x7fffffff, &(0x7f0000000280)=[{}, {}, {}, {}, {}]})
openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x101000, 0x0)
sendto$inet(r2, &(0x7f0000000000), 0xfffffffffffffccf, 0xc0, 0x0, 0xffffffffffffff37)

[  546.210192] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  546.228478] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
14:05:49 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  546.267405] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
14:05:49 executing program 0:
ioctl(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400)='/dev/sequencer2\x00', 0x410000, 0x0)
sendto(r0, &(0x7f0000001440)="e1c6f1b601174232c110a852229ad4de2773b360ce62ca752f479222e7171054d79e7260994684ae412946eff2f8e5d5ae3159dce547b320df0fcc838876b2b13b197a7b9962cb17b587162d4ec4b2d80cf211f3e69aff80625701d9ea38ed9f72baa4291b3b8c494e97a74f1359fe77eb91bf9097b1b15167f969bbe32aec61ab3252f63ef76150f7a113799185e8665b3cbd223f3e58400c985be8af16fcbc4cf0bf55156a1e6b267c54c0", 0xac, 0x0, &(0x7f0000001500)=@isdn={0x22, 0x101, 0x149a, 0x7, 0x123}, 0x80)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001580)='/dev/mISDNtimer\x00', 0x10601, 0x0)
r1 = syz_open_pts(r0, 0x101400)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000002b80)={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x7, @local}, 0x0, {0x2, 0x4e21, @multicast1}, 'netdevsim0\x00'})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000001340)={<r3=>0x0, 0xfffffffffffffffe}, &(0x7f0000001380)=0x8)
setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x3, 0x4)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
recvmsg$kcm(r4, &(0x7f0000002ac0)={&(0x7f0000001680)=@ipx, 0x80, &(0x7f0000002a00)=[{&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/237, 0xed}, {&(0x7f0000002800)=""/9, 0x9}, {&(0x7f0000002840)=""/123, 0x7b}, {&(0x7f00000028c0)=""/202, 0xca}, {&(0x7f00000029c0)=""/53, 0x35}], 0x6, &(0x7f0000002a80)=""/38, 0x26}, 0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
read(r1, &(0x7f00000015c0)=""/133, 0x85)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000002b00)={r3, 0x800, 0x0, 0x1f}, &(0x7f0000002b40)=0x18)
ioctl$SIOCRSSCAUSE(r2, 0x89e1, &(0x7f0000002c00)=0x3)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000cfc000/0x18000)=nil, 0x0, 0x0, 0xe05000, 0x0, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, <r7=>0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/186, 0xba}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x2, &(0x7f00000001c0)=""/44, 0x2c}, 0x120)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000240), &(0x7f0000000280)=0x4)
openat$smack_task_current(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/attr/current\x00', 0x2, 0x0)
syz_open_dev$mice(&(0x7f0000001300)='/dev/input/mice\x00', 0x0, 0x202000)

[  546.311757] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  546.346102] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  546.377523] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.417681] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.449938] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.482241] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.513580] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.548740] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:50 executing program 2:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x10000, 0x0)
ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f00000000c0)=""/5)
r1 = socket$kcm(0x10, 0x5, 0x0)
prctl$PR_GET_TIMERSLACK(0x1e)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="230000005a00817491bc655067d7aee4050c00000f00020001000000acecf0a3fcffff", 0x23}], 0x1}, 0x0)

14:05:50 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:50 executing program 0:
ioctl(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400)='/dev/sequencer2\x00', 0x410000, 0x0)
sendto(r0, &(0x7f0000001440)="e1c6f1b601174232c110a852229ad4de2773b360ce62ca752f479222e7171054d79e7260994684ae412946eff2f8e5d5ae3159dce547b320df0fcc838876b2b13b197a7b9962cb17b587162d4ec4b2d80cf211f3e69aff80625701d9ea38ed9f72baa4291b3b8c494e97a74f1359fe77eb91bf9097b1b15167f969bbe32aec61ab3252f63ef76150f7a113799185e8665b3cbd223f3e58400c985be8af16fcbc4cf0bf55156a1e6b267c54c0", 0xac, 0x0, &(0x7f0000001500)=@isdn={0x22, 0x101, 0x149a, 0x7, 0x123}, 0x80)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001580)='/dev/mISDNtimer\x00', 0x10601, 0x0)
r1 = syz_open_pts(r0, 0x101400)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000002b80)={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x7, @local}, 0x0, {0x2, 0x4e21, @multicast1}, 'netdevsim0\x00'})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000001340)={<r3=>0x0, 0xfffffffffffffffe}, &(0x7f0000001380)=0x8)
setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x3, 0x4)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
recvmsg$kcm(r4, &(0x7f0000002ac0)={&(0x7f0000001680)=@ipx, 0x80, &(0x7f0000002a00)=[{&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/237, 0xed}, {&(0x7f0000002800)=""/9, 0x9}, {&(0x7f0000002840)=""/123, 0x7b}, {&(0x7f00000028c0)=""/202, 0xca}, {&(0x7f00000029c0)=""/53, 0x35}], 0x6, &(0x7f0000002a80)=""/38, 0x26}, 0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
read(r1, &(0x7f00000015c0)=""/133, 0x85)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000002b00)={r3, 0x800, 0x0, 0x1f}, &(0x7f0000002b40)=0x18)
ioctl$SIOCRSSCAUSE(r2, 0x89e1, &(0x7f0000002c00)=0x3)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000cfc000/0x18000)=nil, 0x0, 0x0, 0xe05000, 0x0, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, <r7=>0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/186, 0xba}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x2, &(0x7f00000001c0)=""/44, 0x2c}, 0x120)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000240), &(0x7f0000000280)=0x4)
openat$smack_task_current(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/attr/current\x00', 0x2, 0x0)
syz_open_dev$mice(&(0x7f0000001300)='/dev/input/mice\x00', 0x0, 0x202000)

[  546.583905] GDTR:                           limit=0x00000000, base=0x0000000000000000
14:05:50 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  546.624274] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.662249] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  546.699592] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  546.736968] EFER =     0x0000000000000000  PAT = 0x0007040600070406
14:05:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  546.772529] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  546.782883] Interruptibility = 00000000  ActivityState = 00000000
[  546.809301] *** Host State ***
[  546.816880] RIP = 0xffffffff81173b5f  RSP = 0xffff88805740f998
[  546.832722] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  546.839346] FSBase=00007f3cbef88700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  546.853550] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  546.864490] CR0=0000000080050033 CR3=000000008a3d9000 CR4=00000000001426f0
[  546.886788] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  546.913289] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  546.919372] *** Control State ***
[  546.925409] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  546.935201] EntryControls=0000d1ff ExitControls=002fefff
[  546.942612] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  546.949556] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  546.959774] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  546.968017]         reason=80000021 qualification=0000000000000000
[  546.977805] IDTVectoring: info=00000000 errcode=00000000
14:05:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:50 executing program 0:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rfkill\x00', 0x203f, 0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x4, 0x70, 0xfffffffffffffffb, 0x9796, 0x3, 0x1f, 0x0, 0x100, 0x20003, 0x0, 0x2, 0x100, 0x2, 0x3, 0x5, 0x9, 0x5, 0x9, 0x7fffffff, 0x8, 0x1800000000, 0x97, 0x544, 0x1, 0x2, 0xb2, 0xa13e, 0x5, 0x5, 0x5, 0x7f, 0x5, 0x101, 0x5, 0x100000000, 0x2, 0x4, 0x8001, 0x0, 0x0, 0x5, @perf_config_ext={0x0, 0x9}, 0x0, 0x2, 0x5, 0x2, 0x2fbf}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1)
write$rfkill(r0, &(0x7f0000000040)={0xfffffffffffffffc, 0xfffffffffffffffd, 0x2, 0xffffffffffffffff}, 0x8)

[  546.984983] TSC Offset = 0xfffffed8efa78f03
[  546.989314] EPT pointer = 0x000000005892201e
[  546.997190] Virtual processor ID = 0x0002
[  547.157967] *** Guest State ***
[  547.161892] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  547.171960] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  547.182109] CR3 = 0x0000000000000000
[  547.186175] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  547.193337] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  547.200924] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  547.207312] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  547.213767] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  547.220990] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.229372] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.237824] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.246380] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:50 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@multicast2}, {@in6=@ipv4={[0xfffffff0], [], @broadcast}, 0x0, 0x32}, @in6=@ipv4, {}, {}, {}, 0x0, 0x0, 0x2, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0xffffffffffffffde}}, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000240)='trusted.overlay.opaque\x00', &(0x7f0000000280)='y\x00', 0x2, 0x3)
ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x0)

14:05:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:50 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, &(0x7f0000000200)=0x101ec)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000000), &(0x7f0000000080)=0x4)

14:05:50 executing program 0:
r0 = syz_open_dev$admmidi(&(0x7f0000000380)='/dev/admmidi#\x00', 0x3, 0x80000)
signalfd4(r0, &(0x7f0000000540)={0xffffffffffffffe1}, 0x8, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x0)
r2 = open(&(0x7f0000000400)='./file0\x00', 0x0, 0x8)
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000100)={0x28, 0x0, 0x0, @reserved}, 0x10, 0x800)
eventfd(0x0)
r3 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, 0x0)
getpeername(0xffffffffffffffff, 0x0, &(0x7f00000003c0))
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0xfffffe3c)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, &(0x7f0000000340)=0xe97, 0x4)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r3, 0xc1105517, &(0x7f0000001000))
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001000010600"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c000100626f6e64000000000c0002000800060000000000b4f766a8f5477de40ad4a94008b422256050bd131a48bdac942ba2e6bdcc90b38c5ecf722be5caaabfb70fb787c23dbe43944488d8c80204ece1d615eaa990d72be8fc345c014051f092cf967a039da0e0e65a56bc843cfb76b27ec74ac37f2d35d825700e7cfd21cab0b840407372b09400737493b9bc169ea9b9f0f831885a3ea12024c5479ea103681a70a52e6edf06cd0b434fd60b0000e85928c5ca7643bc2de78cda0bf2d212cb32b4f548e1557cb471ebd87e587227b62423f24099"], 0x3c}}, 0x0)
r5 = socket(0x2000000000000021, 0x2, 0x10000000000002)
fsetxattr$trusted_overlay_redirect(r4, &(0x7f00000002c0)='trusted.overlay.redirect\x00', &(0x7f0000000300)='./file0\x00', 0x8, 0x3)
connect$rxrpc(r5, &(0x7f0000000080)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}}, 0x24)
r6 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x7fffffff, 0x40001)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0x3)
sendmmsg(r5, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000001001000001000000dd84ae325f09ea64d214a38faf375c7384d724505bb1ab6341b089b1cb02b1025edab0d82f6d19e16d000000000000000000c94b667487bda4000000000000007a05ce132be9de25575e98bc6e8529453b43ccb60002866a2f5c284c1b3d8fa85aa4ff5bf446f8ad0d087b73ac15261bed2143ef0ef7561e5013959f9d7ae8784bf86bacea9660e5e8a56cef05f184f932b5f80300000000000000e041d1a7a581c68c7125a173c8d4ed5f5dd235429fcc2418920ca482963013"], 0x18}}], 0x1, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x40, 0x0)
ioctl$NBD_SET_SOCK(r7, 0xab00, r6)

14:05:50 executing program 4:
r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2)
openat$cgroup_ro(r0, &(0x7f0000000080)='memory.swap.current\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='oom_score_adj\x00')
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score\x00')
rt_sigsuspend(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/btrfs-control\x00', 0x400, 0x0)
geteuid()
r3 = socket$kcm(0x10, 0x1000000000000002, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000680)="230000005e0081aee4050c00000f00000000a30000ffffff9e8b1832e0b58bc609f6d8", 0x23}], 0x1}, 0x2000000000)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
add_key$user(&(0x7f0000000240)='user\x00', 0x0, &(0x7f00000002c0), 0x0, 0xfffffffffffffffd)
syz_genetlink_get_family_id$tipc(0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x40086602, 0x400007)
getgid()
sendmsg$unix(0xffffffffffffffff, 0x0, 0x20004000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[], 0x20032600)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x7a0f, 0x1700)
sendfile(r1, r2, 0x0, 0x1)

[  547.254825] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.263375] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.271800] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  547.280344] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.301693] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  547.322827] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  547.335185] EFER =     0x0000000000000000  PAT = 0x0007040600070406
14:05:50 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fsetxattr$security_evm(r0, &(0x7f0000000440)='security.evm\x00', &(0x7f0000000480)=@md5={0x1, "f8e355effd60a9ea60f6c2499e6e7538"}, 0x11, 0x2)
r1 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7237e92f, 0x4000)
ioctl$BLKRESETZONE(r1, 0x40101283, &(0x7f0000000080)={0x1})
ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000380)=""/151)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000300)={0x0, 0x359, &(0x7f00000001c0)="3ed4d2523472144557892094b4aafe7c1e01b5216678857efe50d76d0cb17872ec93e0869377be407481f61982f76de5026591c19f6b59b00fc80d6b41ca0e9478840fa12d319c872b35a9e80526ea745bc4fe45672903dd52a578ef651f062233ff76e640b488795d827105e0d4cbaae38deef85a730fbf6f55cb48b664d42ecab32a93fc3141ff348b564bed1b04025cafaaa2df842ad0761d325e6715fff81aac7531b525ce486bdf", &(0x7f00000002c0)="82a9fd872e5e64eb5f81e974f7ff1b1c19bf507403e0e71bd19ce9fa58525416ada20b6c6be353c7c9dd6da7", 0xaa, 0x2c})
r2 = openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x8040, 0x0)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000000)={0x5, 0x40, 0x3f, 0x2, 0x7})
sysfs$2(0x2, 0xd2, &(0x7f0000000140)=""/83)
close(r2)
pipe2(&(0x7f0000000340), 0x4000)

14:05:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  547.357265] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  547.377069] Interruptibility = 00000000  ActivityState = 00000000
[  547.395453] *** Host State ***
[  547.408975] RIP = 0xffffffff81173b5f  RSP = 0xffff88805a057998
[  547.422790] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  547.429540] FSBase=00007f3cbef88700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  547.441126] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  547.448042] CR0=0000000080050033 CR3=000000008a3d9000 CR4=00000000001426f0
[  547.464656] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  547.474206] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  547.484171] *** Control State ***
[  547.488090] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  547.497063] EntryControls=0000d1ff ExitControls=002fefff
[  547.506379] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  547.515543] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  547.538063] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  547.547290]         reason=80000021 qualification=0000000000000000
[  547.558234] IDTVectoring: info=00000000 errcode=00000000
14:05:51 executing program 5:
r0 = syz_open_dev$sndtimer(&(0x7f0000000300)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000000)={0x1, 0x3, 0x400, 0x1, 0x400})
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000080)={0x3, 0x0, 0xfdfdffff, 0xfdfdffff})

14:05:51 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  547.568113] TSC Offset = 0xfffffed866936a5c
[  547.581108] audit: type=1804 audit(1564841151.058:986): pid=24780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.4" name="/root/syzkaller-testdir252019005/syzkaller.jbGX5K/971/memory.events" dev="sda1" ino=16863 res=1
14:05:51 executing program 0:
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x7)
r1 = syz_open_dev$sndtimer(&(0x7f0000026000)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0xffffffffffffffff, 0x3, 0x0, 0x200000, 0x9})

[  547.642631] EPT pointer = 0x0000000091cf201e
[  547.662304] Virtual processor ID = 0x0002
[  547.703768] audit: type=1800 audit(1564841151.058:987): pid=24780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="memory.events" dev="sda1" ino=16863 res=0
14:05:51 executing program 5:
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x2a, 0x800)
write$binfmt_aout(r0, &(0x7f00000007c0)={{0x10f, 0xfffffffffffffc00, 0x8, 0x15a, 0x2e5, 0x5, 0x31e, 0x2}, "76b41e0aa104f111e8772b25ada1eb6cafed10000e2c62a4a86c45f7fd31620f7bb942b3985ed4fa4f5581f0c6aa2f11610d6744c8d5e9945878bbd3c92a51640a4e94ffff36b0ae09cde0e66a654ced713d873a32401b26239610609114ddfb565e14e5fec1b525073f00", [[], [], []]}, 0x38b)
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000b80)=ANY=[@ANYBLOB="0000000000000000c6cd9a5cc9b3489d2fa4563564dcaeb693cba5db437a55d58567438eac6fe690a3408cd3"], 0x8)
ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000780)={0x1})
sendmmsg$sock(r0, &(0x7f0000000680)=[{{&(0x7f0000000080)=@nfc={0x27, 0x1, 0x1, 0x3}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000100)="53557c2358d1cc4b3be0c4d5815a41dbed1cfcebddf89cd2bf02a1b52bc34f1a541543c119812651fc0705d8e695e77dcb4c26627b80633a33f1a0108632bfbae5fd6058aa98c002833bc20082af0b5df2cb27d653c4d568c40e4e89cbb9de1fce59a1c9068668598b360f26309123b596ab8c0396cb50edd0ffb8ee5b4f50e6d38d19895ad03dd43589", 0x8a}, {&(0x7f00000001c0)="2955b40fece510f5dd6e5ee4876682c651d6fd31d48bff6380c63aace684680b16d6f5a959411774b3b669e3964a0e1c5293b55b9e6f6f5015e272d860eec4d3234fe575c2b981d1fb2a509638a9d135dec330ed257d63032352fa5e2ce3d8c5062cedf0bfde47ca2db046f5b346182bb03fabc9c5591172fece9d3a2b12fc9b9f0027343c5ba30ecc2d904a8147edd95eade753dd811cf2ff2c9b48a643553ea420d18c", 0xa4}, {&(0x7f0000000280)="8cc465b440f46179e8a5053c4814028a37aa4b1665c7edd1", 0x18}, {&(0x7f00000002c0)="4b1130ea7b5dacf570ac251a472b5225289051333cd64cde81def6c473571425bdce02852373030d97b7ef226ea819051ab5b2c7a5c3e73f53ceb81a8a8b444aa93828a3c72c663ca8b88951320c12d037fcd2e7082f6c9d9603ecbb7d2dc577be69674da164", 0x66}], 0x4, &(0x7f0000000380)=[@txtime={{0x18, 0x1, 0x3d, 0x9}}], 0x18}}, {{&(0x7f00000003c0)=@ax25={{0x3, @null, 0x6}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000440)="6e6be66d46a7938bc6c125daac14c65a9b3beff2306ad6778a1d0be384251219fae3af4215", 0x25}], 0x1}}, {{&(0x7f00000004c0)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'aegis256-aesni\x00'}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000540)="4790e009d511a162c4b61005dd578ceaf1f4f7f32e2c0b0fdbb05dad44d3a331a6b3b974655805683283597ed1eaa9ac090da99ec72ddcb63dc66d28565becc661a9cb615f5490786de04fd5d5fc30c605a74410baa18d53424d29f8315071fb9ba16d2e13448d3c1135721e9e847fabef37a62e79d312c49fa599540a9ebdc808049097d167db154326262273446fc9a0bc4aff2fa698804e60ed68bfe37a8ad3e1176fc30323a93bcc05d561a5527586370be445170b315327cc24be9424228bd528c5a20edfa45c4f58a02d7619b547895d62cf0b2fdbbb894b92c0a5065412943b215593", 0xe6}], 0x1}}], 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x6, 0x4, 0x4ba, 0x6, 0x200000000004, 0xffffffffffffffff, 0xfffffffffffffffb, [], 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0xfffffffffffffcfe)

14:05:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:51 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x12710, 0x2, 0x1, 0x1000, &(0x7f0000ff5000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x8, 0x42000)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_PRI(r3, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x24010}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x30, r4, 0xf, 0x70bd2c, 0x25dfdbfd, {{}, 0x0, 0x4108, 0x0, {0x14, 0x18, {0x5, @bearer=@udp='udp:syz1\x00'}}}, ["", "", ""]}, 0x30}}, 0x40000)
ioctl$KVM_DEASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x4040ae72, &(0x7f0000000040)={0x0, 0x0, 0x80000000, 0x0, 0x1ff})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000))
setresgid(0x0, 0xee00, 0x0)
setgroups(0x0, 0x0)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000480)='nbd\x00')
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x74, r5, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x20}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x2}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x45}, @NBD_ATTR_SOCKETS={0x34, 0x7, [{0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x48800}, 0x810)
setresuid(0x0, 0xfffe, 0xffffffffffffffff)
shmget$private(0x0, 0x2000, 0x3fffe, &(0x7f0000ffe000/0x2000)=nil)

[  547.818431] audit: type=1804 audit(1564841151.268:988): pid=24772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.4" name="/root/syzkaller-testdir252019005/syzkaller.jbGX5K/971/memory.events" dev="sda1" ino=16863 res=1
14:05:51 executing program 0:
r0 = syz_open_dev$media(&(0x7f0000000340)='/dev/media#\x00', 0x5, 0x4000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xc0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=0x6, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x0, 0x2}, 0x0, 0x0, &(0x7f0000000400)={0x2, 0x10, 0xc8b, 0x409d}, &(0x7f0000000440)=0x34, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=0x3}}, 0x10)
r1 = syz_open_dev$vbi(&(0x7f0000000200)='/dev/vbi#\x00', 0x3, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x0, 0x4d, 0xeb, &(0x7f0000000080)="b9adeea456652edb75d177e9de84691687cfcfd463fc3f51f5b4686a480fd4d76e89da89eecb0efc68ec4d584f972ebe5f6ed54228be0971994a0e068bba99b731febb683c7693f96211f7a1d8", &(0x7f0000000100)=""/235, 0x8}, 0x28)
ioctl$VIDIOC_LOG_STATUS(r1, 0x5646, 0x0)
ioctl$VIDIOC_QUERY_DV_TIMINGS(r1, 0x80845663, &(0x7f0000000240)={0x0, @reserved})
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000040)='trusted.overlay.opaque\x00', &(0x7f0000000300)='y\x00', 0x2, 0x3)

14:05:51 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:51 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000100)="0f01b60100360f23a40f551a8d12660f005a0026d8f066b9100a00000f323e0f01c966b8ef0000000f23c80f21f86635080090000f23f8baf80c66b8e36fab8966efbafc0cb00eee", 0x48}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x0)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000300)={[0x0, 0x0, 0x2351fc50, 0x0, 0x36, 0x0, 0x106], 0x1f000})
ioctl$KVM_RUN(r0, 0xae80, 0x0)

14:05:51 executing program 2:
r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x5, 0x10000)
clock_gettime(0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r0, 0x28, 0x6, &(0x7f0000000080)={r1, r2/1000+30000}, 0x10)
pselect6(0x40, &(0x7f00000000c0)={0x703d, 0x3, 0x2, 0x1, 0x10000, 0x0, 0x3, 0x6fe}, &(0x7f0000000100)={0x400, 0x1, 0x9645, 0x6, 0x7, 0x3, 0x1}, &(0x7f0000000140)={0x800, 0x3, 0x3b7, 0x80000000, 0xffff, 0x8001, 0x7f42, 0x1000}, &(0x7f0000000180)={0x77359400}, &(0x7f0000000200)={&(0x7f00000001c0)={0x100000001}, 0x8})
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
r3 = socket(0x2000000000000022, 0x2, 0x10000000000002)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, 0x0, 0x0)

[  547.866714] audit: type=1800 audit(1564841151.268:989): pid=24772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="memory.events" dev="sda1" ino=16863 res=0
[  547.903142] hugetlbfs: syz-executor.4 (24811): Using mlock ulimits for SHM_HUGETLB is deprecated
14:05:51 executing program 5:
timerfd_create(0x6, 0x80000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x5aa78d33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r0, 0x0, 0x0, 0x10fffe)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='cdg\x00', 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000100))
r1 = dup2(r0, 0xffffffffffffffff)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)={0x1, 0xade}, 0x8)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4)

14:05:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  547.964870] vivid-001: =================  START STATUS  =================
[  547.980216] *** Guest State ***
[  548.000125] net_ratelimit: 18 callbacks suppressed
[  548.000130] protocol 88fb is buggy, dev hsr_slave_0
[  548.010203] protocol 88fb is buggy, dev hsr_slave_1
14:05:51 executing program 4:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000500))
r1 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0x1, 0x181800)
flistxattr(r0, 0x0, 0x107)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
shmget(0x3, 0x3000, 0x0, &(0x7f0000572000/0x3000)=nil)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
ioctl$KIOCSOUND(r1, 0x4b2f, 0x614)
futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, 0x0, &(0x7f0000048000), 0x0)
setsockopt$bt_hci_HCI_FILTER(r1, 0x0, 0x2, &(0x7f0000000240)={0x1, 0x100, 0xfc5, 0xffffffff}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[&\xe5\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ}\xb7\xf3\xfe\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4', 0x2761, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'team0\x00', {0x2, 0x4e20, @empty}})
write$cgroup_pid(r2, &(0x7f0000000080), 0xfffffe38)
init_module(&(0x7f00000000c0)='+&\x00', 0x3, &(0x7f0000000300)='/dev/usbmon#\x00')
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000000)=<r3=>0x0)
perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x8, 0x3, 0x4, 0x8, 0x0, 0xc557, 0x1, 0x0, 0x4, 0x6, 0x7, 0x8, 0x2, 0x4, 0x81, 0x5, 0x80, 0x3, 0x6, 0x1000, 0x2, 0x3, 0x1d, 0xf9, 0xc2, 0x800, 0x3f, 0xfffffffffffffff9, 0x8, 0xfffffffffffffffe, 0x6, 0x6, 0x3ff, 0x200, 0xffffffffffffff35, 0x6, 0x0, 0x3f, 0x0, @perf_config_ext={0xa7c}, 0x0, 0x200000, 0xa6a5, 0x7, 0x7, 0x2bf6, 0x2}, r3, 0x1, r1, 0x2)
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_AEAD_AUTHSIZE(0xffffffffffffffff, 0x117, 0x5, 0x0, 0xff)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x660c, 0xffffffffffffffff)
write$P9_RSTAT(r2, 0x0, 0x0)
mmap(&(0x7f00001a2000/0x2000)=nil, 0x2000, 0x0, 0x80000000002170, r4, 0x0)
r5 = syz_open_procfs(0x0, 0x0)
mmap(&(0x7f000012a000/0x4000)=nil, 0x4000, 0x1000004, 0x10010, r2, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
write$FUSE_GETXATTR(r6, &(0x7f0000000180)={0x18}, 0x18)
fallocate(r6, 0x0, 0x0, 0x110001)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000000))
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002091, r4, 0x0)
faccessat(r2, &(0x7f0000000200)='./file0\x00', 0x40, 0x200)
ioctl$UI_SET_FFBIT(r5, 0x4004556b, 0x3b)

[  548.015328] protocol 88fb is buggy, dev hsr_slave_0
[  548.020451] protocol 88fb is buggy, dev hsr_slave_1
[  548.025602] protocol 88fb is buggy, dev hsr_slave_0
[  548.030716] protocol 88fb is buggy, dev hsr_slave_1
[  548.041364] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  548.050556] vivid-001: ==================  END STATUS  ==================
[  548.064049] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  548.074897] vivid-001: =================  START STATUS  =================
[  548.076812] CR3 = 0x0000000000000000
[  548.085562] vivid-001: ==================  END STATUS  ==================
[  548.091670] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:05:51 executing program 2:
socket$inet_udplite(0x2, 0x2, 0x88)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x8)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000280)={{0x0, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x0, 0x7], {0x77359400}})
socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000b82000))
epoll_wait(0xffffffffffffffff, &(0x7f0000000040)=[{}], 0x1, 0x53cf)
recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdeb}}], 0x3fffffffffffd33, 0x0, 0x0)
syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2)
getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, 0x0)
mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_G_INPUT(0xffffffffffffffff, 0x80045626, &(0x7f0000000540))
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f00001da000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

14:05:51 executing program 5:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0xa00, 0x0)
ioctl$KDENABIO(r0, 0x4b36)
clone(0x2902001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
fsync(r0)
rt_sigtimedwait(&(0x7f0000000340), 0x0, 0x0, 0x8)
r1 = getpid()
rt_tgsigqueueinfo(r1, r1, 0x1b, &(0x7f0000000100))
ptrace(0x10, r1)

[  548.099393] audit: type=1800 audit(1564841151.578:990): pid=24830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed" comm="syz-executor.5" name=7374617409C0D2FEBCF9DF2DEAC8C177FF171248E91193513049F831550D6F7DE66CF637BDBF1311920C8A26EDA4DCC3783F9DB5116B34D31B0512A5608AAFF01E7952340CD6FD dev="sda1" ino=16853 res=0
[  548.189691] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  548.203619] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  548.211359] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  548.217684] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  548.229271] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.244231] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.252729] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.263865] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.272098] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.280551] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.288575] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  548.296860] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.305110] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  548.314788] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.324209] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  548.334856] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  548.343348] Interruptibility = 00000000  ActivityState = 00000000
[  548.349659] *** Host State ***
[  548.357054] RIP = 0xffffffff81173b5f  RSP = 0xffff88804bbd7998
[  548.363968] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  548.373007] FSBase=00007f3cbef88700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  548.381745] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  548.387689] CR0=0000000080050033 CR3=0000000092cd5000 CR4=00000000001426e0
[  548.397437] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  548.405112] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  548.411481] *** Control State ***
[  548.415027] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  548.421797] EntryControls=0000d1ff ExitControls=002fefff
[  548.427304] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  548.434352] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  548.441136] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
14:05:51 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x45}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x2b7, &(0x7f000000cf3d)=""/195}, 0x48)
r0 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x3ff, 0x100)
ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000140)="a0701f65ab8896eb74eee2b362a2")
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz1\x00', 0x1ff)
ioctl$sock_proto_private(r0, 0x81, &(0x7f00000001c0)="0c207410950edac203e8469e442caaea48ae35b89762e681b3655abda88e6726c8f98bfa3f79c83146911e4c230827194ae92a4bc0644e1e395621936d4abd3e72c8ea96b22f22a9123c97359e7cf8fb464c6deda3cce9624b38e649e365373ab0a805f20dbd9d9f13278d421167f00fa63a4db5cb892a5461d6ba4f6cc92dffe1d7e911fde9e0330c9f5194995b7bb2554edef80f93de990b9d2d5725f9abd464454d093c9122692de86d3c45b4ca82af845d0a95249096dc3996302005f466e8a0a80942")

14:05:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  548.447759]         reason=80000021 qualification=0000000000000000
[  548.454149] IDTVectoring: info=00000000 errcode=00000000
[  548.459634] TSC Offset = 0xfffffed7f8a17eef
[  548.464059] EPT pointer = 0x00000000587f201e
[  548.468757] Virtual processor ID = 0x0002
[  548.480136] protocol 88fb is buggy, dev hsr_slave_0
[  548.485246] protocol 88fb is buggy, dev hsr_slave_1
14:05:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  548.633706] *** Guest State ***
[  548.637022] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  548.637035] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  548.637052] CR3 = 0x0000000000000000
[  548.659636] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  548.666220] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
14:05:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  548.684135] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  548.691271] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  548.705061] *** Guest State ***
[  548.708433] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  548.717682] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  548.727427] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  548.740260] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.748255] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.760190] CR3 = 0x0000000000000000
[  548.764298] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  548.772491] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  548.779090] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  548.785385] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.793470] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.801851] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  548.807989] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  548.815269] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.823497] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.831749] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.839732] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  548.847902] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.856184] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.864539] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:52 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000180)='/dev/input/event#\x00', 0x20, 0x0)
r1 = semget(0x2, 0x2, 0x10)
semctl$GETNCNT(r1, 0x5, 0xe, &(0x7f0000000000)=""/251)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x40, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00000001c0)={"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"})
ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000000740)=[0x4, 0x7])
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={<r3=>0x0, 0x9}, &(0x7f00000005c0)=0x8)
setsockopt$TIPC_MCAST_BROADCAST(r2, 0x10f, 0x85)
openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000700)='/selinux/context\x00', 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000600)={r3, @in6={{0xa, 0x4e21, 0x400, @dev={0xfe, 0x80, [], 0x11}, 0x3ff}}, 0x3bb, 0x81, 0x100, 0x5, 0x58}, &(0x7f00000006c0)=0x98)

[  548.881269] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.891869] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  548.903869] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.915613] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.924036] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  548.938308] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  548.947121] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  548.959557] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  548.978941] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:52 executing program 5:
r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x204000, 0x0)
getsockopt$inet6_dccp_buf(r0, 0x21, 0xcf, &(0x7f0000000140)=""/114, &(0x7f0000000080)=0x72)
r1 = socket$inet(0x2, 0x3ffffffffffffffe, 0x0)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000000280)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f00000000c0)="f903", 0x2)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={r1})
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth0_to_bond\x00', 0x113)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffffb5, 0xc0, 0x0, 0xfeffffff00000000)

14:05:52 executing program 4:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu\x00', 0x200002, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x40, 0x0)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x200, 0x0)
ioctl$VIDIOC_ENUMSTD(r1, 0xc0485619, &(0x7f0000000080)={0xac9, 0x3210e0, "f2893381ba74dbc72ea00f90695d861c505d500c7923d210", {0x80000001, 0x9}, 0xffff})
r2 = openat$cgroup_int(r0, &(0x7f00000001c0)='cpuset.mems\x00', 0x2, 0x0)
ioctl$VIDIOC_DBG_G_REGISTER(r1, 0xc0385650, &(0x7f0000000100)={{0x3, @name="1f8f38c306a26dec300f12eb090ea54222bd3d2e64329d5a99b84805734155da"}, 0x8, 0x5, 0x20})
write$cgroup_subtree(r2, &(0x7f0000000040)=ANY=[@ANYBLOB='/0'], 0x2)

14:05:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  548.988572] Interruptibility = 00000000  ActivityState = 00000000
[  549.009644] *** Host State ***
[  549.017942] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  549.029587] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a8857998
14:05:52 executing program 5:
r0 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x2, 0x0)
read(r0, 0x0, 0x72)
r1 = dup2(r0, r0)
ioctl$SCSI_IOCTL_STOP_UNIT(r1, 0x6)
ioctl$DRM_IOCTL_AUTH_MAGIC(r1, 0x40046411, &(0x7f0000000040)=0x62ee)

[  549.039718] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  549.047055] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.065775] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  549.076358] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  549.099769] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  549.107184] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  549.120159] protocol 88fb is buggy, dev hsr_slave_0
[  549.125273] protocol 88fb is buggy, dev hsr_slave_1
[  549.138760] CR0=0000000080050033 CR3=0000000053b3e000 CR4=00000000001426e0
[  549.153271] Interruptibility = 00000000  ActivityState = 00000000
[  549.177449] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  549.189033] *** Host State ***
[  549.203365] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a1497998
[  549.212950] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  549.227749] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  549.238800] FSBase=00007f24daae3700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  549.248858] *** Control State ***
[  549.255755] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  549.264314] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  549.273963] EntryControls=0000d1ff ExitControls=002fefff
[  549.279646] CR0=0000000080050033 CR3=000000004985b000 CR4=00000000001426e0
[  549.289183] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  549.299541] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  549.308279] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  549.316526] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  549.318182] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  549.333142] *** Control State ***
[  549.334348]         reason=80000021 qualification=0000000000000000
[  549.341408] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  549.343321] IDTVectoring: info=00000000 errcode=00000000
[  549.352235] EntryControls=0000d1ff ExitControls=002fefff
[  549.362834] TSC Offset = 0xfffffed79c0ff018
[  549.367294] EPT pointer = 0x000000009312d01e
[  549.370639] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  549.376484] Virtual processor ID = 0x0002
[  549.380235] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
14:05:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(0xffffffffffffffff, 0xc0845657, 0x0)
ioctl$TIOCSRS485(0xffffffffffffffff, 0x542f, &(0x7f0000000100)={0x0, 0x0, 0x80000001})
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f0000000180)="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", 0x13a, 0x0, 0x0, 0x0)
dup3(r0, r1, 0x0)

14:05:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:52 executing program 2:
r0 = open(&(0x7f0000000280)='./bus\x00', 0x141042, 0x0)
ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, 0x0)
write$UHID_INPUT(r0, &(0x7f0000001440)={0x8, "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", 0x1000}, 0xfffffc41)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fadvise64(r0, 0x0, 0x0, 0x4)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfc1000)=nil, 0xfc1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000000000)={@loopback, @broadcast}, 0x8)

[  549.408327] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  549.420371]         reason=80000021 qualification=0000000000000000
[  549.426742] IDTVectoring: info=00000000 errcode=00000000
[  549.453368] TSC Offset = 0xfffffed7949fb526
[  549.458325] EPT pointer = 0x000000008ab8f01e
[  549.470682] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  549.474673] Virtual processor ID = 0x0003
14:05:53 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="b400ff00000082485278800000ad000000000000009500000159cc9af491bc59098875a50f1db41fa97dfa30c02ffa321984366c1c1f97c416388eeaddd3b0578cac44e75ccc6944871f4a4860f7e2c440a56c44757d951a9f6aa2f282b0a02ea10ab122d669dcf840e3904f001665824962591ccdb354725b943cbda713df0f5e7b46262abf203a2de1ed8217e87fc0f3a7ee91455453f8a83c831a6107a023c0775e9a4c79eededa58a9d801dc0e99f3783312ee2f7a83ce119c10667845e242fb83b4aa0418699fa688a8378881b8edebe7d72710694fa4d1bff2ba0ee2f18bf790e33528e42c9f0d9907a8a7da2f386b0278bc9dd97720b48d4b54b4185ab1bd3c6dc1cd88dc94ae7968cab3723e30f6bb42e69e0be9e2b0a7feb58903c3551180d77caeacb8da73d4d8e91a7d5391aaa7d54cffe7f98e7de994f2b531f9a0be6dd69c6d2e5cdb9d1e29b7247360c2"], &(0x7f0000000080)='GPL\x04\x9c5\x14\xbfw-\xa0z\xe8.vY\n6\xf6I>\xc1\xab\x91\xb3\x97\xe4*\xbf\x1e\xa6\xcd\x8c\xd7t\'\xfc\x9a\x9e+qe\xf5+A\a\xbf\bP\xd8\x99\xdcR\xd0\x13\x17]\xdb\x1b/F <*\x05\xb7\"\xe3>Uo\xb2\xe3\xf3\x9a<\xde\x1f\xcaSd\x037\xec\x95aF\xbd\xbf\xcb\x11Pp\x19V1\xde]!\xa5\xea\x9ec\x8c+\xdbx\xa5\x01\xcaKn\xa3\x13\xd8%h\xf98,,?o\xab\xa6\xb4\xeeTy;N\xd2m\xae>R\"P)\xbb*\xc0\x00\x7fwuL?#\xce\xda\x98\t\xb9\xa9hJ\x94\n\xbc\xaa\x8c\xfc\xc7\x13>\xc4\"\xe9\xc88\x881\x8dA\xe9\xa4\x93\xf0\x19_\xe2Y\x96Q\xb8\x95\x04\xf5\xdb\xa1F%\xce#f\xf3=\x95\xdb\xa9/\x86ry\xca\xbfJ\xce\xdd\xc8Z\x8a\xf7\xa0\xfah\xd7g\xceQ6\xb9\xd0\xd1\x96lI\x9c\xb6\xbf4\xc2\x98\x86f\x97\x00'/248}, 0x48)
r0 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x1fffc00000, 0x2000)
r1 = msgget$private(0x0, 0x0)
msgctl$IPC_STAT(r1, 0x2, &(0x7f0000000500)=""/203)
ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f00000003c0)={0x0, 0x1f3a00, 0x40, [], &(0x7f0000000380)=0x5})
r2 = getuid()
mount$overlay(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='overlay\x00', 0x1000000, &(0x7f0000000700)=ANY=[@ANYBLOB='xino=off,index=on,subj_type=,fowner>', @ANYRESDEC=r2, @ANYBLOB="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"])
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000600)=0xfffffffffffffff9, 0x4)

[  549.536779] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  549.563333] *** Guest State ***
14:05:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:53 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bdfe47bf070")
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000080)="441f071100000000000000000001000000f6bd51b97ecb460000000000", 0x1d)
getsockopt$inet_opts(r1, 0x0, 0x4, 0x0, &(0x7f0000000200)=0x11)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x410000, 0x0)

[  549.584440] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  549.617295] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:05:53 executing program 0:
r0 = syz_open_dev$sndseq(&(0x7f0000000300)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {}, 0xfffffffffffffffe})
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x80000, 0x0)
ioctl$TCSETXF(r1, 0x5434, &(0x7f00000001c0)={0x2, 0xee, [0x1ff, 0x5, 0xf8f, 0x5, 0x2], 0x44c})
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240)='TIPCv2\x00')
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)={0x12c, r2, 0x620, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0xf8, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @rand_addr=0x80000000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x1, @local, 0x9}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'bcsf0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @multicast2}}, {0x14, 0x2, @in={0x2, 0x4e23, @multicast2}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0xa, @empty, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @local, 0x7}}}}]}, @TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6a3be85f}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x810}, 0x4000000)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x1)
ioctl$KDSKBSENT(r3, 0x4b49, &(0x7f0000000080)="1bfd1beadf381836875a0b193fdc10505e8900721afa3220273b095930c46d5aec799d3494cdb48080b70c68ef8c6af67483463a91f8124a0364b7475b0aaa933b3bb35da663f7f097a4130d3ef91752154be892b2fea3442d4133d4e97baf99e9c1d21f8a4b26828408cc8aa7e7e199483ee567b50ddb243e506e880bf2eb780a3d7c52dc41887ac0538fac3129011fdd3da8bf310dc0db48dc7c8fdebc042df165c2f1a2a7346f154ee226ca4c95cedae9bdf2ae606eedcf3b76b876c3d6790bb5a7f4a1d2ec9e")
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x400, 0x105001)

[  549.634578] CR3 = 0x0000000000000000
[  549.656170] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  549.667078] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  549.678683] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
14:05:53 executing program 4:
r0 = socket$inet6(0xa, 0x5, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x81, 0x5a1002)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000080)=0x7000)
getsockopt$bt_hci(r0, 0x84, 0x72, &(0x7f0000000080)=""/4096, &(0x7f00000011c0)=0x1000)

14:05:53 executing program 0:
r0 = syz_open_dev$sndseq(&(0x7f0000000300)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {}, 0xfffffffffffffffe})
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x80000, 0x0)
ioctl$TCSETXF(r1, 0x5434, &(0x7f00000001c0)={0x2, 0xee, [0x1ff, 0x5, 0xf8f, 0x5, 0x2], 0x44c})
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240)='TIPCv2\x00')
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)={0x12c, r2, 0x620, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0xf8, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @rand_addr=0x80000000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x1, @local, 0x9}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'bcsf0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @multicast2}}, {0x14, 0x2, @in={0x2, 0x4e23, @multicast2}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0xa, @empty, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @local, 0x7}}}}]}, @TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6a3be85f}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x810}, 0x4000000)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x1)
ioctl$KDSKBSENT(r3, 0x4b49, &(0x7f0000000080)="1bfd1beadf381836875a0b193fdc10505e8900721afa3220273b095930c46d5aec799d3494cdb48080b70c68ef8c6af67483463a91f8124a0364b7475b0aaa933b3bb35da663f7f097a4130d3ef91752154be892b2fea3442d4133d4e97baf99e9c1d21f8a4b26828408cc8aa7e7e199483ee567b50ddb243e506e880bf2eb780a3d7c52dc41887ac0538fac3129011fdd3da8bf310dc0db48dc7c8fdebc042df165c2f1a2a7346f154ee226ca4c95cedae9bdf2ae606eedcf3b76b876c3d6790bb5a7f4a1d2ec9e")
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x400, 0x105001)

[  549.684977] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  549.692763] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  549.699634] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.718610] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.729357] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  549.741857] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.763615] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.795826] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.817191] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  549.828830] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.847707] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  549.868633] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  549.878402] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  549.888171] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  549.910511] Interruptibility = 00000000  ActivityState = 00000000
[  549.919037] *** Host State ***
[  549.922780] RIP = 0xffffffff81173b5f  RSP = 0xffff888053adf998
[  549.928769] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  549.936388] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  549.944309] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  549.950608] CR0=0000000080050033 CR3=0000000099f24000 CR4=00000000001426e0
14:05:53 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(0xffffffffffffffff, 0x0, 0x0)
connect$netrom(r0, &(0x7f0000000000)={{0x6, @rose}, [@rose, @rose, @default, @netrom, @bcast, @rose, @rose, @null]}, 0x48)
listen(r0, 0x81)
r1 = syz_open_dev$vbi(&(0x7f0000000200)='/dev/vbi#\x00', 0x3, 0x2)
ioctl$KVM_SET_CLOCK(0xffffffffffffffff, 0x4030ae7b, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000380)={0x1, r1})
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x400000000400fffe, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.upper\x00', &(0x7f0000000200)={0x0, 0xfb, 0x58, 0x2, 0xcf02, "dabf78aa827a88c04e9a21bbae208c29", "32805271a261a1fdb36bb7af852413718c781d61c5702f7b7c8daeb35d7eed8ad3d85c4d369ba0764184776d10511fe1758e6433386b107f47a6622e6db5a390452bce"}, 0x58, 0x2)
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x9aa, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffbffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0)
ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0)
unshare(0x40000000)
ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000440)={0x0, @pix_mp={0x8, 0x4, 0x7e317f5f, 0x8, 0x0, [{0x7, 0x3}, {0x8, 0x3}, {0x6, 0x101}, {0x3, 0x100000000}, {0x5, 0x2cf99726}, {0xffffffffffffffff, 0x1fe}, {0x10001}, {0x0, 0x9263}], 0x1, 0x10001, 0xf, 0x3, 0x5}})
openat$cgroup(r2, &(0x7f0000000100)='syz0\x00', 0x200002, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r2, &(0x7f0000000040)={0x2, 0x3}, 0x2)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x12c, 0xfa00, {0x0, 0x0, 0x0, 0x6}}, 0x20)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000080)=0x5)
flock(r3, 0xc)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r2, 0xc008551c, &(0x7f0000000400)=ANY=[@ANYBLOB="ff0300963f8adc4c3648a9c54229c93100000000000000000000000000007bc49c01bc573e19684697f85188b1bcc26308f97e2c68dcdb0112f089c85f98e811"])
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000140)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x87, @mcast2}, {0xa, 0x4e23, 0x1, @empty}, 0xffffffffffffffff, 0xa9bf}}, 0x48)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000240)={{{@in6, @in=@broadcast}}, {{@in6=@remote}, 0x0, @in6=@local}}, &(0x7f0000000340)=0xe8)
openat$vfio(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vfio/vfio\x00', 0x2000, 0x0)
accept(r0, 0x0, 0x0)

[  549.957642] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  549.964786] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  549.971017] *** Control State ***
[  549.980511] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  549.987191] EntryControls=0000d1ff ExitControls=002fefff
[  549.996761] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  550.007622] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  550.022408] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  550.029014]         reason=80000021 qualification=0000000000000000
[  550.035836] IDTVectoring: info=00000000 errcode=00000000
[  550.041374] TSC Offset = 0xfffffed71f2464a3
[  550.045698] EPT pointer = 0x000000008dcaa01e
[  550.050608] Virtual processor ID = 0x0002
14:05:53 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000140)={@rand_addr="5bcc691cc3a499606c6c8a378edd1a8a", 0x0, 0x0, 0xff}, 0x20)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
r1 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x90)
mount$bpf(0x20000000, &(0x7f00000001c0)='./file0\x00', 0x0, 0x2001001, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x100032, 0x0)
ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f00000003c0)=@generic={0x3, 0x1, 0x100000000})
fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f00000002c0))
accept(r1, &(0x7f0000000400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000300)=0x80)
ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000340)=0x9)
ioctl$DRM_IOCTL_SET_UNIQUE(r1, 0x40106410, &(0x7f0000000280)={0x1b, &(0x7f0000000240)="494acf3788dec784dc0013bb9d897fac7730a7e401019c82902061"})
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCGIFMTU(r2, 0x8921, &(0x7f0000000380))
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')

14:05:53 executing program 0:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000300)=""/246)
ioctl$EVIOCGREP(r0, 0x4004743c, 0x0)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x20100, 0x1)
ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)

14:05:53 executing program 4:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x822102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
capget(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)={0x4, 0x9, 0x9ee, 0xfa0, 0x7fff, 0x3})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f00000019c0)={0x48, 0x0, 0x0, 0x0, 0x0, "", [@nested={0x34, 0x0, [@generic="2557750361337a6b244bc43aad71be506c3aec2653ff9bfe5db955b598cfe308d0405750e1344b23d22f08e8fe"]}, @typed={0x4}]}, 0x48}], 0x4}, 0x0)
r1 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x3a)
r2 = socket(0x3, 0x7, 0xffffffffffff0001)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000080)=0x100, 0x4)
ptrace$cont(0x18, r1, 0x0, 0x0)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)

14:05:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  550.312176] IPVS: ftp: loaded support on port[0] = 21
[  550.380842] PPPIOCDETACH file->f_count=2
[  550.389785] *** Guest State ***
[  550.406842] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:05:53 executing program 4:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x10202, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008108040f80ecdb4cb9c00a480e180f000000e8bd6efb120009000e000100400000ff050005001204", 0xffffffffffffffe7}], 0x1}, 0x0)

[  550.434996] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  550.454196] CR3 = 0x0000000000000000
[  550.465538] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:05:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:54 executing program 4:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2132fad8c46fb3a068031c1461d678993fe415e0efc536560000000000000010000083000000927a0478300d8c1ce9c5dcd97e6f3f0000f2e8"], 0x1}}, 0x0)
r0 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r0)
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x38)
ptrace$cont(0x18, r1, 0x0, 0x0)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
r2 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x7, 0x40000)
ioctl$VIDIOC_ENUMAUDOUT(r2, 0xc0345642, &(0x7f0000000080)={0x3, "dc61b6ad4ec5ccf6a9b4a633dee2deeb90530a88453ae5e4c107377f51d90398", 0x0, 0x1})
ptrace$cont(0x9, r1, 0x0, 0x0)

[  550.484780] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  550.514019] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
14:05:54 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a})
r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000000c0)={<r3=>0x0, 0x5}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f00000001c0)={0x0, 0x2, 0x200, 0x6, 0x5, 0xffffffffffff72e7, 0x6, 0x7, r3}, 0x20)
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000240)={0x1, &(0x7f0000000180)=[{0x6}]})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000000)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f17})

[  550.532543] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  550.573938] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  550.593219] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  550.628326] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  550.649222] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  550.670732] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  550.699875] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  550.726651] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  550.758105] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  550.778084] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  550.801549] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  550.818723] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  550.835909] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  550.853160] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  550.871797] Interruptibility = 00000000  ActivityState = 00000000
[  550.888976] *** Host State ***
[  550.898356] RIP = 0xffffffff81173b5f  RSP = 0xffff88805740f998
[  550.916448] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  550.934619] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  550.951699] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  550.964466] CR0=0000000080050033 CR3=000000005c17a000 CR4=00000000001426f0
[  550.990559] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  551.013083] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  551.029335] *** Control State ***
14:05:54 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(0xffffffffffffffff, 0x0, 0x0)
connect$netrom(r0, &(0x7f0000000000)={{0x6, @rose}, [@rose, @rose, @default, @netrom, @bcast, @rose, @rose, @null]}, 0x48)
listen(r0, 0x81)
r1 = syz_open_dev$vbi(&(0x7f0000000200)='/dev/vbi#\x00', 0x3, 0x2)
ioctl$KVM_SET_CLOCK(0xffffffffffffffff, 0x4030ae7b, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000380)={0x1, r1})
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x400000000400fffe, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.upper\x00', &(0x7f0000000200)={0x0, 0xfb, 0x58, 0x2, 0xcf02, "dabf78aa827a88c04e9a21bbae208c29", "32805271a261a1fdb36bb7af852413718c781d61c5702f7b7c8daeb35d7eed8ad3d85c4d369ba0764184776d10511fe1758e6433386b107f47a6622e6db5a390452bce"}, 0x58, 0x2)
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x9aa, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffbffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0)
ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0)
unshare(0x40000000)
ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000440)={0x0, @pix_mp={0x8, 0x4, 0x7e317f5f, 0x8, 0x0, [{0x7, 0x3}, {0x8, 0x3}, {0x6, 0x101}, {0x3, 0x100000000}, {0x5, 0x2cf99726}, {0xffffffffffffffff, 0x1fe}, {0x10001}, {0x0, 0x9263}], 0x1, 0x10001, 0xf, 0x3, 0x5}})
openat$cgroup(r2, &(0x7f0000000100)='syz0\x00', 0x200002, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r2, &(0x7f0000000040)={0x2, 0x3}, 0x2)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x12c, 0xfa00, {0x0, 0x0, 0x0, 0x6}}, 0x20)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000080)=0x5)
flock(r3, 0xc)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r2, 0xc008551c, &(0x7f0000000400)=ANY=[@ANYBLOB="ff0300963f8adc4c3648a9c54229c93100000000000000000000000000007bc49c01bc573e19684697f85188b1bcc26308f97e2c68dcdb0112f089c85f98e811"])
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000140)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x87, @mcast2}, {0xa, 0x4e23, 0x1, @empty}, 0xffffffffffffffff, 0xa9bf}}, 0x48)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000240)={{{@in6, @in=@broadcast}}, {{@in6=@remote}, 0x0, @in6=@local}}, &(0x7f0000000340)=0xe8)
openat$vfio(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vfio/vfio\x00', 0x2000, 0x0)
accept(r0, 0x0, 0x0)

[  551.043960] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  551.059281] EntryControls=0000d1ff ExitControls=002fefff
[  551.069603] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  551.079628] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  551.089806] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  551.117272]         reason=80000021 qualification=0000000000000000
[  551.135792] IDTVectoring: info=00000000 errcode=00000000
[  551.151718] TSC Offset = 0xfffffed6ac615854
[  551.156307] EPT pointer = 0x000000004a48101e
[  551.166574] Virtual processor ID = 0x0002
14:05:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:54 executing program 0:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x9, 0x400000)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ubi_ctrl\x00', 0x400, 0x0)
syz_open_dev$usbmon(&(0x7f00000001c0)='/dev/usbmon#\x00', 0x2, 0xa0400)
pipe2(&(0x7f0000000200), 0x80800)
openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/btrfs-control\x00', 0x0, 0x0)
r1 = dup3(r0, r0, 0x80000)
fcntl$getownex(r1, 0x10, &(0x7f0000000280))
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x800006)
close(r0)
bind(0xffffffffffffffff, &(0x7f0000000000)=@l2={0x1f, 0x2, {0x1, 0x2, 0x0, 0x6, 0x3f, 0xfffffffffffffffa}, 0x8b80000000000000, 0x579e2f20}, 0x80)
r2 = open(&(0x7f000000cc80)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x87ffd)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
prctl$PR_CAPBSET_READ(0x17, 0x3)
sendfile(r0, r2, 0x0, 0x800000000024)

14:05:54 executing program 2:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="25bca274769e620aa73452ffa7a0612687463915e388e63bd8aea872943aff874e2f98b579a7186270146d0e02064950a8c63cd7dcc6760253ef", 0x3a, 0x400}], 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='dioread_nolock'])
fstat(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
fstat(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
lchown(&(0x7f0000000280)='./file0\x00', r1, r0)

14:05:54 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:54 executing program 0:
r0 = socket(0x80000000001e, 0x400000, 0x800)
r1 = syz_open_dev$usbmon(&(0x7f0000000240)='/dev/usbmon#\x00', 0x9, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000480)={r1, &(0x7f00000007c0)="f6cc794476c9f8cd1a7ef93c41166e229bd579c42f5e0ea46e819f7fe0b9f693aea860a3658a0d0db11dd627065718a3875dcf63ef6b1d", 0x0}, 0x18)
r2 = gettid()
ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f0000000000)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}})
sched_setaffinity(r2, 0x3d31, &(0x7f0000000200)=0xa000000000000005)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgrp(0x0)
getrandom(&(0x7f0000000ac0)=""/187, 0xfffffffffffffe5b, 0x3)
setpriority(0x0, r3, 0x26)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(0xffffffffffffffff, 0x800442d2, &(0x7f00000000c0)={0x3, &(0x7f0000000340)=[{0x0, 0x0, 0x0, @broadcast}, {}, {0x0, 0x0, 0x0, @broadcast}]})
openat$audio(0xffffffffffffff9c, &(0x7f0000000400)='/dev/audio\x00', 0x200800, 0x0)
getpgrp(r2)
write$P9_RREAD(0xffffffffffffffff, 0x0, 0x0)
r4 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000040)={<r5=>0x0, 0x4}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000100)={r5, 0x0, 0x1, 0x100, 0x7, 0x79a}, &(0x7f0000000140)=0x14)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r4, 0x408c5333, &(0x7f0000000880)={0x3, 0x10000, 0x0, 'queue1\x00', 0x200})
clone(0x4007fc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
execve(&(0x7f0000000440)='./file0\x00', &(0x7f00000006c0)=[&(0x7f0000000580)='wlan1\x00', &(0x7f0000000600)='security.capability\x00'], &(0x7f0000000780)=[&(0x7f0000000700)='proc\x00', 0x0])

[  551.397441] *** Guest State ***
[  551.404129] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  551.419282] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  551.463166] CR3 = 0x0000000000000000
[  551.467137] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  551.515354] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  551.546241] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  551.552645] RFLAGS=0x00000002         DR7 = 0x0000000000000400
14:05:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  551.583902] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  551.605827] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.649543] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.676772] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.696677] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.713923] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.728410] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.752697] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  551.783225] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.794605] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  551.808025] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  551.829249] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  551.836733] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  551.876164] Interruptibility = 00000000  ActivityState = 00000000
[  551.886734] *** Host State ***
[  551.911282] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a5c4f998
[  551.918181] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  551.929875] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  551.938022] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  551.949530] CR0=0000000080050033 CR3=0000000058922000 CR4=00000000001426f0
[  551.957262] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  551.969035] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  551.975701] *** Control State ***
[  551.979361] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  551.992791] EntryControls=0000d1ff ExitControls=002fefff
[  551.998444] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  552.009136] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  552.017777] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  552.028033]         reason=80000021 qualification=0000000000000000
[  552.039455] IDTVectoring: info=00000000 errcode=00000000
[  552.048547] TSC Offset = 0xfffffed6250b24f0
[  552.054688] EPT pointer = 0x000000008bb6601e
[  552.059234] Virtual processor ID = 0x0002
[  553.280207] net_ratelimit: 22 callbacks suppressed
[  553.280236] protocol 88fb is buggy, dev hsr_slave_0
[  553.290255] protocol 88fb is buggy, dev hsr_slave_1
14:05:57 executing program 4:
r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0xfff, 0x200000000000044)
ioctl$FS_IOC_FSGETXATTR(r0, 0x80045510, &(0x7f00000000c0)={0x9, 0x0, 0x0, 0x0, 0x0, 0x7ff0bdbe})

14:05:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:57 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x5e20, 0x0, @empty}, 0x1c)
listen(r0, 0x4)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2100, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r3, 0x40405515, &(0x7f00000001c0)={0x9, 0x0, 0x1, 0x80000001, 'syz1\x00'})
ioctl$SG_GET_SG_TABLESIZE(r3, 0x227f, &(0x7f00000000c0))
close(r2)
recvmmsg(r1, &(0x7f0000000080), 0x18d, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040)={0xaa8c, 0x8b4, 0x7, 0x5, 0x3, 0x1ff, 0x3, 0x7f, 0xffffffffffffe2e8, 0x41523f0b, 0xd13}, 0xb)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000100)={0x0, @remote, @initdev}, &(0x7f0000000140)=0xc)

14:05:57 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:05:57 executing program 2:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x80000, 0x0)
ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000080)=0x9)
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x8000000001)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000140)=[@in6={0xa, 0x4e22, 0xbc, @mcast2, 0x8000000000000}, @in6={0xa, 0x4e21, 0x4, @dev={0xfe, 0x80, [], 0x26}, 0x8000}, @in6={0xa, 0x4e24, 0x8001, @rand_addr="848ba9b7b3c8d7be29fd49236aebc14a", 0x5}, @in6={0xa, 0x4e23, 0x6, @loopback, 0x400}, @in={0x2, 0x4e22, @loopback}, @in={0x2, 0x4e23, @remote}], 0x90)
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x3, 0x5010c0)
ioctl$FS_IOC_SETVERSION(r1, 0x40087602, 0x0)

14:05:57 executing program 4:
r0 = accept$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000480)=0x1c)
r1 = syz_open_dev$midi(&(0x7f00000004c0)='/dev/midi#\x00', 0xfd57, 0x200)
ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000500))
fcntl$getflags(r0, 0x1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000080)="11dca5055e0bcfe47bf070")
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
syslog(0x3, &(0x7f00000000c0)=""/147, 0x37a8ec531be3c41f)
r3 = open(&(0x7f0000000e00)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[], &(0x7f0000026ff8)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
r4 = dup2(r2, r3)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000340)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_PRI(r4, &(0x7f0000000400)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x480}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x30, r5, 0x2, 0x70bd26, 0x25dfdbfe, {{}, 0x0, 0x4108, 0x0, {0x14, 0x18, {0x1, @bearer=@udp='udp:syz1\x00'}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x8801}, 0x40000)
getsockopt$inet_int(r2, 0x0, 0xa, &(0x7f0000000180), &(0x7f0000000280)=0x4)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000540)={<r6=>0x0, 0xff}, &(0x7f0000000580)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r4, 0x84, 0x6c, &(0x7f00000005c0)={r6, 0x91, "1243ce5b3ea695adceec7febdea9f141a5831d3d155cbc5676e4413040d7eba363126e7c4b6da862952a35f7788edd8d02c5c1a604c3ffc93f88814da7a1fa8ab1c913cc7a142a29081efa8b91fb5b814e0298c3aab5a654fbca3ebe5294180c337953f356e564fec035d27a4944ac429e85badc8690a4f7388fc45d935c35f098d7eb5361b1f67ba2219bfa633fccd141"}, &(0x7f0000000680)=0x99)
r7 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
getpeername(r2, &(0x7f0000000000)=@can, &(0x7f0000000200)=0x80)
sendfile(r2, r7, &(0x7f00000002c0)=0x74000000, 0x5)

[  553.680109] protocol 88fb is buggy, dev hsr_slave_0
[  553.685281] protocol 88fb is buggy, dev hsr_slave_1
[  553.717650] *** Guest State ***
14:05:57 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer\x00', 0x200000, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x10000003, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x1, 0x0)
semget(0xffffffffffffffff, 0x4000000000004, 0x40)
semctl$IPC_INFO(0x0, 0x3, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x8}, 0x0, 0xfffffffffffffffe, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r3 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r3, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, 0x0, 0x3, 0x4}}, 0x2e)
r4 = open(&(0x7f0000000540)='./file0\x00', 0x181005, 0x10)
r5 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @local, 0x0, 0x0, 'wrr\x00', 0x20, 0x0, 0x67}, 0x2c)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x2)
r7 = syz_open_dev$vcsa(&(0x7f0000000340)='/dev/vcsa#\x00', 0xfffffffffffffffb, 0x8000)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f0000000380), 0x8)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f00000004c0)={0x1, 0xcc88}, 0x2)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000400)=0x8, 0x4)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000080)={0x0, 'veth0_to_bridge\x00'}, 0x18)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x6)
ioctl(r6, 0x800000000008982, &(0x7f0000000080))
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="0af51f023c123f3188a0")
socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0xffffffffffffffff)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[]}}, 0x40000)
prctl$PR_SET_SECCOMP(0x16, 0x3, &(0x7f00000002c0)={0x6, &(0x7f0000000280)=[{0x400, 0x0, 0x7a79, 0x7}, {0xac4, 0x20, 0x3, 0x1}, {0xf4, 0x0, 0xa879, 0x94}, {0x5, 0xffff, 0x2, 0x1}, {0x818, 0x7ff, 0x5, 0x3}, {0x8000, 0x0, 0x5, 0x2a}]})
socket$isdn_base(0x22, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x132, 0x40004)

[  553.749576] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:05:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  553.806146] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  553.876387] CR3 = 0x0000000000000000
[  553.897767] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  553.904452] device bridge_slave_1 left promiscuous mode
[  553.934336] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  553.950242] bridge0: port 2(bridge_slave_1) entered disabled state
[  553.979832] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
14:05:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  554.022148] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  554.046114] device bridge_slave_0 left promiscuous mode
[  554.052864] bridge0: port 1(bridge_slave_0) entered disabled state
[  554.075911] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  554.119356] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  554.176109] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  554.203455] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  554.224858] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  554.240110] protocol 88fb is buggy, dev hsr_slave_0
[  554.245259] protocol 88fb is buggy, dev hsr_slave_1
[  554.250407] protocol 88fb is buggy, dev hsr_slave_0
[  554.255479] protocol 88fb is buggy, dev hsr_slave_1
[  554.256048] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  554.286191] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  554.333056] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  554.363930] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:05:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  554.400312] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  554.414857] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  554.430929] device hsr_slave_1 left promiscuous mode
[  554.454779] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  554.495479] device hsr_slave_0 left promiscuous mode
[  554.497805] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  554.525778] Interruptibility = 00000000  ActivityState = 00000000
[  554.556515] team0 (unregistering): Port device team_slave_1 removed
[  554.563904] *** Host State ***
[  554.578774] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a6f1f998
14:05:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  554.615871] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  554.641127] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  554.654092] team0 (unregistering): Port device team_slave_0 removed
14:05:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  554.678707] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  554.704353] CR0=0000000080050033 CR3=000000005310a000 CR4=00000000001426f0
[  554.720124] protocol 88fb is buggy, dev hsr_slave_0
[  554.725286] protocol 88fb is buggy, dev hsr_slave_1
[  554.736406] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  554.775835] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  554.802511] bond0 (unregistering): Releasing backup interface bond_slave_1
[  554.809143] *** Control State ***
[  554.832733] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  554.868679] EntryControls=0000d1ff ExitControls=002fefff
14:05:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:05:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  554.895644] bond0 (unregistering): Releasing backup interface bond_slave_0
[  554.929216] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  554.956840] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  554.997397] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  555.023618]         reason=80000021 qualification=0000000000000000
[  555.047657] IDTVectoring: info=00000000 errcode=00000000
[  555.069353] TSC Offset = 0xfffffed4e4a65944
[  555.089075] EPT pointer = 0x0000000089aef01e
[  555.101217] bond0 (unregistering): Released all slaves
[  555.111006] Virtual processor ID = 0x0004
14:05:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  555.386506] *** Guest State ***
[  555.389890] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  555.409198] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  555.428289] CR3 = 0x0000000000000000
[  555.437089] PDPTR0 = 0x800000000dc0200f  PDPTR1 = 0x00000012eac0220f
[  555.450747] PDPTR2 = 0x0000d8c0c7480050  PDPTR3 = 0x000000f4d8000f00
[  555.464140] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  555.477081] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  555.490186] Sysenter RSP=0000000000000f80 CS:RIP=0050:0000000000002810
[  555.503778] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.517980] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.536631] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.544999] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.553320] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.561640] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.571110] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  555.579332] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.587931] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  555.599959] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  555.609501] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  555.620344] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  555.628131] Interruptibility = 00000000  ActivityState = 00000000
[  555.639036] *** Host State ***
[  555.642665] RIP = 0xffffffff81173b5f  RSP = 0xffff88809322f998
[  555.648888] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  555.659812] FSBase=00007f3cbef88700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  555.667953] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  555.678373] CR0=0000000080050033 CR3=00000000a035c000 CR4=00000000001426e0
[  555.685738] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  555.696814] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  555.703120] *** Control State ***
[  555.706748] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  555.717877] EntryControls=0000d1ff ExitControls=002fefff
[  555.723644] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  555.734999] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  555.741957] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  555.748672]         reason=80000021 qualification=0000000000000000
[  555.759554] IDTVectoring: info=00000000 errcode=00000000
[  555.766783] TSC Offset = 0xfffffed40001d7bd
[  555.775622] EPT pointer = 0x000000008980701e
[  555.780561] Virtual processor ID = 0x0002
[  557.230849] IPVS: ftp: loaded support on port[0] = 21
[  558.318157] chnl_net:caif_netlink_parms(): no params data found
[  558.353531] bridge0: port 1(bridge_slave_0) entered blocking state
[  558.359949] bridge0: port 1(bridge_slave_0) entered disabled state
[  558.367282] device bridge_slave_0 entered promiscuous mode
[  558.374009] bridge0: port 2(bridge_slave_1) entered blocking state
[  558.380521] bridge0: port 2(bridge_slave_1) entered disabled state
[  558.387470] device bridge_slave_1 entered promiscuous mode
[  558.400126] net_ratelimit: 14 callbacks suppressed
[  558.400132] protocol 88fb is buggy, dev hsr_slave_0
[  558.405130] protocol 88fb is buggy, dev hsr_slave_1
[  558.415312] protocol 88fb is buggy, dev hsr_slave_0
[  558.420401] protocol 88fb is buggy, dev hsr_slave_1
[  558.429473] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  558.438484] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  558.457720] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  558.465725] team0: Port device team_slave_0 added
[  558.471218] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  558.478368] team0: Port device team_slave_1 added
[  558.483866] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  558.491185] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  558.572175] device hsr_slave_0 entered promiscuous mode
[  558.610290] device hsr_slave_1 entered promiscuous mode
[  558.650516] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[  558.657428] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[  558.671843] bridge0: port 2(bridge_slave_1) entered blocking state
[  558.678232] bridge0: port 2(bridge_slave_1) entered forwarding state
[  558.684931] bridge0: port 1(bridge_slave_0) entered blocking state
[  558.691366] bridge0: port 1(bridge_slave_0) entered forwarding state
[  558.719364] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  558.726213] 8021q: adding VLAN 0 to HW filter on device bond0
[  558.735265] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  558.744617] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  558.752581] bridge0: port 1(bridge_slave_0) entered disabled state
[  558.759216] bridge0: port 2(bridge_slave_1) entered disabled state
[  558.768734] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[  558.774920] 8021q: adding VLAN 0 to HW filter on device team0
[  558.783742] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  558.791456] bridge0: port 1(bridge_slave_0) entered blocking state
[  558.797825] bridge0: port 1(bridge_slave_0) entered forwarding state
[  558.807030] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  558.814938] bridge0: port 2(bridge_slave_1) entered blocking state
[  558.821336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  558.841456] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  558.849285] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  558.857536] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  558.865142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  558.873395] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  558.880158] protocol 88fb is buggy, dev hsr_slave_0
[  558.885229] protocol 88fb is buggy, dev hsr_slave_1
[  558.892120] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[  558.898139] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  558.913229] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[  558.924986] 8021q: adding VLAN 0 to HW filter on device batadv0
[  559.020138] protocol 88fb is buggy, dev hsr_slave_0
[  559.025213] protocol 88fb is buggy, dev hsr_slave_1
[  559.140148] protocol 88fb is buggy, dev hsr_slave_0
[  559.145218] protocol 88fb is buggy, dev hsr_slave_1
[  559.300693] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
14:06:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:03 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer\x00', 0x200000, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x10000003, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x1, 0x0)
semget(0xffffffffffffffff, 0x4000000000004, 0x40)
semctl$IPC_INFO(0x0, 0x3, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x8}, 0x0, 0xfffffffffffffffe, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r3 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r3, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, 0x0, 0x3, 0x4}}, 0x2e)
r4 = open(&(0x7f0000000540)='./file0\x00', 0x181005, 0x10)
r5 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @local, 0x0, 0x0, 'wrr\x00', 0x20, 0x0, 0x67}, 0x2c)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x2)
r7 = syz_open_dev$vcsa(&(0x7f0000000340)='/dev/vcsa#\x00', 0xfffffffffffffffb, 0x8000)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f0000000380), 0x8)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f00000004c0)={0x1, 0xcc88}, 0x2)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000400)=0x8, 0x4)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000080)={0x0, 'veth0_to_bridge\x00'}, 0x18)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x6)
ioctl(r6, 0x800000000008982, &(0x7f0000000080))
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="0af51f023c123f3188a0")
socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0xffffffffffffffff)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[]}}, 0x40000)
prctl$PR_SET_SECCOMP(0x16, 0x3, &(0x7f00000002c0)={0x6, &(0x7f0000000280)=[{0x400, 0x0, 0x7a79, 0x7}, {0xac4, 0x20, 0x3, 0x1}, {0xf4, 0x0, 0xa879, 0x94}, {0x5, 0xffff, 0x2, 0x1}, {0x818, 0x7ff, 0x5, 0x3}, {0x8000, 0x0, 0x5, 0x2a}]})
socket$isdn_base(0x22, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x132, 0x40004)

14:06:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  560.178847] *** Guest State ***
[  560.205401] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  560.266219] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:03 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer\x00', 0x200000, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x10000003, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x1, 0x0)
semget(0xffffffffffffffff, 0x4000000000004, 0x40)
semctl$IPC_INFO(0x0, 0x3, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x8}, 0x0, 0xfffffffffffffffe, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r3 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r3, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, 0x0, 0x3, 0x4}}, 0x2e)
r4 = open(&(0x7f0000000540)='./file0\x00', 0x181005, 0x10)
r5 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @local, 0x0, 0x0, 'wrr\x00', 0x20, 0x0, 0x67}, 0x2c)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x2)
r7 = syz_open_dev$vcsa(&(0x7f0000000340)='/dev/vcsa#\x00', 0xfffffffffffffffb, 0x8000)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f0000000380), 0x8)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f00000004c0)={0x1, 0xcc88}, 0x2)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000400)=0x8, 0x4)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000080)={0x0, 'veth0_to_bridge\x00'}, 0x18)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x6)
ioctl(r6, 0x800000000008982, &(0x7f0000000080))
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="0af51f023c123f3188a0")
socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0xffffffffffffffff)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[]}}, 0x40000)
prctl$PR_SET_SECCOMP(0x16, 0x3, &(0x7f00000002c0)={0x6, &(0x7f0000000280)=[{0x400, 0x0, 0x7a79, 0x7}, {0xac4, 0x20, 0x3, 0x1}, {0xf4, 0x0, 0xa879, 0x94}, {0x5, 0xffff, 0x2, 0x1}, {0x818, 0x7ff, 0x5, 0x3}, {0x8000, 0x0, 0x5, 0x2a}]})
socket$isdn_base(0x22, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x132, 0x40004)

[  560.336006] CR3 = 0x0000000000000000
14:06:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  560.388755] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  560.463881] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  560.551824] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  560.590911] RFLAGS=0x00000002         DR7 = 0x0000000000000400
14:06:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  560.617820] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
14:06:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  560.664381] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:06:04 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer\x00', 0x200000, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x10000003, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x1, 0x0)
semget(0xffffffffffffffff, 0x4000000000004, 0x40)
semctl$IPC_INFO(0x0, 0x3, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x8}, 0x0, 0xfffffffffffffffe, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r3 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r3, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, 0x0, 0x3, 0x4}}, 0x2e)
r4 = open(&(0x7f0000000540)='./file0\x00', 0x181005, 0x10)
r5 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @local, 0x0, 0x0, 'wrr\x00', 0x20, 0x0, 0x67}, 0x2c)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x2)
r7 = syz_open_dev$vcsa(&(0x7f0000000340)='/dev/vcsa#\x00', 0xfffffffffffffffb, 0x8000)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f0000000380), 0x8)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f00000004c0)={0x1, 0xcc88}, 0x2)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000400)=0x8, 0x4)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000080)={0x0, 'veth0_to_bridge\x00'}, 0x18)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x6)
ioctl(r6, 0x800000000008982, &(0x7f0000000080))
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="0af51f023c123f3188a0")
socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0xffffffffffffffff)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[]}}, 0x40000)
prctl$PR_SET_SECCOMP(0x16, 0x3, &(0x7f00000002c0)={0x6, &(0x7f0000000280)=[{0x400, 0x0, 0x7a79, 0x7}, {0xac4, 0x20, 0x3, 0x1}, {0xf4, 0x0, 0xa879, 0x94}, {0x5, 0xffff, 0x2, 0x1}, {0x818, 0x7ff, 0x5, 0x3}, {0x8000, 0x0, 0x5, 0x2a}]})
socket$isdn_base(0x22, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x132, 0x40004)

[  560.712986] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.744174] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.808267] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.849455] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.884366] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.910840] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  560.937016] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.957488] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  560.974622] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  560.987026] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  560.994591] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  561.006148] Interruptibility = 00000000  ActivityState = 00000000
[  561.013993] *** Host State ***
[  561.017262] RIP = 0xffffffff81173b5f  RSP = 0xffff8880540bf998
[  561.027486] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  561.034829] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  561.047379] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  561.054298] CR0=0000000080050033 CR3=0000000060fc6000 CR4=00000000001426e0
[  561.074208] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  561.087414] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  561.101161] *** Control State ***
[  561.104706] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  561.117932] EntryControls=0000d1ff ExitControls=002fefff
[  561.141962] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  561.149024] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  561.161224] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  561.167919]         reason=80000021 qualification=0000000000000000
[  561.178486] IDTVectoring: info=00000000 errcode=00000000
[  561.185211] TSC Offset = 0xfffffed16f1c2c3f
14:06:04 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  561.189618] EPT pointer = 0x000000008cfcb01e
[  561.198245] Virtual processor ID = 0x0003
14:06:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  561.377286] *** Guest State ***
14:06:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  561.408413] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  561.486890] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:05 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0x9, &(0x7f0000000000)=0x20001000001, 0x4)
setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f00000001c0)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000280)=0x2e, 0x4)
r3 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000100)="44c125c9723c44206c46515ed433175de6177cdd68cce677b0c83b13a981265201e544fc75cc116441dfc79c2ba8dc4930c6cdb0a72d08a5360dc73611ad940da3d4d261271674d37a5e4454156a939da702a1b570422f81481d76c7fdf90748ee5aee5859d1627b038b3c4e75b6349b897c13d14713", 0x76, 0x0)
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000180)={r3, 0x6e, 0xc1}, &(0x7f0000000200)={'enc=', 'raw', ' hash=', {'xcbc-aes-ce\x00'}}, &(0x7f00000002c0)="0641e73b4827c628ce5f0fe4f002ee214383c0e1a79f9194160a5184c2673268a9310902a317655bdb3277550535e0b81db744f48fecd67743816c2a4675a8377bbdf28fde7f28d0cbd738e0d28d4bc9d657be4be95ade8b6d3798ab2f72017e9af423b75b9991a10984d396e41d", &(0x7f0000000380)=""/193)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)

14:06:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  561.567514] CR3 = 0x0000000000000000
[  561.578552] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  561.595413] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  561.650081] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  561.676569] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  561.716516] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  561.746195] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.775173] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.812567] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.836654] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.855377] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.866605] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.875751] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  561.883923] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.893093] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  561.901280] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  561.909380] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  561.916145] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  561.923809] Interruptibility = 00000000  ActivityState = 00000000
[  561.931520] *** Host State ***
[  561.935536] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a9d6f998
[  561.941921] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  561.948465] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  561.956554] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  561.962602] CR0=0000000080050033 CR3=000000008ccdb000 CR4=00000000001426f0
[  561.969756] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  561.976764] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  561.983550] *** Control State ***
[  561.987196] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  561.994744] EntryControls=0000d1ff ExitControls=002fefff
[  562.000366] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  562.007413] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  562.014354] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  562.021782]         reason=80000021 qualification=0000000000000000
[  562.028232] IDTVectoring: info=00000000 errcode=00000000
14:06:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:05 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:05 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x29, 0x7, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
r1 = memfd_create(&(0x7f0000000280)='-\x00', 0x0)
pwritev(r1, &(0x7f0000000040)=[{&(0x7f00001f2000)="aa", 0x1}], 0x1, 0x800000)
sendfile(r0, r1, 0x0, 0x1ffe00)
finit_module(r1, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)

[  562.034187] TSC Offset = 0xfffffed0cb865e00
[  562.038636] EPT pointer = 0x0000000093b3601e
[  562.043316] Virtual processor ID = 0x0004
[  562.162194] audit: type=1400 audit(1564841165.638:991): avc:  denied  { module_load } for  pid=25175 comm="syz-executor.4" path=2F6D656D66643A2D202864656C6574656429 dev="tmpfs" ino=101040 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:tmpfs_t:s0 tclass=system permissive=1
14:06:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  562.666547] *** Guest State ***
[  562.670002] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  562.760661] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:06 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  562.811985] CR3 = 0x0000000000000000
[  562.826448] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  562.861885] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  562.892616] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
14:06:06 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  562.936812] RFLAGS=0x00000002         DR7 = 0x0000000000000400
14:06:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  562.994175] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  563.036177] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.084800] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.137732] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.178895] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.230451] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.257125] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.274408] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  563.288132] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.297542] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  563.306748] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  563.326704] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  563.339730] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  563.347688] Interruptibility = 00000000  ActivityState = 00000000
[  563.365254] *** Host State ***
[  563.368638] RIP = 0xffffffff81173b5f  RSP = 0xffff888099827998
14:06:06 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x29, 0x7, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
r1 = memfd_create(&(0x7f0000000280)='-\x00', 0x0)
pwritev(r1, &(0x7f0000000040)=[{&(0x7f00001f2000)="aa", 0x1}], 0x1, 0x800000)
sendfile(r0, r1, 0x0, 0x1ffe00)
finit_module(r1, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)

14:06:06 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  563.384169] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  563.426830] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  563.434981] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  563.454679] CR0=0000000080050033 CR3=00000000581bf000 CR4=00000000001426e0
[  563.465458] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  563.477360] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  563.494983] *** Control State ***
[  563.498505] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  563.505686] EntryControls=0000d1ff ExitControls=002fefff
[  563.516232] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  563.523325] net_ratelimit: 26 callbacks suppressed
[  563.523331] protocol 88fb is buggy, dev hsr_slave_0
[  563.523382] protocol 88fb is buggy, dev hsr_slave_1
[  563.544118] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  563.550910] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  563.557570]         reason=80000021 qualification=0000000000000000
[  563.568738] IDTVectoring: info=00000000 errcode=00000000
[  563.574320] TSC Offset = 0xfffffed01a3e4e1e
[  563.578717] EPT pointer = 0x0000000092a7601e
[  563.589014] Virtual processor ID = 0x0002
14:06:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:07 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  563.680688] protocol 88fb is buggy, dev hsr_slave_0
[  563.685798] protocol 88fb is buggy, dev hsr_slave_1
14:06:07 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  563.866169] *** Guest State ***
14:06:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:07 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  563.894594] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  563.987818] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  564.039067] CR3 = 0x0000000000000000
[  564.057986] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  564.080164] protocol 88fb is buggy, dev hsr_slave_0
[  564.085254] protocol 88fb is buggy, dev hsr_slave_1
[  564.085830] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  564.145018] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  564.177811] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  564.220214] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  564.226975] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.248989] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.257153] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.265294] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.273435] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.281562] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.290362] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  564.298400] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.306499] IDTR:                           limit=0x00000000, base=0x0000000000000000
14:06:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  564.324710] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  564.340665] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  564.355353] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  564.368204] Interruptibility = 00000000  ActivityState = 00000000
[  564.379180] *** Host State ***
[  564.385739] RIP = 0xffffffff81173b5f  RSP = 0xffff888057b0f998
[  564.399152] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  564.406391] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  564.414439] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  564.420481] CR0=0000000080050033 CR3=000000009532c000 CR4=00000000001426f0
[  564.432486] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  564.439277] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  564.455620] *** Control State ***
[  564.471070] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  564.477812] EntryControls=0000d1ff ExitControls=002fefff
[  564.496063] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  564.504385] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  564.512051] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  564.519733]         reason=80000021 qualification=0000000000000000
[  564.526502] IDTVectoring: info=00000000 errcode=00000000
14:06:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  564.532505] TSC Offset = 0xfffffecf757c929b
[  564.536902] EPT pointer = 0x0000000055adc01e
[  564.541447] Virtual processor ID = 0x0005
14:06:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  564.640121] protocol 88fb is buggy, dev hsr_slave_0
[  564.645270] protocol 88fb is buggy, dev hsr_slave_1
[  564.650431] protocol 88fb is buggy, dev hsr_slave_0
[  564.655524] protocol 88fb is buggy, dev hsr_slave_1
[  564.703015] *** Guest State ***
[  564.725654] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:08 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  564.779131] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  564.870128] CR3 = 0x0000000000000000
[  564.889102] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  564.912128] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  564.948063] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  564.979414] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  565.026102] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  565.059253] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.077797] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.103530] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.112418] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.120947] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.129025] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.148351] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  565.162032] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.181091] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  565.189169] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.202592] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  565.209197] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  565.218783] Interruptibility = 00000000  ActivityState = 00000000
[  565.228654] *** Host State ***
[  565.233808] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a7cb7998
[  565.239857] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  565.249851] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  565.259360] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  565.268815] CR0=0000000080050033 CR3=0000000058fb6000 CR4=00000000001426e0
[  565.277536] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  565.289577] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  565.297419] *** Control State ***
[  565.304374] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  565.312826] EntryControls=0000d1ff ExitControls=002fefff
[  565.318393] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
14:06:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  565.328974] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  565.337320] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  565.347524]         reason=80000021 qualification=0000000000000000
[  565.355668] IDTVectoring: info=00000000 errcode=00000000
[  565.364720] TSC Offset = 0xfffffecf027e3402
[  565.369129] EPT pointer = 0x00000000a03f201e
[  565.375522] Virtual processor ID = 0x0003
14:06:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:08 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  565.563650] *** Guest State ***
14:06:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

[  565.590786] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  565.650461] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  565.668123] CR3 = 0x0000000000000000
[  565.711528] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  565.754861] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  565.805452] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  565.833050] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  565.839914] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  565.855550] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.874147] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.882357] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.890545] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.898609] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.906804] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.915299] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  565.937353] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.945592] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  565.963964] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  565.977825] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  565.984499] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  565.997901] Interruptibility = 00000000  ActivityState = 00000000
[  566.005210] *** Host State ***
[  566.008521] RIP = 0xffffffff81173b5f  RSP = 0xffff888056ebf998
[  566.019318] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  566.025959] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  566.038579] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  566.044666] CR0=0000000080050033 CR3=00000000a5696000 CR4=00000000001426e0
[  566.056549] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  566.063390] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  566.069565] *** Control State ***
[  566.077781] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  566.084947] EntryControls=0000d1ff ExitControls=002fefff
[  566.095150] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  566.102247] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  566.109025] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
14:06:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:09 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  566.120570]         reason=80000021 qualification=0000000000000000
[  566.127051] IDTVectoring: info=00000000 errcode=00000000
[  566.136510] TSC Offset = 0xfffffece8c25067d
[  566.141772] EPT pointer = 0x000000005f1ca01e
[  566.146823] Virtual processor ID = 0x0004
14:06:09 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)

14:06:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  566.348320] *** Guest State ***
14:06:09 executing program 4:
r0 = syz_open_dev$swradio(&(0x7f00000002c0)='/dev/swradio#\x00', 0x1, 0x2)
readv(r0, &(0x7f0000001400)=[{&(0x7f0000000000)=""/57, 0x39}], 0x1)
ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000040)=""/51)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc058565d, &(0x7f0000000080)={0x0, 0x48000000000000b, 0x0, [], 0x0})

[  566.376251] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  566.417796] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:09 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  566.458108] CR3 = 0x0000000000000000
[  566.489445] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  566.533848] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  566.567540] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  566.613613] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  566.624133] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  566.637704] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.659205] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.668187] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.689161] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.698569] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.712303] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.723883] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  566.734580] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.745095] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  566.755810] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  566.767012] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  566.776147] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  566.786013] Interruptibility = 00000000  ActivityState = 00000000
[  566.794938] *** Host State ***
[  566.798179] RIP = 0xffffffff81173b5f  RSP = 0xffff88805907f998
[  566.807635] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  566.816541] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000
[  566.827062] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  566.835457] CR0=0000000080050033 CR3=00000000a98dd000 CR4=00000000001426e0
[  566.845267] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  566.854341] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  566.863182] *** Control State ***
[  566.866645] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  566.875958] EntryControls=0000d1ff ExitControls=002fefff
[  566.883879] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  566.894172] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  566.903284] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  566.909913]         reason=80000021 qualification=0000000000000000
14:06:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:10 executing program 4:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x13f}}, 0x20)
r1 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
r2 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$rds(0x15, 0x5, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xfffffffffffffe83}}, 0x0)
msgrcv(0x0, &(0x7f0000000200)={0x0, ""/4096}, 0x1008, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000001240)={0x2, "f1f24003a06759589f914b0c4af7d9377e82d9644215fb1a7fe6dd72f85c23ca904f8128e143619e975c35182eb9a04ea044b253ac56d521a6dd51d2e310c7814ca8ab5cadf30d0c79297f753f96dccfd4c8decc97213d8ba11e3158b4d1f8adb9d6b9bf67aa233036b60cad1a92c125301b6f243f85ade5cf2ff30d39eb50739d30a71a4a0e6b4f31b84e6b2e04fe245e94792b0111a6484bd74ed83118a5e535e37b97591eb8c4145b99a6c296e4"}, 0xb7, 0x800)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r3 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000001380), 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000012000)={0x8, 0x0, &(0x7f0000000140)=[@acquire], 0x0, 0x0, 0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={<r4=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000000)='/dev/binder#\x00'}, 0x30)
fcntl$lock(r1, 0x27, &(0x7f00000000c0)={0x3, 0x0, 0x1000, 0xff, r4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000008fd0)={0x8, 0x0, &(0x7f000000dff8)=[@release={0x400c630e}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f000000dfd0)={0x4, 0x0, &(0x7f0000000080)=[@enter_looper], 0xaf14113f02c18c41, 0x0, &(0x7f0000000680)})
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000013c0)={0x2, 0x2e9a0eff, 0x4, 0x4, 0x6, [{0xfffffffffffffc37, 0x1, 0x7}, {0x2, 0xcf, 0x2, 0x0, 0x0, 0x1001}, {0xe8d, 0x2, 0x424, 0x0, 0x0, 0x2008}, {0x6, 0x7ff, 0x800, 0x0, 0x0, 0x300}, {0x3, 0x577, 0xffffffffffff0001, 0x0, 0x0, 0x280c}, {0x8, 0x4215, 0x3}]})

14:06:10 executing program 2:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:10 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  566.919150] IDTVectoring: info=00000000 errcode=00000000
[  566.927021] TSC Offset = 0xfffffece2192553b
[  566.933987] EPT pointer = 0x00000000923fe01e
[  566.938440] Virtual processor ID = 0x0003
14:06:10 executing program 2:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:10 executing program 4:
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$ax25(0xffffffffffffffff, &(0x7f00000002c0)={{0x3, @default}, [@default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast]}, 0x48)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000100)=0x1c, 0x800)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, 0x0, 0xe00, 0x0, 0x25dfdbfc, {{}, 0x0, 0x4101, 0x0, {0x18, 0x17, {0x1c, 0x7, @l2={'ib', 0x3a, 'erspan0\x00'}}}}}, 0x34}}, 0x4004080)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r0)
r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000440)='/selinux/status\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000200)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="eb3c902d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000340)='./file0\x00', 0x400000, 0x76)
umount2(&(0x7f0000000400)='./file0\x00', 0x4)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
ioctl$TUNSETGROUP(r1, 0x400454ce, r2)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(0xffffffffffffffff, 0xc008551c, &(0x7f0000000380)={0xfffffffffffffffb, 0x14, [0x969, 0x1f, 0x1ebf8e7c, 0x94e, 0x0]})

14:06:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:10 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.173812] *** Guest State ***
14:06:10 executing program 2:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.215856] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.285528] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  567.322262] CR3 = 0x0000000000000000
[  567.345380] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  567.378892] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  567.399987] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  567.407884] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  567.417257] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  567.426393] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.445878] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.457427] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.478358] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.488197] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.505146] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.516698] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  567.532676] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.540863] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  567.548982] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.557237] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  567.563829] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  567.571846] Interruptibility = 00000000  ActivityState = 00000000
[  567.578335] *** Host State ***
[  567.581695] RIP = 0xffffffff81173b5f  RSP = 0xffff88805907f998
[  567.587821] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  567.594437] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  567.602500] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  567.608550] CR0=0000000080050033 CR3=00000000a13f9000 CR4=00000000001426e0
[  567.615766] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  567.622577] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  567.628736] *** Control State ***
[  567.632343] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  567.639117] EntryControls=0000d1ff ExitControls=002fefff
[  567.644836] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
14:06:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:11 executing program 4:
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x3, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000600)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
r1 = dup(r0)
r2 = syz_open_dev$media(&(0x7f0000001800)='/dev/media#\x00', 0x0, 0x400)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x16)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000500)=0x2, 0x4)
r3 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)={[{0x800000000002b, 'pids'}]}, 0x6)
lsetxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="040402bf4469b2a5020000000000000000e7dfbae7"], 0x15, 0x1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x0)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000440)='nbd\x00')
sendmsg$NBD_CMD_STATUS(r3, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000540)={0xa0, r4, 0x402, 0x70bd27, 0x25dfdbfe, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4}, @NBD_ATTR_SOCKETS={0x1c, 0x7, [{0x8, 0x1, r2}, {0x8, 0x1, r2}, {0x8, 0x1, r2}]}, @NBD_ATTR_SOCKETS={0x44, 0x7, [{0x8, 0x1, r3}, {0x8, 0x1, r2}, {0x8, 0x1, r1}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r1}, {0x8, 0x1, r3}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0)
r5 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000800)="24000000640007031dfffd946fa2830020200a000000003fa61d85680c1ba3a20400ff7e280000005e00ffffba16a0aa1c0009b3ebea8653b138a32052b44e099d881e02546dcda4cc7e6397", 0x4c}], 0x1}, 0x0)
getsockname$unix(r3, &(0x7f0000000240)=@abs, &(0x7f0000000300)=0x6e)
getsockname$unix(r2, &(0x7f0000000380)=@abs, &(0x7f0000000140)=0x6e)
getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, &(0x7f00000001c0)=""/57, &(0x7f0000000400)=0x39)

14:06:11 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.651905] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  567.658704] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  567.665444]         reason=80000021 qualification=0000000000000000
[  567.671920] IDTVectoring: info=00000000 errcode=00000000
[  567.677489] TSC Offset = 0xfffffecdaf25a5cf
[  567.682190] EPT pointer = 0x00000000876c901e
[  567.686706] Virtual processor ID = 0x0002
14:06:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.863824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=100 sclass=netlink_route_socket pig=25425 comm=syz-executor.4
[  567.882183] *** Guest State ***
[  567.885492] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  567.885504] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  567.885509] CR3 = 0x0000000000000000
[  567.885520] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.885529] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  567.885536] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  567.885545] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  567.885557] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  567.885567] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.885581] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  567.928154] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:06:11 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  567.987248] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=100 sclass=netlink_route_socket pig=25440 comm=syz-executor.4
14:06:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  568.160942] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.168969] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.196241] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.205479] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  568.214152] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.222845] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  568.230972] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.238953] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  568.248890] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  568.257215] Interruptibility = 00000000  ActivityState = 00000000
[  568.273105] *** Host State ***
[  568.276334] RIP = 0xffffffff81173b5f  RSP = 0xffff88805c5c7998
[  568.285455] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  568.294526] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  568.312433] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  568.318394] CR0=0000000080050033 CR3=000000008f2a6000 CR4=00000000001426e0
[  568.339598] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  568.346567] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  568.352728] *** Control State ***
[  568.356194] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  568.362991] EntryControls=0000d1ff ExitControls=002fefff
[  568.368455] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  568.375645] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  568.382706] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  568.389306]         reason=80000021 qualification=0000000000000000
[  568.395762] IDTVectoring: info=00000000 errcode=00000000
[  568.401547] TSC Offset = 0xfffffecd4e1b8f3d
[  568.405877] EPT pointer = 0x000000005b7cc01e
14:06:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:11 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:11 executing program 4:
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x3, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000600)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
r1 = dup(r0)
r2 = syz_open_dev$media(&(0x7f0000001800)='/dev/media#\x00', 0x0, 0x400)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x16)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000500)=0x2, 0x4)
r3 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)={[{0x800000000002b, 'pids'}]}, 0x6)
lsetxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="040402bf4469b2a5020000000000000000e7dfbae7"], 0x15, 0x1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x0)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000440)='nbd\x00')
sendmsg$NBD_CMD_STATUS(r3, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000540)={0xa0, r4, 0x402, 0x70bd27, 0x25dfdbfe, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4}, @NBD_ATTR_SOCKETS={0x1c, 0x7, [{0x8, 0x1, r2}, {0x8, 0x1, r2}, {0x8, 0x1, r2}]}, @NBD_ATTR_SOCKETS={0x44, 0x7, [{0x8, 0x1, r3}, {0x8, 0x1, r2}, {0x8, 0x1, r1}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r1}, {0x8, 0x1, r3}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0)
r5 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000800)="24000000640007031dfffd946fa2830020200a000000003fa61d85680c1ba3a20400ff7e280000005e00ffffba16a0aa1c0009b3ebea8653b138a32052b44e099d881e02546dcda4cc7e6397", 0x4c}], 0x1}, 0x0)
getsockname$unix(r3, &(0x7f0000000240)=@abs, &(0x7f0000000300)=0x6e)
getsockname$unix(r2, &(0x7f0000000380)=@abs, &(0x7f0000000140)=0x6e)
getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, &(0x7f00000001c0)=""/57, &(0x7f0000000400)=0x39)

14:06:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  568.410393] Virtual processor ID = 0x0003
14:06:12 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  568.605354] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=100 sclass=netlink_route_socket pig=25467 comm=syz-executor.4
[  568.619130] *** Guest State ***
[  568.643021] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:12 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  568.739736] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  568.800160] net_ratelimit: 20 callbacks suppressed
[  568.800166] protocol 88fb is buggy, dev hsr_slave_0
[  568.810290] protocol 88fb is buggy, dev hsr_slave_1
[  568.815437] protocol 88fb is buggy, dev hsr_slave_0
[  568.820582] protocol 88fb is buggy, dev hsr_slave_1
[  568.838458] CR3 = 0x0000000000000000
[  568.847764] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  568.881927] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  568.889204] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  568.895393] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  568.901592] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  568.908333] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.917146] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.925389] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.933527] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.941632] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.949700] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.957894] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  568.966012] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.974097] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  568.982208] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  568.990290] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  568.996817] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  569.004385] Interruptibility = 00000000  ActivityState = 00000000
[  569.010714] *** Host State ***
[  569.013976] RIP = 0xffffffff81173b5f  RSP = 0xffff888056ebf998
[  569.020071] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  569.026554] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  569.034459] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  569.041020] CR0=0000000080050033 CR3=000000009799f000 CR4=00000000001426f0
[  569.048111] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  569.054906] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  569.061069] *** Control State ***
[  569.064614] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  569.071400] EntryControls=0000d1ff ExitControls=002fefff
14:06:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  569.076931] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  569.083975] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  569.090784] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  569.097458]         reason=80000021 qualification=0000000000000000
[  569.103915] IDTVectoring: info=00000000 errcode=00000000
[  569.109437] TSC Offset = 0xfffffecce9e3fe3c
[  569.113881] EPT pointer = 0x000000009d3ee01e
[  569.118371] Virtual processor ID = 0x0004
14:06:12 executing program 4:
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x3, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000600)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
r1 = dup(r0)
r2 = syz_open_dev$media(&(0x7f0000001800)='/dev/media#\x00', 0x0, 0x400)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x16)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000500)=0x2, 0x4)
r3 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)={[{0x800000000002b, 'pids'}]}, 0x6)
lsetxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="040402bf4469b2a5020000000000000000e7dfbae7"], 0x15, 0x1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x0)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000440)='nbd\x00')
sendmsg$NBD_CMD_STATUS(r3, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000540)={0xa0, r4, 0x402, 0x70bd27, 0x25dfdbfe, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4}, @NBD_ATTR_SOCKETS={0x1c, 0x7, [{0x8, 0x1, r2}, {0x8, 0x1, r2}, {0x8, 0x1, r2}]}, @NBD_ATTR_SOCKETS={0x44, 0x7, [{0x8, 0x1, r3}, {0x8, 0x1, r2}, {0x8, 0x1, r1}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r3}, {0x8, 0x1, r1}, {0x8, 0x1, r3}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0)
r5 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000800)="24000000640007031dfffd946fa2830020200a000000003fa61d85680c1ba3a20400ff7e280000005e00ffffba16a0aa1c0009b3ebea8653b138a32052b44e099d881e02546dcda4cc7e6397", 0x4c}], 0x1}, 0x0)
getsockname$unix(r3, &(0x7f0000000240)=@abs, &(0x7f0000000300)=0x6e)
getsockname$unix(r2, &(0x7f0000000380)=@abs, &(0x7f0000000140)=0x6e)
getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, &(0x7f00000001c0)=""/57, &(0x7f0000000400)=0x39)

14:06:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  569.290120] protocol 88fb is buggy, dev hsr_slave_0
[  569.295288] protocol 88fb is buggy, dev hsr_slave_1
[  569.317639] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=100 sclass=netlink_route_socket pig=25501 comm=syz-executor.4
[  569.337289] *** Guest State ***
14:06:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  569.380177] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:12 executing program 4:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x9d, 0x0, 0x0, 0xffff}, 0x20)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

[  569.438254] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  569.509751] CR3 = 0x0000000000000000
[  569.545199] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  569.579205] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  569.617106] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  569.648116] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  569.678906] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  569.697624] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.714277] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.733942] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.749138] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.760166] protocol 88fb is buggy, dev hsr_slave_0
[  569.761273] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.765242] protocol 88fb is buggy, dev hsr_slave_1
[  569.773383] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.786547] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  569.794724] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.802853] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  569.811270] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  569.819288] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  569.825829] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  569.833368] Interruptibility = 00000000  ActivityState = 00000000
[  569.839632] *** Host State ***
[  569.843042] RIP = 0xffffffff81173b5f  RSP = 0xffff8880813f7998
[  569.849068] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  569.856451] FSBase=00007f3cbef45700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000
[  569.864366] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  569.870349] CR0=0000000080050033 CR3=0000000083609000 CR4=00000000001426e0
[  569.877408] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  569.884162] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  569.890295] *** Control State ***
[  569.893781] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  569.900526] EntryControls=0000d1ff ExitControls=002fefff
[  569.906045] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  569.913059] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  569.919789] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  569.920132] protocol 88fb is buggy, dev hsr_slave_0
14:06:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:13 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:13 executing program 4:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x9d, 0x0, 0x0, 0xffff}, 0x20)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  569.926559]         reason=80000021 qualification=0000000000000000
[  569.931603] protocol 88fb is buggy, dev hsr_slave_1
[  569.937938] IDTVectoring: info=00000000 errcode=00000000
[  569.948478] TSC Offset = 0xfffffecc8df3b217
[  569.952885] EPT pointer = 0x00000000a17bc01e
[  569.957357] Virtual processor ID = 0x0004
14:06:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:13 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x7ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='stat\x00')
fstat(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setresgid(0x0, 0x0, r3)
exit(0x0)
sendfile(r4, r2, 0x0, 0x100000002)

14:06:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  570.185570] *** Guest State ***
[  570.213784] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  570.288803] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

[  570.330597] CR3 = 0x0000000000000000
14:06:13 executing program 4:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010)
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffd)
mmap(&(0x7f00006fe000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)

[  570.353393] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  570.381052] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  570.405196] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  570.456982] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  570.485103] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  570.504176] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.516862] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.533285] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.550438] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.559514] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.572619] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.583023] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  570.594313] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.604701] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  570.615255] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  570.625637] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  570.634579] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  570.644571] Interruptibility = 00000000  ActivityState = 00000000
[  570.653463] *** Host State ***
[  570.656677] RIP = 0xffffffff81173b5f  RSP = 0xffff88809fa1f998
[  570.665204] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  570.673960] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  570.684251] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  570.692524] CR0=0000000080050033 CR3=0000000095c87000 CR4=00000000001426f0
[  570.699548] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  570.708697] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  570.717103] *** Control State ***
[  570.723060] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  570.729732] EntryControls=0000d1ff ExitControls=002fefff
[  570.737703] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  570.747004] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
14:06:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:14 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
msgctl$IPC_SET(0x0, 0x1, &(0x7f00000005c0)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000})

[  570.756190] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  570.765181]         reason=80000021 qualification=0000000000000000
[  570.774238] IDTVectoring: info=00000000 errcode=00000000
[  570.779704] TSC Offset = 0xfffffecc15ee164f
[  570.786608] EPT pointer = 0x000000008101001e
[  570.793461] Virtual processor ID = 0x0004
14:06:14 executing program 4:
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000140)=ANY=[@ANYBLOB="1400000022008102000000000000000200897c14c0f8c3a1acd4546853eabe2b3c80d077d17985a534c0c10000d58c652b2216cafa942ee63b4be1f8906c695369548722c6de133ed2f8a01db3f62fbdf9342385fc8450bc28a11d384a0623"], 0x1}}, 0x0)
add_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0), &(0x7f0000000100), 0x390, 0xfffffffffffffffb)

14:06:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  570.985449] *** Guest State ***
14:06:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

[  571.018043] Option '…ü„P¼(¡8J' to dns_resolver key: bad/missing value
[  571.041525] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:14 executing program 4:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000015c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r0, 0x0, 0x0)
dup3(r0, r1, 0x0)

[  571.126810] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  571.187911] CR3 = 0x0000000000000000
[  571.224609] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  571.258999] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  571.277221] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  571.302119] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  571.322615] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  571.329523] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.343014] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.353456] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.367292] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.393258] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.417564] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.434492] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  571.488619] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.528851] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  571.547793] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  571.568325] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  571.574970] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  571.587911] Interruptibility = 00000000  ActivityState = 00000000
[  571.594346] *** Host State ***
[  571.597653] RIP = 0xffffffff81173b5f  RSP = 0xffff88805bdd7998
[  571.608475] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  571.615054] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  571.627705] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  571.633783] CR0=0000000080050033 CR3=0000000058fca000 CR4=00000000001426e0
[  571.645694] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  571.652551] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  571.666169] *** Control State ***
[  571.669722] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  571.676549] EntryControls=0000d1ff ExitControls=002fefff
[  571.686793] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  571.693882] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  571.705404] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  571.712160]         reason=80000021 qualification=0000000000000000
[  571.718692] IDTVectoring: info=00000000 errcode=00000000
14:06:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:15 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='sysfs\x00', 0x0, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x1000000000401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x0)

14:06:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  571.728950] TSC Offset = 0xfffffecba458217e
[  571.733391] EPT pointer = 0x0000000057ef601e
[  571.737872] Virtual processor ID = 0x0005
14:06:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:15 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000080)=""/116, 0x74}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0x1013, 0x2, 0x0, 0x800e00516)
shutdown(r0, 0x0)
recvmsg(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5}, 0x2)
shutdown(r1, 0x0)

[  571.913552] *** Guest State ***
14:06:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  571.937056] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  572.000958] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  572.009985] CR3 = 0x0000000000000000
[  572.044126] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  572.081208] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
14:06:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  572.091573] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  572.107419] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  572.126160] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  572.180226] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.256189] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.301385] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.342818] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.373413] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.396828] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.423936] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  572.436080] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.459662] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  572.480338] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  572.488385] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  572.496147] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  572.504357] Interruptibility = 00000000  ActivityState = 00000000
[  572.511104] *** Host State ***
[  572.514313] RIP = 0xffffffff81173b5f  RSP = 0xffff88805238f998
[  572.520670] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  572.527139] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  572.535380] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  572.541399] CR0=0000000080050033 CR3=000000005318e000 CR4=00000000001426f0
[  572.548468] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  572.555600] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  572.561748] *** Control State ***
[  572.565229] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  572.572368] EntryControls=0000d1ff ExitControls=002fefff
[  572.577872] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  572.585180] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  572.591956] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  572.598585]         reason=80000021 qualification=0000000000000000
14:06:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:16 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/154, 0x9a}], 0x1}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xa1720495f3f7edd, 0x0, 0x0, 0x800e0051e)
setsockopt$sock_timeval(r1, 0xffff, 0x1006, &(0x7f0000000000)={0x0, 0x10000}, 0x10)
shutdown(r0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup2(r1, r2)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x50, 0x0, 0x0)
recvfrom$inet(r2, 0x0, 0x7c06, 0x0, 0x0, 0x800e00519)
shutdown(r1, 0x0)

14:06:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  572.605280] IDTVectoring: info=00000000 errcode=00000000
[  572.610943] TSC Offset = 0xfffffecb25c6baf6
[  572.615401] EPT pointer = 0x000000009867201e
[  572.619939] Virtual processor ID = 0x0002
14:06:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000180)=""/244, 0xf4}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x2)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xfffffecb, 0x0, 0x0, 0x800e00515)
shutdown(r0, 0x0)
getsockopt$sock_linger(r0, 0xffff, 0x80, 0x0, &(0x7f0000000100))
recvfrom$inet(r1, 0x0, 0xd172, 0x2, 0x0, 0x800e0050e)
shutdown(r1, 0x0)

14:06:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/154, 0x28d}], 0x1}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xa1720495f3f7edd, 0x0, 0x0, 0x800e0051e)
setsockopt$sock_timeval(r1, 0xffff, 0x1006, &(0x7f0000000000)={0x0, 0x10000}, 0x10)
shutdown(r0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
dup2(r1, r2)
read(0xffffffffffffffff, 0x0, 0x0)
recvfrom$inet(r2, 0x0, 0x7c06, 0x0, 0x0, 0x800e00519)
shutdown(r1, 0x0)

14:06:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/154, 0x9a}], 0x1}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xa1720495f3f7edd, 0x0, 0x0, 0x800e0051e)
shutdown(r0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f00000001c0)=""/231, 0xe7}, {0x0}, {0x0}, {0x0}], 0x4}, 0x2)
shutdown(r1, 0x0)

14:06:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:16 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000180)=""/244, 0xf4}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8}, 0x2)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xfffffecb, 0x0, 0x0, 0x800e00515)
shutdown(r0, 0x0)
accept$inet(0xffffffffffffffff, 0x0, 0x0)
recvfrom$inet(r1, 0x0, 0xd172, 0x2, 0x0, 0x800e0050e)
shutdown(r1, 0x0)

14:06:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  573.921243] net_ratelimit: 20 callbacks suppressed
[  573.921261] protocol 88fb is buggy, dev hsr_slave_0
[  573.931727] protocol 88fb is buggy, dev hsr_slave_1
[  574.080160] protocol 88fb is buggy, dev hsr_slave_0
[  574.085281] protocol 88fb is buggy, dev hsr_slave_1
14:06:17 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff010}, {0x80000006}]}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')

14:06:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:17 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:17 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff024}, {0x80000006}]}, 0x10)

14:06:17 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  574.480115] protocol 88fb is buggy, dev hsr_slave_0
[  574.485284] protocol 88fb is buggy, dev hsr_slave_1
14:06:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:18 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:18 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x6, 0x800000000004, 0x4, 0xb, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x400}, 0x3c)

14:06:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1={0xff, 0x2, [0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000]}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0xffffff80}}}, 0xb8}}, 0x0)

14:06:18 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:18 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000080)={0x1a, 0x0, 0x7, 0x0, 0x0, 0x0, @local}, 0x10)

14:06:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 1:
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:18 executing program 4:

14:06:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  575.040146] protocol 88fb is buggy, dev hsr_slave_0
[  575.045530] protocol 88fb is buggy, dev hsr_slave_1
[  575.050701] protocol 88fb is buggy, dev hsr_slave_0
[  575.055933] protocol 88fb is buggy, dev hsr_slave_1
14:06:18 executing program 4:

14:06:18 executing program 1:
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  575.086916] *** Guest State ***
14:06:18 executing program 4:

[  575.124854] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7
14:06:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:18 executing program 1:
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  575.190541] CR4: actual=0x000000000000205c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:18 executing program 4:

[  575.274045] CR3 = 0x00000000fffbc000
[  575.278201] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  575.318909] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  575.325541] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  575.344450] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.370198] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.384960] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.414012] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.427208] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.436834] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.451133] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  575.459343] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.471414] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  575.479688] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  575.491465] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  575.498041] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  575.509102] Interruptibility = 00000000  ActivityState = 00000000
[  575.517320] *** Host State ***
[  575.524211] RIP = 0xffffffff81173b5f  RSP = 0xffff888089bc7998
[  575.532013] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  575.538595] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  575.550862] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  575.557058] CR0=0000000080050033 CR3=00000000862b3000 CR4=00000000001426f0
[  575.568581] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  575.576231] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  575.586628] *** Control State ***
[  575.591218] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000e2
[  575.598263] EntryControls=0000d1ff ExitControls=002fefff
[  575.608387] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  575.616431] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  575.627605] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  575.635488]         reason=80000021 qualification=0000000000000000
[  575.646208] IDTVectoring: info=00000000 errcode=00000000
[  575.652893] TSC Offset = 0xfffffec974aecb37
[  575.657349] EPT pointer = 0x000000009537a01e
14:06:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  575.666408] Virtual processor ID = 0x0002
14:06:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 1:
r0 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 4:
r0 = socket(0x1, 0x1, 0x0)
syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0x0, 0x0)
r1 = syz_open_dev$ndb(0x0, 0x0, 0x0)
ioctl$NBD_SET_SOCK(r1, 0xab00, r0)
ioctl$NBD_SET_SOCK(r1, 0xab00, r0)
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)

14:06:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 4:
r0 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r1, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x1)

14:06:19 executing program 1:
r0 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 4:

[  575.918094] *** Guest State ***
14:06:19 executing program 1:
r0 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  575.951374] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7
[  576.027051] CR4: actual=0x000000000000205c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  576.076124] CR3 = 0x00000000fffbc000
[  576.089424] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  576.103720] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  576.115665] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  576.130345] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.147394] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.170078] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.178097] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.189559] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.203488] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.214098] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  576.226411] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.236586] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  576.248606] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.258565] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  576.269044] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  576.278676] Interruptibility = 00000000  ActivityState = 00000000
[  576.288780] *** Host State ***
[  576.293785] RIP = 0xffffffff81173b5f  RSP = 0xffff888056eff998
[  576.304741] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  576.312980] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000
[  576.324691] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  576.332754] CR0=0000000080050033 CR3=000000008d0d2000 CR4=00000000001426e0
[  576.343767] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  576.352417] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  576.358627] *** Control State ***
[  576.365816] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000e2
[  576.374300] EntryControls=0000d1ff ExitControls=002fefff
[  576.379900] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  576.390546] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  576.397721] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  576.409924]         reason=80000021 qualification=0000000000000000
[  576.417242] IDTVectoring: info=00000000 errcode=00000000
[  576.427345] TSC Offset = 0xfffffec9016c9360
14:06:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 4:

14:06:19 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  576.433498] EPT pointer = 0x00000000543cc01e
[  576.438453] Virtual processor ID = 0x0005
14:06:20 executing program 4:

14:06:20 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:20 executing program 4:

14:06:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:20 executing program 4:

[  576.667227] *** Guest State ***
14:06:20 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  576.697083] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7
[  576.760434] CR4: actual=0x000000000000205c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  576.798430] CR3 = 0x00000000fffbc000
[  576.816858] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  576.830943] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  576.842692] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  576.864635] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.879868] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.893389] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.901770] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.909896] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.918547] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.927204] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  576.935896] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.944080] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  576.953283] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  576.961747] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  576.968430] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  576.976415] Interruptibility = 00000000  ActivityState = 00000000
[  576.983017] *** Host State ***
[  576.986295] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a919f998
[  576.992941] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  576.999565] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  577.007822] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  577.014315] CR0=0000000080050033 CR3=000000005a104000 CR4=00000000001426f0
[  577.021947] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  577.028732] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  577.035276] *** Control State ***
[  577.038916] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000e2
[  577.045941] EntryControls=0000d1ff ExitControls=002fefff
[  577.051527] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  577.058679] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
14:06:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:20 executing program 4:

14:06:20 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  577.065830] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  577.072636]         reason=80000021 qualification=0000000000000000
[  577.079142] IDTVectoring: info=00000000 errcode=00000000
[  577.085721] TSC Offset = 0xfffffec89aa1acc2
[  577.090362] EPT pointer = 0x0000000090eba01e
[  577.094898] Virtual processor ID = 0x0005
14:06:20 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
pipe2(&(0x7f0000000480)={<r0=>0xffffffffffffffff}, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, 0x0)

14:06:20 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  577.288308] *** Guest State ***
[  577.308284] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:20 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$TIOCLINUX7(r0, 0x541c, 0x0)

14:06:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:20 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  577.347302] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  577.417043] CR3 = 0x0000000000000000
[  577.432497] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
14:06:20 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  577.472539] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  577.518146] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
14:06:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:21 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  577.562242] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.600523] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.658781] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.738197] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.793543] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.805936] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.831190] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  577.839449] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.853187] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  577.861459] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  577.869629] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  577.877024] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  577.884664] Interruptibility = 00000000  ActivityState = 00000000
[  577.891198] *** Host State ***
[  577.894431] RIP = 0xffffffff81173b5f  RSP = 0xffff88808a227998
[  577.900518] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  577.906949] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  577.914947] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  577.920926] CR0=0000000080050033 CR3=00000000950c8000 CR4=00000000001426e0
[  577.928003] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  577.934852] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  577.940990] *** Control State ***
[  577.944552] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  577.951907] EntryControls=0000d1ff ExitControls=002fefff
[  577.957383] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  577.964941] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  577.971681] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  577.978290]         reason=80000021 qualification=0000000000000000
[  577.984724] IDTVectoring: info=00000000 errcode=00000000
14:06:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:21 executing program 4:

14:06:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:21 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  577.990257] TSC Offset = 0xfffffec846859deb
[  577.995820] EPT pointer = 0x00000000995d101e
[  578.000562] Virtual processor ID = 0x0003
14:06:21 executing program 4:

14:06:21 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x0, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:21 executing program 4:

14:06:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:21 executing program 4:

[  578.194865] *** Guest State ***
[  578.206919] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  578.257069] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  578.339428] CR3 = 0x0000000000000000
[  578.363582] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  578.383396] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  578.394683] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  578.402003] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.436490] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.445141] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.458457] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.467051] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.481364] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.489707] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  578.502633] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.512466] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  578.523793] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  578.533665] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  578.543328] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  578.552401] Interruptibility = 00000000  ActivityState = 00000000
[  578.558760] *** Host State ***
[  578.565281] RIP = 0xffffffff81173b5f  RSP = 0xffff888094c07998
[  578.574629] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  578.584489] FSBase=00007f3cbef66700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  578.594393] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  578.603868] CR0=0000000080050033 CR3=000000008f065000 CR4=00000000001426e0
[  578.612672] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  578.619375] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  578.629491] *** Control State ***
[  578.634635] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  578.645019] EntryControls=0000d1ff ExitControls=002fefff
[  578.653089] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  578.663307] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  578.671864] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  578.678830]         reason=80000021 qualification=0000000000000000
14:06:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:22 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x0, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  578.688399] IDTVectoring: info=00000000 errcode=00000000
[  578.695539] TSC Offset = 0xfffffec7c7fd80aa
[  578.699905] EPT pointer = 0x000000008f36601e
[  578.707738] Virtual processor ID = 0x0005
14:06:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:22 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$F_GET_RW_HINT(r0, 0x40b, 0x0)

14:06:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:22 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x0, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  578.912268] *** Guest State ***
[  578.926770] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:22 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0x0, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  578.959232] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
14:06:22 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x0)

[  579.035203] CR3 = 0x0000000000000000
[  579.058495] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  579.108804] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  579.150280] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  579.200121] net_ratelimit: 20 callbacks suppressed
[  579.200127] protocol 88fb is buggy, dev hsr_slave_0
[  579.204375] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.205199] protocol 88fb is buggy, dev hsr_slave_1
[  579.233636] protocol 88fb is buggy, dev hsr_slave_0
[  579.238728] protocol 88fb is buggy, dev hsr_slave_1
[  579.241455] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.278405] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.302653] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.327137] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.339157] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.348047] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  579.361010] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.369260] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  579.382760] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  579.393216] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  579.399707] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  579.409802] Interruptibility = 00000000  ActivityState = 00000000
[  579.418663] *** Host State ***
[  579.424398] RIP = 0xffffffff81173b5f  RSP = 0xffff888056eff998
[  579.432931] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  579.439619] FSBase=00007f3cbef66700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  579.452642] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  579.458988] CR0=0000000080050033 CR3=0000000088077000 CR4=00000000001426f0
[  579.468011] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  579.478493] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  579.486385] *** Control State ***
[  579.493156] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  579.501728] EntryControls=0000d1ff ExitControls=002fefff
[  579.507399] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  579.517757] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
14:06:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0x0, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:23 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
request_key(0x0, 0x0, 0x0, r0)

14:06:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  579.527311] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  579.537324]         reason=80000021 qualification=0000000000000000
[  579.545491] IDTVectoring: info=00000000 errcode=00000000
[  579.554352] TSC Offset = 0xfffffec767376963
[  579.558878] EPT pointer = 0x00000000997b201e
[  579.565117] Virtual processor ID = 0x0005
14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0x0, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  579.690624] protocol 88fb is buggy, dev hsr_slave_0
[  579.696244] protocol 88fb is buggy, dev hsr_slave_1
14:06:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:23 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003700)=[{{0x0, 0x0, 0x0}}], 0x1, 0x890)

14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

14:06:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_elf64(r0, 0x0, 0x0)

14:06:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  580.160186] protocol 88fb is buggy, dev hsr_slave_0
[  580.165634] protocol 88fb is buggy, dev hsr_slave_1
14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  580.320149] protocol 88fb is buggy, dev hsr_slave_0
[  580.325624] protocol 88fb is buggy, dev hsr_slave_1
14:06:23 executing program 4:
socket$inet_udp(0x2, 0x2, 0x0)
getsockname$inet(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
openat(0xffffffffffffffff, 0x0, 0x400, 0x1f)

14:06:23 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)

14:06:24 executing program 4:

14:06:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)

14:06:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)

14:06:24 executing program 4:

14:06:24 executing program 4:

14:06:24 executing program 3:

14:06:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x0, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:24 executing program 4:

14:06:24 executing program 3:

14:06:24 executing program 4:

14:06:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x0, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:24 executing program 3:

14:06:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:24 executing program 4:

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x0, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:24 executing program 4:

14:06:24 executing program 3:

14:06:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:24 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x0, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:24 executing program 4:

14:06:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:25 executing program 3:

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x0, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:25 executing program 4:

14:06:25 executing program 3:

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x0, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:25 executing program 3:

14:06:25 executing program 4:

14:06:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0x0, @pix={0x0, 0xffffffff00000001}}})

14:06:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:25 executing program 3:

14:06:25 executing program 4:

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0x0, @pix={0x0, 0xffffffff00000001}}})

14:06:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:25 executing program 3:

14:06:25 executing program 4:

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0x0, @pix={0x0, 0xffffffff00000001}}})

14:06:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:25 executing program 4:

14:06:25 executing program 3:

14:06:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb}})

14:06:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:25 executing program 4:

14:06:25 executing program 3:

14:06:25 executing program 4:

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb}})

14:06:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:25 executing program 3:

14:06:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:25 executing program 4:

14:06:25 executing program 1:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb}})

14:06:25 executing program 3:

14:06:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:26 executing program 4:

14:06:26 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-blowfish-asm\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4)
sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000007180)={0x0, 0x0, &(0x7f0000007140)={&(0x7f0000000500)=ANY=[@ANYBLOB], 0x1}}, 0x0)

14:06:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:26 executing program 3:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYPTR64, @ANYPTR64, @ANYBLOB], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x9d, 0xe9, 0x0, 0xffff}, 0x20)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:26 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0104000000000000000003000000280001001800010069623a76655b68305f746f5f74656170f9ee34d1b62bbc53332af237bb282fbc"], 0x3c}}, 0x0)
ioctl$TIOCLINUX7(0xffffffffffffffff, 0x541c, &(0x7f0000000040))

14:06:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:26 executing program 1:
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x1, 0x0)
recvfrom$rxrpc(r0, &(0x7f0000000180)=""/19, 0x13, 0x141, &(0x7f00000001c0)=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x24)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f00000000c0)='tasks\x00', 0x2, 0x0)
r3 = socket$kcm(0x29, 0x5, 0x0)
sendfile(r3, r2, 0x0, 0x94)
ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000280))

[  582.709565] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
14:06:26 executing program 3:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYPTR64, @ANYPTR64, @ANYBLOB], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x9d, 0xe9, 0x0, 0xffff}, 0x20)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

[  582.759476] Bearer <ib:ve[h0_to_teapùî4Ѷ+¼S3*ò7»(/¼> rejected, not supported in standalone mode
14:06:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

[  582.847703] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  582.891757] Bearer <ib:ve[h0_to_teapùî4Ѷ+¼S3*ò7»(/¼ÿÿÿÿà`]ˆÿÿÿÿ> rejected, not supported in standalone mode
14:06:26 executing program 3:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYPTR64, @ANYPTR64, @ANYBLOB], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x9d, 0xe9, 0x0, 0xffff}, 0x20)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:26 executing program 1:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x66, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1163484002000000000000000000000000000000000000001000000000000000000000005800000000004087f86000001800000000000000", @ANYPTR64=&(0x7f0000000300)=ANY=[@ANYBLOB="852a62730010000000000000000000000000000000000000852a6877010000000100000000000000000000000000000085", @ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00'/217], @ANYBLOB="d90000000000000000000000000000001300000000000000"], @ANYPTR64=&(0x7f0000000380)=ANY=[@ANYBLOB="000000000000000018000000000000003000000000000000"], @ANYBLOB="1e00000000000b630000106326067164ccfd02a70808401200e300000000"], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, 0x0)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:26 executing program 1:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x66, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1163484002000000000000000000000000000000000000001000000000000000000000005800000000004087f86000001800000000000000", @ANYPTR64=&(0x7f0000000300)=ANY=[@ANYBLOB="852a62730010000000000000000000000000000000000000852a6877010000000100000000000000000000000000000085", @ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00'/217], @ANYBLOB="d90000000000000000000000000000001300000000000000"], @ANYPTR64=&(0x7f0000000380)=ANY=[@ANYBLOB="000000000000000018000000000000003000000000000000"], @ANYBLOB="1e00000000000b630000106326067164ccfd02a70808401200e300000000"], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, 0x0)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:26 executing program 3:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x66, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1163484002000000000000000000000000000000000000001000000000000000000000005800000000004087f86000001800000000000000", @ANYPTR64=&(0x7f0000000300)=ANY=[@ANYBLOB="852a62730010000000000000000000000000000000000000852a6877010000000100000000000000000000000000000085", @ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00'/217], @ANYBLOB="d90000000000000000000000000000001300000000000000"], @ANYPTR64=&(0x7f0000000380)=ANY=[@ANYBLOB="000000000000000018000000000000003000000000000000"], @ANYBLOB="1e00000000000b630000106326067164ccfd02a70808401200e300000000"], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, 0x0)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)

14:06:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:26 executing program 1:
open(&(0x7f00000001c0)='./file0\x00', 0x80040, 0x0)
mkdir(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = gettid()
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x66, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1163484002000000000000000000000000000000000000001000000000000000000000005800000000004087f86000001800000000000000", @ANYPTR64=&(0x7f0000000300)=ANY=[@ANYBLOB="852a62730010000000000000000000000000000000000000852a6877010000000100000000000000000000000000000085", @ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00'/217], @ANYBLOB="d90000000000000000000000000000001300000000000000"], @ANYPTR64=&(0x7f0000000380)=ANY=[@ANYBLOB="000000000000000018000000000000003000000000000000"], @ANYBLOB="1e00000000000b630000106326067164ccfd02a70808401200e300000000"], 0x2a, 0x0, &(0x7f0000000440)="560c2b42e35b7c2e14d668dd3844cf77bfdc95efd1362f5c2f1715976276320f4a591f392fb212133dad"})
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f0000000080)={0x1, 0x6, 0xff, 0x81, 0x9, 0x40008000000ff})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, 0x0)
renameat2(r0, &(0x7f00000024c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000280)='./file0\x00', 0x2)

14:06:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})

14:06:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  584.320128] net_ratelimit: 20 callbacks suppressed
[  584.320133] protocol 88fb is buggy, dev hsr_slave_0
[  584.330725] protocol 88fb is buggy, dev hsr_slave_1
14:06:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  584.480174] protocol 88fb is buggy, dev hsr_slave_0
[  584.485606] protocol 88fb is buggy, dev hsr_slave_1
14:06:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:28 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

[  584.880114] protocol 88fb is buggy, dev hsr_slave_0
[  584.885303] protocol 88fb is buggy, dev hsr_slave_1
14:06:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})

14:06:28 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:28 executing program 4 (fault-call:4 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:28 executing program 1 (fault-call:4 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:28 executing program 2 (fault-call:4 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

14:06:28 executing program 3 (fault-call:2 fault-nth:0):
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  585.346499] *** Guest State ***
[  585.346715] FAULT_INJECTION: forcing a failure.
[  585.346715] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  585.368052] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  585.391808] FAULT_INJECTION: forcing a failure.
[  585.391808] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  585.422478] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  585.435094] CPU: 0 PID: 26484 Comm: syz-executor.1 Not tainted 4.14.135 #31
[  585.440301] protocol 88fb is buggy, dev hsr_slave_0
[  585.442219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  585.447301] protocol 88fb is buggy, dev hsr_slave_1
[  585.456595] Call Trace:
[  585.456616]  dump_stack+0x138/0x19c
[  585.456631]  should_fail.cold+0x10f/0x159
[  585.456639]  ? __might_sleep+0x93/0xb0
[  585.456654]  __alloc_pages_nodemask+0x1d6/0x7a0
[  585.456668]  ? trace_hardirqs_on_caller+0x400/0x590
[  585.461819] protocol 88fb is buggy, dev hsr_slave_0
[  585.464258]  ? __alloc_pages_slowpath+0x2930/0x2930
[  585.467971] protocol 88fb is buggy, dev hsr_slave_1
[  585.472023]  alloc_pages_vma+0xc9/0x4c0
[  585.472038]  __handle_mm_fault+0x18f3/0x3470
[  585.472054]  ? vm_insert_mixed_mkwrite+0x40/0x40
[  585.499243] CR3 = 0x0000000000000000
[  585.500624]  ? find_held_lock+0x35/0x130
[  585.500637]  ? handle_mm_fault+0x1b6/0x7c0
[  585.500657]  handle_mm_fault+0x293/0x7c0
[  585.500675]  __do_page_fault+0x4c1/0xb80
[  585.500691]  ? vmalloc_fault+0xe30/0xe30
[  585.500703]  ? page_fault+0x2f/0x50
[  585.500716]  do_page_fault+0x71/0x511
[  585.500724]  ? page_fault+0x2f/0x50
[  585.500735]  page_fault+0x45/0x50
[  585.500744] RIP: 0033:0x4080ad
[  585.500750] RSP: 002b:00007ffacf127070 EFLAGS: 00010202
[  585.500764] RAX: 00000000004080a0 RBX: 00007ffacf128c90 RCX: 0000000020000080
[  585.514540] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  585.517576] RDX: 0000000020fe5000 RSI: 0000000000000005 RDI: 0000000000000004
[  585.517582] RBP: 000000000075bf20 R08: 0000000000000001 R09: 0000000000000000
[  585.517588] R10: 0000000000000064 R11: 0000000000000000 R12: 00007ffacf1296d4
[  585.517595] R13: 00000000004c88e8 R14: 00000000004df6f0 R15: 0000000000000007
[  585.519849] CPU: 0 PID: 26485 Comm: syz-executor.2 Not tainted 4.14.135 #31
[  585.610968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  585.620325] Call Trace:
[  585.622918]  dump_stack+0x138/0x19c
[  585.626560]  should_fail.cold+0x10f/0x159
[  585.630711]  __alloc_pages_nodemask+0x1d6/0x7a0
[  585.635415]  ? __alloc_pages_slowpath+0x2930/0x2930
[  585.640435]  ? __lock_acquire+0x5f7/0x4620
[  585.644684]  ? __lock_acquire+0x5f7/0x4620
[  585.648923]  alloc_pages_vma+0xc9/0x4c0
[  585.652898]  __handle_mm_fault+0x18f3/0x3470
[  585.657325]  ? vm_insert_mixed_mkwrite+0x40/0x40
[  585.662086]  ? find_held_lock+0x35/0x130
[  585.666322]  ? handle_mm_fault+0x1b6/0x7c0
[  585.670656]  handle_mm_fault+0x293/0x7c0
[  585.674723]  __do_page_fault+0x4c1/0xb80
[  585.678784]  ? vmalloc_fault+0xe30/0xe30
[  585.682857]  ? page_fault+0x2f/0x50
[  585.686483]  do_page_fault+0x71/0x511
[  585.690290]  ? page_fault+0x2f/0x50
[  585.693915]  page_fault+0x45/0x50
[  585.697365] RIP: 0033:0x4080ad
[  585.700545] RSP: 002b:00007f1d69999070 EFLAGS: 00010202
[  585.705908] RAX: 00000000004080a0 RBX: 00007f1d6999ac90 RCX: 0000000020000080
[  585.713176] RDX: 0000000020fe5000 RSI: 0000000000000005 RDI: 0000000000000004
[  585.720443] RBP: 000000000075bf20 R08: 0000000000000001 R09: 0000000000000001
[  585.727715] R10: 0000000000000064 R11: 0000000000000000 R12: 00007f1d6999b6d4
[  585.734988] R13: 00000000004c88e8 R14: 00000000004df6f0 R15: 0000000000000007
[  585.743885] FAULT_INJECTION: forcing a failure.
[  585.743885] name failslab, interval 1, probability 0, space 0, times 0
[  585.761763] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  585.767571] CPU: 0 PID: 26492 Comm: syz-executor.3 Not tainted 4.14.135 #31
[  585.768282] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  585.775370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  585.775375] Call Trace:
[  585.775396]  dump_stack+0x138/0x19c
[  585.775414]  should_fail.cold+0x10f/0x159
[  585.775432]  should_failslab+0xdb/0x130
[  585.775447]  kmem_cache_alloc_node_trace+0x280/0x770
[  585.775477]  __kmalloc_node+0x3d/0x80
[  585.813945]  kvmalloc_node+0x4e/0xe0
[  585.817669]  video_usercopy+0x365/0xf20
[  585.821645]  ? lock_downgrade+0x6e0/0x6e0
[  585.825792]  ? video_ioctl2+0x40/0x40
[  585.829595]  ? v4l_g_priority+0xa0/0xa0
[  585.833570]  ? mutex_trylock+0x1c0/0x1c0
[  585.837643]  video_ioctl2+0x2d/0x40
[  585.841273]  v4l2_ioctl+0x1c0/0x300
[  585.844896]  ? v4l2_open+0x300/0x300
[  585.848604]  do_vfs_ioctl+0x7ae/0x1060
[  585.852497]  ? selinux_file_mprotect+0x5d0/0x5d0
[  585.857255]  ? lock_downgrade+0x6e0/0x6e0
[  585.861400]  ? ioctl_preallocate+0x1c0/0x1c0
[  585.865806]  ? __fget+0x237/0x370
[  585.869267]  ? security_file_ioctl+0x89/0xb0
[  585.873675]  SyS_ioctl+0x8f/0xc0
[  585.877042]  ? do_vfs_ioctl+0x1060/0x1060
[  585.881189]  do_syscall_64+0x1e8/0x640
[  585.885074]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  585.889915]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  585.895108] RIP: 0033:0x459829
[  585.898295] RSP: 002b:00007f3cbef87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  585.905999] RAX: ffffffffffffffda RBX: 00007f3cbef87c90 RCX: 0000000000459829
[  585.913263] RDX: 0000000020000240 RSI: 00000000c100565c RDI: 0000000000000003
[  585.920527] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  585.927795] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3cbef886d4
[  585.935061] R13: 00000000004c495f R14: 00000000004d8bc8 R15: 0000000000000004
[  585.960092] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  585.966102] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  585.976254] syz-executor.1 invoked oom-killer: gfp_mask=0x0(), nodemask=(null),  order=0, oom_score_adj=1000
[  585.990427] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.992084] syz-executor.1 cpuset=
[  585.998450] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998464] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998483] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998497] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998511] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998521] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  585.998534] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998543] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  585.998556] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  585.998564] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  585.998573] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  585.998580] Interruptibility = 00000000  ActivityState = 00000000
[  585.998584] *** Host State ***
[  585.998592] RIP = 0xffffffff81173b5f  RSP = 0xffff88805e9d7998
[  585.998609] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  585.998618] FSBase=00007fc7ebd65700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  585.998627] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  585.998638] CR0=0000000080050033 CR3=0000000090cc8000 CR4=00000000001426e0
[  585.998651] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  585.998660] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  585.998663] *** Control State ***
[  585.998669] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  585.998675] EntryControls=0000d1ff ExitControls=002fefff
14:06:29 executing program 0 (fault-call:4 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000000))
setsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f0000000040)=0xf9, 0x4)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  585.998686] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  585.998692] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  585.998698] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  585.998703]         reason=80000021 qualification=0000000000000000
[  585.998711] IDTVectoring: info=00000000 errcode=00000000
[  585.998716] TSC Offset = 0xfffffec3f6bc7149
[  586.006727] syz1
[  586.030085] EPT pointer = 0x000000008bae801e
[  586.047246]  mems_allowed=0-1
[  586.073722] Virtual processor ID = 0x0004
[  586.235927] FAULT_INJECTION: forcing a failure.
[  586.235927] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  586.251242] CPU: 0 PID: 26484 Comm: syz-executor.1 Not tainted 4.14.135 #31
[  586.258352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  586.267702] Call Trace:
[  586.270287]  dump_stack+0x138/0x19c
[  586.270312]  dump_header+0x177/0x6cd
[  586.270323]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  586.270334]  ? ___ratelimit+0x55/0x537
[  586.270347]  oom_kill_process.cold+0x10/0xadd
[  586.270357]  ? rcu_read_unlock_special+0x895/0xd40
[  586.270370]  ? lock_downgrade+0x6e0/0x6e0
[  586.270385]  out_of_memory+0x7f4/0x1150
[  586.270402]  ? oom_killer_disable+0x1d0/0x1d0
[  586.270413]  ? mutex_trylock+0x168/0x1c0
[  586.270421]  ? pagefault_out_of_memory+0xb8/0xd7
[  586.270434]  pagefault_out_of_memory+0xc9/0xd7
[  586.270446]  ? out_of_memory+0x1150/0x1150
[  586.326902]  ? rwsem_downgrade_wake+0xf0/0xf0
[  586.331395]  ? call_rwsem_wake+0x1b/0x30
[  586.335449]  mm_fault_error+0xb6/0x2c0
[  586.339338]  __do_page_fault+0xa35/0xb80
[  586.343398]  ? vmalloc_fault+0xe30/0xe30
[  586.347459]  ? page_fault+0x2f/0x50
[  586.351084]  do_page_fault+0x71/0x511
[  586.354880]  ? page_fault+0x2f/0x50
[  586.358500]  page_fault+0x45/0x50
[  586.361948] RIP: 0033:0x4080ad
[  586.365133] RSP: 002b:00007ffacf127070 EFLAGS: 00010202
[  586.370487] RAX: 00000000004080a0 RBX: 00007ffacf128c90 RCX: 0000000020000080
[  586.377760] RDX: 0000000020fe5000 RSI: 0000000000000005 RDI: 0000000000000004
14:06:29 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000040)='fou\x00')
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd27, 0x25dfdbff, {}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x687d, 0x4000)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r3, 0x0, 0x83, &(0x7f0000000180)={'filter\x00', 0x0, 0x4, 0x27, [], 0x1, &(0x7f0000000040)=[{}], &(0x7f00000000c0)=""/39}, &(0x7f0000000200)=0x78)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  586.385023] RBP: 000000000075bf20 R08: 0000000000000001 R09: 0000000000000000
[  586.392285] R10: 0000000000000064 R11: 0000000000000000 R12: 00007ffacf1296d4
[  586.399549] R13: 00000000004c88e8 R14: 00000000004df6f0 R15: 0000000000000007
[  586.427320] CPU: 0 PID: 26498 Comm: syz-executor.0 Not tainted 4.14.135 #31
[  586.434458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  586.443829] Call Trace:
[  586.446436]  dump_stack+0x138/0x19c
[  586.450079]  should_fail.cold+0x10f/0x159
[  586.454233]  ? __might_sleep+0x93/0xb0
[  586.458137]  __alloc_pages_nodemask+0x1d6/0x7a0
[  586.458155]  ? __alloc_pages_slowpath+0x2930/0x2930
[  586.458168]  ? check_preemption_disabled+0x3c/0x250
[  586.458187]  alloc_pages_vma+0xc9/0x4c0
[  586.467865]  __handle_mm_fault+0x18f3/0x3470
[  586.467882]  ? vm_insert_mixed_mkwrite+0x40/0x40
[  586.467894]  ? find_held_lock+0x35/0x130
[  586.467903]  ? handle_mm_fault+0x1b6/0x7c0
[  586.467924]  handle_mm_fault+0x293/0x7c0
[  586.498381]  __do_page_fault+0x4c1/0xb80
[  586.502446]  ? vmalloc_fault+0xe30/0xe30
[  586.506511]  ? page_fault+0x2f/0x50
[  586.510150]  do_page_fault+0x71/0x511
[  586.513954]  ? page_fault+0x2f/0x50
[  586.517590]  page_fault+0x45/0x50
[  586.521053] RIP: 0033:0x4080ad
14:06:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
io_setup(0x4eb4, &(0x7f00000000c0)=<r2=>0x0)
io_destroy(r2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000001c0)={<r5=>0x0, 0x3}, &(0x7f0000000200)=0x8)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f0000000240)={r5, @in6={{0xa, 0x4e24, 0x8, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x5}}}, &(0x7f0000000300)=0x84)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
finit_module(r6, &(0x7f0000000180)='{GPL\x00', 0x3)
ioctl$CAPI_SET_FLAGS(r6, 0x80044324, &(0x7f0000000040))

[  586.524237] RSP: 002b:00007f24daae1070 EFLAGS: 00010202
[  586.529608] RAX: 00000000004080a0 RBX: 00007f24daae2c90 RCX: 0000000020000080
[  586.536878] RDX: 0000000020fe5000 RSI: 0000000000000005 RDI: 0000000000000004
[  586.544155] RBP: 000000000075bf20 R08: 0000000000000001 R09: 0000000000000001
[  586.551433] R10: 0000000000000064 R11: 0000000000000000 R12: 00007f24daae36d4
[  586.558701] R13: 00000000004c88e8 R14: 00000000004df6f0 R15: 0000000000000007
14:06:30 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
r1 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="e06d0b78e2cbaabb8dc6a7c7fa386c5bc33901e8faa80601567ca2552582b0b14a470faf68", 0x25, 0xfffffffffffffff9)
keyctl$assume_authority(0x10, r1)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  586.603764] *** Guest State ***
[  586.607223] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  586.616927] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  586.635811] CR3 = 0x0000000000000000
[  586.647298] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  586.655062] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  586.666732] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  586.674081] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  586.694525] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
14:06:30 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$CAPI_GET_PROFILE(r0, 0xc0404309, &(0x7f0000000340)=0xfff)
get_mempolicy(&(0x7f0000000040), &(0x7f0000000080), 0x4, &(0x7f0000ffb000/0x2000)=nil, 0x2)

[  586.702217] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.718195] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.735623] *** Guest State ***
[  586.757126] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  586.770264] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.778286] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.787781] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  586.794907] Mem-Info:
[  586.801540] active_anon:188499 inactive_anon:772 isolated_anon:0
[  586.801540]  active_file:22278 inactive_file:14395 isolated_file:0
[  586.801540]  unevictable:4102 dirty:336 writeback:0 unstable:0
[  586.801540]  slab_reclaimable:13006 slab_unreclaimable:125723
[  586.801540]  mapped:59063 shmem:330 pagetables:4139 bounce:0
[  586.801540]  free:1161256 free_pcp:299 free_cma:0
[  586.833137] CR3 = 0x0000000000000000
[  586.852618] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.854889] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  586.868457] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.897147] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  586.897300] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  586.931674] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  586.933725] Node 0 active_anon:751856kB inactive_anon:3088kB active_file:88964kB inactive_file:57552kB unevictable:16408kB isolated(anon):0kB isolated(file):0kB mapped:236252kB dirty:1344kB writeback:0kB shmem:1320kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 335872kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  586.956888] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  586.969263] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  586.994310] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  586.998839] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  587.016916] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.027392] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.040275] Node 1 active_anon:8kB inactive_anon:0kB active_file:148kB inactive_file:28kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  587.047903] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  587.080469] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.080836] Node 0 DMA free:15908kB min:216kB low:268kB high:320kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  587.101842] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.147479] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  587.162778] Interruptibility = 00000000  ActivityState = 00000000
[  587.167981] lowmem_reserve[]: 0 2580 2580 2580
[  587.175881] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.180571] Node 0 
[  587.185206] *** Host State ***
[  587.187379] DMA32 free:846368kB min:36468kB low:45584kB high:54700kB active_anon:751856kB inactive_anon:3080kB active_file:88964kB inactive_file:57492kB unevictable:16408kB writepending:1372kB present:3129332kB managed:2644896kB mlocked:16408kB kernel_stack:11328kB pagetables:16392kB bounce:0kB free_pcp:1204kB local_pcp:468kB free_cma:0kB
[  587.189723] RIP = 0xffffffff81173b5f  RSP = 0xffff888099227998
[  587.198621] lowmem_reserve[]:
[  587.230134] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.268810] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  587.280111] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.287284] FSBase=00007fc7ebd65700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000
[  587.288126] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  587.310077]  0 0 0 0
[  587.312419] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  587.312471] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  587.329321] CR0=0000000080050033 CR3=00000000a98e9000 CR4=00000000001426f0
[  587.360726] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.368759] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  587.384615] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  587.400184] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  587.404041] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  587.408224] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  587.408234] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  587.428371] lowmem_reserve[]: 0 0 0 0
[  587.432271] Node 1 Normal free:3785920kB min:53420kB low:66772kB high:80124kB active_anon:8kB inactive_anon:0kB active_file:148kB inactive_file:28kB unevictable:0kB writepending:0kB present:3932160kB managed:3870208kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  587.435183] *** Control State ***
[  587.480068] Interruptibility = 00000000  ActivityState = 00000000
[  587.486355] *** Host State ***
[  587.489580] RIP = 0xffffffff81173b5f  RSP = 0xffff88808b74f998
[  587.499342] lowmem_reserve[]: 0 0 0 0
[  587.512862] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  587.519704] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (UM) = 15908kB
[  587.520068] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  587.552434] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  587.554480] EntryControls=0000d1ff ExitControls=002fefff
[  587.568283] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  587.574673] Node 0 DMA32: 1518*4kB (UME) 3177*8kB (UME) 4062*16kB (UME) 2903*32kB (UME) 750*64kB (UME) 70*128kB (UME) 84*256kB (UME) 20*512kB (UME) 15*1024kB (UME) 28*2048kB (M) 121*4096kB (UM) = 846400kB
[  587.581119] CR0=0000000080050033 CR3=0000000093a79000 CR4=00000000001426f0
[  587.614649] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  587.616927] Node 0 
[  587.621656] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  587.621663] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  587.621669]         reason=80000021 qualification=0000000000000000
[  587.621678] IDTVectoring: info=00000000 errcode=00000000
[  587.629599] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  587.654337] TSC Offset = 0xfffffec34bdd4a95
[  587.656021] Normal: 
[  587.660168] EPT pointer = 0x000000003a11101e
[  587.660184] Virtual processor ID = 0x0004
[  587.667117] 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  587.704157] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  587.708978] Node 1 
[  587.723217] Normal: 64*4kB (UME) 350*8kB (UME) 277*16kB (UME) 62*32kB (UME) 27*64kB (UME) 20*128kB (UME) 9*256kB (UM) 9*512kB (UME) 7*1024kB (UME) 3*2048kB (UE) 916*4096kB (UM) = 3785920kB
[  587.724284] *** Control State ***
[  587.745670] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  587.755844] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  587.775017] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  587.781803] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  587.795602] EntryControls=0000d1ff ExitControls=002fefff
[  587.801204] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  587.809785] 36982 total pagecache pages
[  587.814999] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  587.818890] 0 pages in swap cache
[  587.825522] Swap cache stats: add 0, delete 0, find 0/0
[  587.829925] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  587.835733] Free swap  = 0kB
[  587.843708] Total swap = 0kB
[  587.846795] 1965979 pages RAM
[  587.849973] 0 pages HighMem/MovableOnly
[  587.850121] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  587.858680] 333226 pages reserved
[  587.860698]         reason=80000021 qualification=0000000000000000
[  587.864127] 0 pages cma reserved
[  587.878811] Out of memory: Kill process 21534 (syz-executor.5) score 1005 or sacrifice child
[  587.879340] IDTVectoring: info=00000000 errcode=00000000
[  587.888565] Killed process 21534 (syz-executor.5) total-vm:72848kB, anon-rss:6308kB, file-rss:35844kB, shmem-rss:0kB
14:06:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x480601, 0x0)
r1 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0x0, 0x2000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000380)={<r2=>0x0, 0x3c, &(0x7f0000001540)=[@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x22}}, @in6={0xa, 0x4e22, 0x20, @rand_addr="f772e800b2ba1334ddb0ad1affa08cc2", 0xffffffff}, @in6={0xa, 0x4e22, 0x4, @remote, 0x5}]}, &(0x7f00000002c0)=0x121)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000500)={r2, 0x100, 0x1000, "8788b00d6b16d9a07b19505a2e11bf1099a92506aaae044a84194faf97fccffbd7c9bb1ed0d8885ff6f1a1a5e292d61f00e9aea7b1b057874f378ef26961326b41063d74b46176d8824d76f5381400927aad539270cda876a3071af2812fff35179b1db4306da2d367192f24a73eff61805dba261959970fc6054789b9239a7895227a496b0ae747e2d8f6573b72beed0d1078a0591d3343b73f5a733dec825c9eced7d2a0ceaf0351447a7fb7420071c77d19fa71bb85e429cdd1b5ae8bcb5d8a4e4340c0b7ee65208a3cacd0f4ea3beb62ac6172b7cacdd94d3ae22d53572049408448e51d1f06028d8ae1e39ee7b24336a5a9818b792e8f5b61aff8983f25e2dec1f369622c39601213177649cdd773a1fd4ad630c3d340b89aaf98c732af8d07a78be8dee20982554fb6e699140c0b581a2688eccebb13c7fa1263ce6ac3d25da7fafc41b5f56cab6092de754fd5d5e5f8f6bf1f658dec5d5dd77d5a7dfdd214deea74c16c9979d313d016aba1687dc262a756050461af30f8fb2f019e270f2dc9be35c58db8e91cee8624d8d8099f58bae962f7e4bc9f921d365752ce05b04d8afb75761af64a1ddbb5795a50858e166498dc7c6d25a41bf31a121ae948ee207f139edc10f4473c9e499602140a7c1367ddd13ffe1b1563fd381148ebb8d5125b66babcbc8bf70aa153e39a56690dc4c673647449a6b89e1a6b7f2afdf97625e781386caef0ecbf956afc59aa2abd71dc2e37e5d49427ebee2f5b1c59df9c69e0d862e5735187d37ffb51c818db41818e1925e051ca09340f62ebc34ac1270bf9a7e8275becde0278446aee70c025764e485fc0d7069a76a5e63c954ed65d86f3640d98bfe0a63db78be83d6a17a6f81b8999790cf1b2c882abcde5a6783238e0327fde64fa5351d5db8d05209f11bdd57a6f8d4ddcef780f57e857431a0fddcc6f4bd9cf660a1688554a58e448b204dffbc81eecbefd65105ce479906720acca95057e50d53ed43f9a59127b69a6a947996d36ecd7f98ec5586d317aaa2cf65dd3e7b887e1f40cbb39abcf35f9c84eb3b583ee0074ca517edf3f66f6f437e497674214789aeb321dd1ad809cc5768f1f593cbe51d8bdbe7443f5c8b7347800b29de6264bf41e6497bf244658444248ca528f2cb24c9fc2b6ac4fa9e9611cc5c9733644e753589416f200d2768ef7ccb47a336155eb473fb271ddaa13539ee769b7aa8cf93818ae8d1c2f096dc1785ad0ca94d16c009840ec4f521aecf71f4d8403687c828e46017f6845e1f2b2d14c5f691f4e9a78c14d6339a9f8c8f3fdb8b8d1bb2483b9884f0bedcc372c18ff08d48c8fb066bcc467ed05afc855b75d91ef54bd34b765911135260885e20d2a8254209a0adfff0537cf6f9cf8398b976f677d5efaeed6f4e714ea30463b1903e7e0c0cbcc7526731143138b79d4e6465349282b9ee44b92a507f73a90eb850b9c7d73e4af391cb6de4d30eb96c98ae5f6a3be354db399145c080b450ad33348e0dd84dce44161581c9ca90710ff2e579daf850f4cb7aa5641159a47a612f626e3392ee87feb9ff273ff961dfeccecb3df4eede7e25242aaddaaafca87d4d0c57b15a19d7f21212307dde93888e9092b583233b00722f3d3183c3e186bf62e79ad66a9e3b9478bc356646a2b90a319bdcaf447907a3b787b3a92ce281ab8ee694c001892932a1e302e3647831b0e899ef36ce1254e900cf97bf3d5431adffbb0781a89cdc9256a2e14bd030caffe14460ab5d3ffff053251db135d75bc974a496ce9d60aacd7dd4e033ffc4174604af7cf572b999a33803dfb668e6b70c187ea264e1246175ce2b1a202eb71caf80b31d53183f1348578f0f679a642670070342d8f10f42224ac27dab4753cbfb5ff2aa5b3c53c64c5366d135647783d09c87d0a5333730fc082fcd42055003e9a49dbbd4a7b42601ad6d20f44ad16b9c3427cd3388aac39ba0f001f20a07882bc4dd17719fcc7e8734085bbc7023091cd2b52f6abc2606253c2b589c58be701cc12f442219deecb0ca020d949653da11e9be6724527a9e56582b72dab6f793c6d57d6d304aba48ccb43ccbd4a6650f0dd87e36fbd00b2914f294de5cb46f02f12fe48347b830550586b6cad7c02e4fe61d061a674d4219978c680b515bd553daf9502013ea5fb8d66602d5af00c346d8c6053cb5ce6dbff57f7e82a011656c0271e18da7a0c46fe7deef3e7c80b7153d8228e86f6cc8ed1348ab0c065159e7bf398df9baaee0be2f818943cc4e4bc77d9b8e70a657f92b28a3947b126e1c04c23501cc7327ed1585a522803cc5be6ebc3a6e658302e2b7c7dd0b41f403044e044a9391f926ed75fd2ce6b082a65aa4bb5042daefcf5e00849cb5d2264ce1230c024c9017bba0e180daa03cb230d32f9f7f2f52e71091cd96aff131f6f6663098ed27a34602d09fb27105f61dd76f74e0d33d2eb74a12ac6adef4baaa782ef3af909df16a26d08d58522428924e3b1e65e8bacafde5f3c4ddc1cc2d117a89287181f9b55ed044f5c11f30013843dd70d2c19e10319d03925ab968e63a1732743f62b54bfac81356c0c5073db00443036bbd896336347d56c68ab02b0ead5ba70671f2d4359f5cc93048566c31edad236c63c04c972b59be3c0471cd43905581dc2d1873e35ff1ac532c734ad3f915182d40e766ad979962e3a0bf42bef3d26def7f57b18dc2263b0f46dc62ec68298445079d6c8308690fc0cfaa91f7e6625604be0aae174385aa63fb7deb369dd0c1cf83d2e1c34efc9ce9a097f2421234bcc43d2b040a9b46a36b03c0f58cd8620274c0aa5b3be0d66c30b282f800155f8b39bdeabebe73b8a9d0633ab12acd814bc654bff8ad802d05b973aac07150be47ef952cece4ccd2b49edfcf60b36544ab122fe92e17c97eab5dfc921ac82fd79456402ece5aebe5c05697854d8caf26305cada9a11c05f1284955a363e21f0744235040c12b668972dd8d4587fb3ced41b41c8c5a1187b8f455a853a7c80731882ccc93d436f6d420143eea10ce06d73e57e159ce42411ff71bd1af236c3965179a1ece8f0772077131d2ef2bd366190fe01857b72e46af4973ba42e2c4364fe8bdd2f1481b73b698915a1366d043bdeff1832ea0f6006ebe4df866805952a2a2f6c1405619b05472420c30d4c7f070f0e722a2be16ed530e707645c4f89116765d0852a3722966c3992763159e6aca0aeb8c98da7e1c844d369635510e0bf08d4e12f4c7b44e61bdd069b06d0144705dc70ee8040d869a79548011c66729a5ed8839d32f30e859312c53f2afe227a4b867837ee6087d9840af5b422fc5bb92c5c0eaaf13d7fc83497a7d8e35a22d3d7d2cde1b3eb72f3b6744a9aa570284556ec3bdd1db3a667d8a0385b98beb95881459badcc5613a893ee98d152437f08b06910d2d549655a7d0bc230f5f37bf4cc0d5137204c384c8ce0bf1fdfdd92f0d2f81e2fc9d568b1fef91ca2684c06159bc4c7e1f98736521e2ad031756f735d59a1d0a070200f7bcb1dac1434a897e7acfe3ee27fdedb3134823015eefc89a6e60604ee420703d2852555cd9222d12256b7dea74e5abeb29378333b96b0c00b0ceb8e62ab01e03b6f838b4816beedecdb0012104b806a0eb5b5e786c028f3601449af212e2af442a057d2575ae9ec93c1aae32851f10075489e3bf5c02c531b2ee7652423d69b11778a3da0c6cfd46f7692a80d34c9404f24ccd254e0f9660751d0259caf00b99d3ca37040a5dcc572f778eacebe9a4b911cb8695a071bbc339ee64887937b1570adfd66eca91c35e30d7b44abe495a877de1366f86f17e4f03601115e4ad6b5d07a64b4179f92ab670c13c0e3d1e251f7f6587f571ee8c01f97678e052568f579546218713e55dde642d7b66d8495320eec89379f4bf83ee9604dea27d3f6fe524551b023d2255d1aa4e88c7f612772f869c0c983f9d687d0ad33e7f3280596283ba91a69a99bec9f0b251e79720c07cb204f09f44dace9181c48151772e686b233d579f5d23f2f026e8773da029dff2529a7bb2fa7e3fa54f8912f0d6073886caeda156c4fa6d9f4c9e6b1f2cb049fe0e5e0ee92b0a78edd4458c1f48979b05b2d2a68d924f4416ce3c2bfa6dc886a603385a58ca61877234b7a161dc1cd1fdea4e1f894582a9608ba171d36e71b54997aa2b289e904d662401b2535e9635ddd0f86eb4a5392eabbc304e3c54abdc96b44c4ff5a87c7d8015348f1de97774929982fb41716d741416433155b5c38108967ed336ab4be5e8e5053a98cb6e9efb01aaeb92d92c7ec0af6b2850a730c428a320471900065163012c3175655c9d871f2866232d000ec23957515e07b5f58b5520cda8fd91cf84540dcc58e9a8187d3e8cd643e9ce59395165a2a94f64d18ba3463ea68f15ce616097376b6e2066f854a7e754e527805500bd7397e681f251be5e116ac1d0fb2e5e057495cf4ab400e63712905519e946ade57680d75f388651115b02801185556b592e3eed1d0ca0ab706ddff7693ab38cd2fa3670fc142687ddfd7b8c1ac45c4f0203b400c832ccc24b8437858be744cf5e8295aff2ab381aae2dacb43ba993b8ce8a193c6035a060eb504a5374c39cf7a3e16af78e20966e20189bb33d20bdf28acbaa9d671a9be86cedadd86eaa16b0994ff8e215f61cec380a7294576b7230b0811d0e128dcbdefe71c1023abcc2243d3a6e838a6c0ceca71dd801a901f848a237a3a4970d8ad176a7d19e5b7033a1cf74a4924cc90735c206caf36dbcef3e30182fe8af49f5e0ce487bd8d4f768afe95f3d7dd55fed94514026f25d949b384f3cb6183fe4761c5ff4bbf4709afbe0bfed1bc68fc76605d6d6577b13ab6b1b2f36edaf4fba5bb3b8a0a8268311bc3dd296de58bd0f6f3b2733584e370e7a4cafd3c03da972ef143934c265f9aa10eaba1120645ac6312ac134bf420e79bb9a4b6ddb2d4b085e1ac12bbfec085267dfd4c8f7d1b30638e8cb341abbdae70854a905cd77d98c1ad48db96e2e6c9dbc5f745e2a1c42b0b24613857c3e25c4ce1872fcae9f17f3c7054afcafbbb2f327a28efcd5b8dab932182ee42a3d7fbad1f6b35b23e6081d059fd7e89f3585cd284b79f7ed67359fa3f9a4bd532d74345538ec6830033137caa22164efe7622e5c4a6690cf50bcd7fd2627d758722a37f894d15eb48a1b5c6f15fa846d27012fdde2999d346c1dcb3996ea08f25dc3f4ef09ad08d6b3eefcf5f2ec1ab025c44d0cd0cdd8864270cb6d91f26f2fcde4e47243754df4febfb56407227c187fde9c1f27b037ba52200b313d3593f693611808166f5fd07b186bac783d6199c93b55179100dc453a65c1597f65d3abc1615dbdc0fe13a604ee53b1a9469b3b83e68e63db4edf86b99c0003f8c1f93578f2b8dcbe53286ef25f1f830dda4b1af8157a941cab189ca13a400e7532e7b0eb6546bbf63c982945fe8b2a2d6879379f011cb275e81e42b2169e7b35b873abcc6633bfa30714955481c18800e74285b1c78af4fe88d54a55f94e2402ac94093752d45f1cdb739ed1ee88b6eba7e8d9833eec6c35df4fd23ef628390623c2961638f968701a3d31db7998aca04ecb974dcdf7a6be7e41ab138ce632c809a71e1dd2a38b4ce8edc1359c76ac2bea6e4804b55d846b92a2bbca4ead49b557497e761469c45e64765ffa36a6278131e198672e5d08b8038b1660328e71734e84dcad74966046d7fe8b84e4c18512201dfa2ed31d9b8057dc6c53144d9ed8dc9ed9629250cb13bf1f0d2"}, 0x1008)
mlockall(0x4006)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000300)='/dev/video1\x00', 0x2, 0x0)
ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f0000000340)={&(0x7f0000fe6000/0x2000)=nil, 0x5fa7, 0x5, 0x2, &(0x7f0000fea000/0x3000)=nil, 0x8})
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x2, 0x2)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000200)=0x8, 0x4)
ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000180)=0x7)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpeername$netlink(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x0, 0x0)
listen(r3, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x40086602, 0x400007)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r4, &(0x7f0000000100)=ANY=[], 0xff4a)
ioctl$SIOCRSGL2CALL(r5, 0x89e5, &(0x7f0000000040)=@bcast)
ioctl$UI_END_FF_UPLOAD(r4, 0x406855c9, &(0x7f0000000200)={0x1, 0x6cc80753, {0x51, 0x6, 0x200, {0xeb4, 0x1}, {0x1000}, @cond=[{0xbf54, 0x400, 0x3, 0x8, 0x6, 0x3}, {0x44, 0x2, 0xdf8, 0xffffffff80000000, 0x3ff, 0x3060}]}, {0x55, 0x0, 0x5, {0x2f3b7498, 0x7}, {0x3, 0x1}, @ramp={0x7, 0x10001, {0xbb, 0x2, 0x7, 0x9}}}})
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[], 0x20032600)
geteuid()
fstat(0xffffffffffffffff, &(0x7f0000000440))
ioctl$EVIOCGPROP(r5, 0x80404509, &(0x7f0000000500)=""/206)
getgid()
lstat(&(0x7f0000000b40)='./file0\x00', 0x0)
timer_create(0x7, &(0x7f0000000380)={0x0, 0x5, 0x1, @thr={&(0x7f0000000280)="6f65285cbab9663279f68fc25ecc89a62e1fdf80bd45a28d8024bb63859cef37cb78077693f85bb986b4da7cebfc5c822f463bfa865df2d61855b62a640c1cb2422bc7ce05310d2c83f7968431526ab19f4e6927d50eb8a14af5cdb24079abd18ff70d929b118191f7096dbe598ff459a485d0e91c48618dce9649d158f73fd943ac8e53", &(0x7f0000000600)="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"}}, &(0x7f0000000700)=<r6=>0x0)
timer_delete(r6)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_REFRESH(r4, 0x2402, 0xfff)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
utime(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x100, 0x533})
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:31 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x1, 0x109300)

14:06:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x101400, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
connect$bt_rfcomm(r3, &(0x7f0000000000)={0x1f, {0x2, 0x581f, 0x5, 0x6, 0x4, 0x800}, 0x1}, 0xa)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  587.907379] TSC Offset = 0xfffffec371f312b7
[  587.917385] EPT pointer = 0x00000000a966d01e
[  587.926416] Virtual processor ID = 0x0003
[  587.930646] oom_reaper: reaped process 21534 (syz-executor.5), now anon-rss:0kB, file-rss:68kB, shmem-rss:0kB
14:06:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x400000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:31 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @reserved}, 0x10)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000480)={0x0, 0x36f4, 0x3, {0xc, @pix={0x0, 0xffffffff00000001}}})
recvfrom$inet(r0, &(0x7f00000000c0)=""/4, 0x4, 0x2, &(0x7f0000000100)={0x2, 0x4e23, @multicast1}, 0x10)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f0000000000))
ioctl$VIDIOC_S_JPEGCOMP(r0, 0x408c563e, 0xffffffffffffffff)
pipe2(&(0x7f0000000340), 0x80000)

14:06:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x109042, 0x0)
ioctl$TIOCLINUX6(r3, 0x541c, &(0x7f0000000180)={0x6, 0x6})

14:06:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  588.159605] *** Guest State ***
14:06:31 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
r1 = getpgid(0x0)
ioprio_set$pid(0x3, r1, 0x1)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000000)={0x7, 0x103, 0x0, {0x10, 0x3, 0x7fffffff, 0x5}})

[  588.186297] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  588.249436] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  588.265523] QAT: Invalid ioctl
[  588.268861] QAT: Invalid ioctl
[  588.279290] QAT: Invalid ioctl
[  588.292999] QAT: Invalid ioctl
[  588.306522] QAT: Invalid ioctl
[  588.309890] CR3 = 0x0000000000000000
[  588.324603] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  588.327565] *** Guest State ***
14:06:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000040)={<r3=>0x0, 0x6}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000180)={r3, 0x800}, 0x8)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  588.359408] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  588.367227] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:31 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000340)={0x9, 0x1})
ioctl$sock_bt_hci(r0, 0xc00448f7, &(0x7f0000000000)="117306fd4e9de31065a227f6294ae31f1bccbb64974cde0002411926e6941a725f825ab2b57ab31d071017c12e2fda4cd9caa28f378c35b29a55f774953855a0fe69e187039c1cd425151fb8d6ff201a0052ea41a871ee2fd43b915966a0c7497d88a00f6095f1d2984f8901883de5683fc4c65e4e2921cfa406f9d1f978c36b9044ecd860a444baf43c20578476843bdb061921")
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x17)

[  588.407144] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  588.434465] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  588.448613] RFLAGS=0x00000002         DR7 = 0x0000000000000400
14:06:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x4000, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000180)={0x6, 0x6, 0x3, 0x1, 0x6}, 0x14)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f00000001c0)={0xb3, {{0xa, 0x4e21, 0x3, @rand_addr="88b5b69613d3b6db849e11427b0572b2", 0x7}}, {{0xa, 0x4e21, 0x5, @loopback, 0x6}}}, 0x108)

[  588.482978] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  588.505795] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.522741] CR3 = 0x0000000000000000
[  588.541361] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.550155] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  588.572318] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.596079] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  588.632103] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.639346] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  588.695167] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.703107] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  588.732708] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  588.749977] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.785109] GDTR:                           limit=0x00000000, base=0x0000000000000000
14:06:32 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000040)=0xc)
ioctl$int_out(r0, 0x5462, &(0x7f0000000080))
process_vm_readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000080)}, {&(0x7f00000000c0)=""/56, 0x38}, {&(0x7f0000000340)=""/108, 0x6c}], 0x3, &(0x7f0000000580)=[{&(0x7f0000000400)=""/139, 0x8b}, {&(0x7f00000004c0)=""/177, 0xb1}], 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x2042, 0x0)
ioctl$RTC_PIE_OFF(r3, 0x7006)

[  588.785920] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
14:06:32 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000002d40)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{}, 0x0, @in6=@dev}}, &(0x7f0000002e40)=0xe8)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000003600)={@initdev, @rand_addr, <r4=>0x0}, &(0x7f0000003640)=0xc)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000003b00)={{{@in6=@initdev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@local}}, &(0x7f0000003c00)=0xe8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000003c40)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@dev}, 0x0, @in6=@dev}}, &(0x7f0000003d40)=0xe8)
accept4$packet(0xffffffffffffffff, &(0x7f00000044c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000004500)=0x14, 0x80800)
sendmmsg$inet(r0, &(0x7f0000004800)=[{{&(0x7f0000000300)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000380)=[{&(0x7f00000005c0)="c76b3f064af517d5a0c9a0fbec697aa3b48245b86535c746d1a4db3308e0fa735ad7b19672924f7417ec68f044ed792a9451abf63bca7f766878b25d6e864a6b23c5cf36affdedee317790239ad6eb91029f86ac7c724cec32a970f3551dda2f0d06b4fb9cda8c90b3b7a014b7dbe1bfd1599f3b54f5ccdae3b6050f94d43637efa6c59096bbe4f5c9a1ad21a5870d09684ae4edf78bf58d709688bd23a008", 0x9f}, {&(0x7f0000000680)="35c2993a92adaca226cd097b4a75734786e5a1d94e56d780af5a3e28bc03cd6cc221ba99a7a16c034e1eccd372794b3eb089a5afded6ac0bb9ae1fcbf61bc290dc3f7771d5946a3c2a87bdd4b29aef2eca60943f69c3954c1446da25cda8ca5bc4ee1c4a9933418480d279d0fcff26fb08c1f4e5b2d66b1b2f87b60943e5c23c41d1e7135b5e4ecdad80d3f2e6b29679bb7e88504b82d70aaad7d1d6e3752a33013d67aedad007ca4d055b3ecde36bb9eccdfcb5c6e2e28d32d15b98f9f03d678d6a7d41fcea2d375f880d2f7ce7cc6b882881f748ff45ea34be69e5558bedfca3f313abcfd245e2d638de647cf28cebf8b03d5b685e6db3878674", 0xfb}, {&(0x7f0000000780)="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", 0x1000}], 0x3, &(0x7f0000001780)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x1}}], 0x18}}, {{&(0x7f00000017c0)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000001940)=[{&(0x7f0000001800)="8d5c8ba5410ae0c91ed6f572e8861c15aaa8125c50116b1fadb27e6e20a2bdbb8ce3f422504fe613f04eb25891a9da396601fc9e3fd5d8ce4779811412b24a75a96e7834334fac6cb5ad44a776de9bcf0c33736e01b503a0973d09f90491bdff8f46627f027bf8028c2149b43c8552fc910252630419dd28114c95022022dc708dd38050518bc37585531d4ed745a5c03581913ce8392c387c51e111a5ca0d851100202807309eb1e3a16ae8387f308353c2ea88508647e8f62a11d7840cce720b262f8d070e4f163e83a45967b951467dbfc5f0b17239f1b4264a1d6287", 0xde}, {&(0x7f0000001900)="d4eec0654520ebc7ae2ebec6121453cd04ff497b", 0x14}], 0x2, &(0x7f0000001980)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x100000}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x100000000000000}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_ttl={{0x14, 0x0, 0x2, 0x800}}, @ip_tos_u8={{0x11}}], 0x78}}, {{&(0x7f0000001a00)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x27}}, 0x10, &(0x7f0000002c80)=[{&(0x7f0000001a40)="328ce90341cf3dc49abf5dc2b6108ff4155e70b4a2a28a81fd78a8b835508a9fcaf82070ae84c4b5f6", 0x29}, {&(0x7f0000001a80)="f6593fe3761ceccc5c210c4b3ae94ae22f40ba16f55a4f2349c9525f46aeae4687b1b39ddf41d7653fa5a95a17631b1b0fb77c7fd280662659b167bbc22304b94b753a5553a7508d13c23839f012580ebbc0b031e48489cce94c0ba1d150c4d76801c49dc863eef44614406ab849d9aabea6c5420392d4babdcb5c72c25a84b3d8593f51033a15caa20eaee5f6067a12c1edcb2506a3342bc15e7f1a942230462378254bba6c19b57c53574aa6260c0f55e54293c6e5cc88a99b639a7a64d29adc09a8c59932edb09d6a15f08eb625bbaf61523df0df551e9ab74135b54b109c4d6228224ed33cde627a19a4270f3d", 0xef}, {&(0x7f0000001b80)="99391e77f1a83fe306446dbe6d3f2014dee72b6f392b5077a39bab68f8930b0c04e7f5d26cfe387ccfbecaa909ed9febcd9d0a18ab9f0a5db9a1119e405720c017b5997e81ad3d0dec23dc2b76ce668560ebf806b4b5d3c66615006999e3541b816ec8c1a80591b45a7543ea17e9ccbb50", 0x71}, {&(0x7f0000001c00)="8705c4ebd82dea868c492a6492c7f02b6808d16f268dffba69fc872f3498c353e4607e3351af901032c959998ec0e340224ff6da8a00c708ac451f47fecb462fab64c9724120857d5aaf77a6cbe73643bca0fd654a825b7daa18ddc8f169c354eddbd7c0", 0x64}, {&(0x7f0000001c80)="d3cb8ceb2287688a89e360e98e1f3c3aab19ad45ee75262bb0449a3f867ff063731222b0a0302d22984fa621e61705ce3d386f1bdc15f6771c80c20f61981d15ca7014dd012f758699ed06817e74268e7c20a8c571db3e9f33799f3915518639c89dbd87b2140029f41bec6f472154606e61f667afb42d130933234fc88fe99b84e3ab1ff1252be319776239987c5c250d59903c94fef78ab58e05269d00945f8dcc462a86d14551e387d0ce174a1edc98cc13fade027208c790a8ad7bca3df01bd678b303af0719297a3d11e6ee13d295ca7d3f93eee26834cd36112f137b121f166806d078e34fcffb94b0d51313714955c2b03c44934b253703b53dcf02cb352869bfa30bf4fb970faba634339c41c387a4e52b748ba2a053866e98731543b5beda9b10147cca5fdb05f8bea0131293ba359ad5ecea993c4ecbfa7830bd2bda4d8e555d70dcdc43a42a5d72fb1282e8654c1e86c6c8a7744a8b71976e02dcb438cf0a17afcc1df45214567a4a07d24965eb20b0d562d466d27e6789eb48649dd8c26701e9d3a504b27207550cfca808c404bffdd9509a1d44c7dadc3327c51da1649c407cf4c9f7b3c681f55cca3d687b6b31f824dc5dfc83922d88b85bbd1cf0edd412939cf08a74ceb59a9ea76966e93dfe14efa70ecede4d0478fbef7d6c781f99c001b7a410395eea6ba556652a09e32356c60c48d7d5c07f8903fd99fd927f27430334bfb32d0973dbcacfbd3431af99f43cce47dff78edef8e3c4ad738de03d74eb58cbc4ef4a60f8983b1deffadd219adb5aab75c4a5773adf25916d4331dc66bd222e56dc4b3145fa8c3ad6f32b5746c73331c91e7cea37593ae64d75516fa6ee50528bd4331990d3a9aef5627dbe803edb7d618f919ad66aae7be56c158c50ddf7fb230df3647e8eba869c0df39e7df761ef25c7c1d39f7322c7181da205ef725fe98824c6464e02c2a4e5c666d6787f1b284397eddcd37c9593da26031e45f84ed078e9f3d94fdc18ca1e13579c8840a6a623adc4964584392b4d12092e233fd3c0853118e580d421fcd6fdb5b398b78c6c321660fceaff04e431703469f59b18f0d0a7a3d7caa8df9666118d5d2ab50cfc4f5bda843e18baeb93ade5b348fb56f7c11d0974cd0bb65978f1cc742c57538c99fb01797473ab5a345700ad9a7e2b2aa709757b8b4e506fe630f36d20fa0848655991880148c6c2623fb3cf623ac2cb4075c5b01ed49bfd6df25b7ce43291f1a51242cb8da6175e6cd0fd8dd2fc083a596787503be97d42361a07eb783b773449ef086c953bba95d32b62510f59d3a494502534ceb1f50a2c643c28cbb81ad33313955eb450df77dcb5d07e85459c0f7b57ee6726da4fdff8c646b3f3a8ccb4a3f6507cc59840b5a2e07b58865be5ab5895b41aa2422c42ef51d2060773daf0054c0bf419a89a3e9d3a99f52f8d818420f8975658b43d6d609da12c8ed1f8147462d52c8f2665fc8653e5a0f0c6a696711d117522e58221d4d0abf9a2ef0924d60f218170bc8823d2978b8c76e3fb64c6f8e56d1fcad9d563177b5674a7c602ff6789fe7e89e74e016658377155b9bb756fcd6d53d005fbf312d8a70b3182a1c3ce54be93e2810f8a4e30cf673cfe56e1f0723b64c8c306594af298692da87effffdfc230607bea8568f66da89b69cd1095204d6721769089ff83a818428a9dc3103a5d8e0997437f7ed3e3171c0aa6a7672d26315effd4da5a7350bc60c2fe9e0df2c4d2d556344c0e529791eba3f0c2975bce0b801eddc2967ff850e74b0b731a69548dc50944609157c178675d6214cc9259f7dc4d7f05041112744ab5c51b0dd46ad3ee48189363bbe725dca271fd673c2508a7f1840fdef06ee0976cc94435b356f95c10cf33ddffce3976b08f55eff4a25691b85e20874a234403502d7a27f4cf6d23af0a46978170f18c9797aaa33e54a65e1f4e608fc482ec7d51091750f30b860ebb99a8d8c520a3622844becc4322c94a3cfa0057c25c27bbc89751e269e7ae1023f75e5af88c1695574f88747b6a1081d0621a79d61768b1e3cf27a21d22962ee3d9cf3ccee5e3db0ecb1389c0593129060535dbfab816a80eb0b8ea33bbcc49bc6ba5d8e8464dc49b1c65265d2dae4f178c4f53facad2081feddfca04f00ac515f20925e88e52238cdf5c984e370583cf36a89dba237a933a9176a92a47aad6532a35d5829657115a311d0975fb4522ce41ded916ae8ff29145674de302bd495d93658a3777c9c643c55ff9505699259f002105e406421366b6dc60e40e4bf0d05699ba7c79b0c6877026127d4d84aa900fa7e8c40f42eaa10bf980cfcd7b0c5ba6a1452fb5499214c32628c516f0082f906a54d26810ad86ff53e04db4de526e0e918be4384022208f90365088b288e6870fdab06d33dd9856b71272faf3f8cfd1c873b0476c216d593ef41071f29b29d7eba8e4d916657cd19a6747543cb338915365aa62f414ffefa02b259784904f16b597705173f5439a1b45e98e8e29399cf446c0a3663cd6308200186b1181559ef18ccd01d1ddc150f097f5dc409dc64fb47c80d2408539e2f8a3d05ca5a9ab2d84a9263ef71a0ff93e0fcd47d19b561a503071a89933e253dcc21cef82dc26202ae583875e14d2b6dfc84ddd1ca269ff9279c75d6e9f767a836ebadbea9970d55aaacdf1c4668ca27dfb7c513ccdc2247363cfe9ebe45b9e7236a5d7756c916a8592b30f4cb55c59f8da7fbe7201d7636e69230cdec13cdcee4883a44697b18f95dbaf283c90509ab68506bdac61922c1f904ba2facb7443f9f566195813462f618cf59cc5be2a84a93200967fae35d2b0b1c9883b3fa93b9dde89119f79ad39e816c2d21ebdac50d10a12d4a7a788ae70ae2486e7ca45cb0f97aff90f5e8b5415ca5d2854490bfdd3a022ae9af55a25dbbf72b1dce0a9d4d9b1f0270647a3fc2aaf34967b4e35f2cd2b5f9ca5621550056cef7303923675209c3c7b96e828a56d4afa43b0b920c21de0b327b497cf30451374d6abebf42e4e2d005361ebd9129c4d9c41f0a930ec24adb665b23ec3a5abdd4124031f98a9abf2f7c2730a0ea0fe8a115fdb7c2ac3ec56386321d200f6f5bd097dd6907abb52493118e31102f9695270651f4478183dd256ce9417ee4b49125560efc30177ac34d28b683d713a14e3a08d8d9bd76dc3c9c3e126b4bae77590423e2fda8151ad6f48f19eae3f9f268319d936c23ffc1ceb9368630d873ec5cc4f02f43e4c3c872193c45c8d2e9788211b58638020fcdd8291a3f1df3053c7c612ca4ac2a24af2e311154ac3cd46cdc099881659b1433b21052cda3fd9f662d51129ab7a3dd61df2c3e32cf579cae776be6269462d52bb092bcaa4cf851ceb2eee607f86e9a2c3364cc4a80a36c0bc131446b36c3be5c5440a41f1283b8e8e1d1fddc72a8b2990f40a5c0e5d6b484ed11b383e1318d7b8793ac85eca255ed16f32ab93bdd006860946bb4048f32adc79446892a84659849f264dbb4d10947231afde0596bffb87f8ae406804ec48f516041ac77b657f7329850e582a61e49ee4cc8c72e83a4aa469a1384eb71e407a29a08ef48b337a2c2d2dbbf27612ae09498ff89b729f2d459f8fd900149c1d1a75f58b9345d803c18edf4025efba4e28d3c31523d7c31af2449beab7380f91e0bd62d88875474c7cf27990c47f957ef79648d5c8c0944f22c532a5a58778c10d24a730e657ca0fe02fc76a8bb4a4e9790bfca62daf123de96a033a2830249be7495743aa8b84bc42e6e4e6ba033012802ec4f1265c401496b56b10899424663dc3b39a2bfc1c5954f091b0bf23ae71b53d451fcb75893873f5f4d0b1867093a9ccb2e264b380eee73930fb520f78383d504ff05386d7958784f28839945fade10f73a0873683e4a93e5d607e2baa9826373b08395f2511726aecf91966cb606eb044a8099cab27a0dccdc20b4eae14fd83a6761f6f4785c35d4611ccf4707c0079afaf3d138bdc009b6e24f0ee5fe63070d5e44e94bc85379419477d972acf31c86150b0fa4587e3b526c29e721f842122fc92b20ac7f4bbc5e3183f041fbb0111707e9807bdb03ab52e95b22dc63e8e5c279c6e3394523074f323f8ba4b2c0a946360264eabefbf7b0ef41a5884ec61fa13a2054dd5769f54fb2eaa8849fed21ab7db4ad7a07c369ce2454f628b873c4fec5f1468d3394c17d3bda538ee96e774a0af66f9c744429ebf999f36a35cc1972d32684d56432434fed90589d0344b5296035c8e6b9cd991c6e4b07523eeca00ec3acb135f13d9b49b6cbeea74f86941707a1b5236dd8bac334ac43ec59ccfa15bd765d9a33230e7970d0aff788a8d41eb381f65c9cb25eaab015edd88e2adb058b445fd0f13d4afdbd628dd3755fd358a9c60b4142fafbca37172df7cc8b3fe54d339eb44eaf185ee7479bdb29aaec1b1f01de684f322e980d68e51b22805900a0bf137350250ca8f2eaa4f4be1b384e7bbe1473656e010b41913b2087400cea98738e9689d345b65c62c29ea64a9c4d29c174c99526919e4c0ae3f0641951af07f9bdf26c342684188cdc82498abe47fd3b6df77b46813825e72492267a1e41acd5e7836b1af45d9e8cac4d18aa619dad7bded0a9929081ab8dd369b51630f44bc5f9da3025245a24f78d4db60b27e9a1837e76db4036a645a8f6c5c2936af613befa48aaad2807ce5d035d16e698283c08be5c78a6b61e2ea1d8337b6dbdc323ebff6fb50501872e596be8a6af22051e0eac8e1b952310f5a02d2755d8d393dc4fb85c6869a9bb6bcd83d3fea78f8a65d6fe512e5c7be47fac227d1af1d5438d05f656c485168fa4dcbffcdb2a2b43f471f7d13369dbeee801d0a367b51886935509ecc6debf95732b03d82393c611f5a827e714c535a1d03384cae0b87a55684a6de4155184d3123c4cdfb0753059988875990617870fef3b59407b2f4d380ed064b31a8285b367b19be762dfc0545401c0a68f62cbe39f3414eb03384b9bce0259363aaed2537c54127346d6b1aeb8e94001ad99e358bf2b1035b18af9fddaf800a20b9cbd7280a937e02439dd75fc735b7e9cc49921a1c1c7391930596b4ec0ee129ebbe693be874eeb8820971df8fcc2b93d5e216fc235abaac556bdf5b1cf34adcbb6ded9ece4476cbdf9ffdb3591632635132cee57afa9dda0f8bd4d00c37121743cc5fcc52f93bb25ef1098d583629309132fc6a592a54e17b63fa6984452f91e8e57995175e546033b0dc25c9ea64cd7b2a8e6bc9122c06353791355945c66862d242ce97c1eae65ccd3996746b2ad2633e9823c07576f601975d118abfbd5be02c089fa9430075ba37dc8f62343ca111b9dd754a2e213277fca68d7d2a84a89c529284661c2bb359f75755d42cbfe6ccc3d2e5e6044768c9885b9a866ebbc35c41dfbd59bbd59c07fc2f72948ef8be89cc4e369a53b5e6a428b7a5bd3f6c699812227be4e0eefe38ade06d72d9187b52f4d922181e103f1b924d2e3f2c702de61a856575f8361a5fd306f7920360fee025d1472d3ba0a0018f0139a3fda1dc36d2afb3b6afcc0b43910f945bf2fe9d83a4af4aead530f28d3b23474c4f317980aaa5e20117b5bed49cb5da534d27e8e31af5d397e9d4b2ed6ceea1214fb0eb6817e04a440752177e2edeefa53e58ac2f21193c90bf929a04b0060af6d9d77323cb39e5eebf432998b5d7a53107d3f3f99f1a88bcb4797cc743a012e00001aa8c0b10102587b05b6fd81b010ffc9bd1fbf66f96bcb3ca373a", 0x1000}], 0x5, &(0x7f0000002e80)=[@ip_tos_int={{0x14, 0x0, 0x1, 0xfea}}, @ip_tos_int={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @loopback, @dev={0xac, 0x14, 0x14, 0x15}}}}], 0x50}}, {{0x0, 0x0, &(0x7f00000031c0)=[{&(0x7f0000002f00)="2c9e633f527eab367ddcc3404649cb1ca5771679534ecafeb1b5789c2419cab74edbdbac3ee43ed9eec86e5be76e26c9eccbcf2a416011da46fca33d1be95cece097bed88db3fbff1ab21478e3075c97a7c83cbbc40b29b3f7d1ce9e29e255d0b8c3170eb4b352eb2047b753b3021d36fc5a45e1e261a353", 0x78}, {&(0x7f0000002f80)="b8569b798eee6b36cb71f18c0d3e5e401f0a69a52035921042a1be8d921f5bea6098bcd97334", 0x26}, {&(0x7f0000002fc0)="14ad2da4686afc44ce7dd41b76da22528e", 0x11}, {&(0x7f0000003000)}, {&(0x7f0000003040)="d664fda33ec40757a79a27047495c2472785d153973db66b21aa01e61ae0aba3df3ce049446ce91674637cbf6e6bdf52b681d15bc45a4df8718b41df8938eb22467044b528dbb2", 0x47}, {&(0x7f00000030c0)="ea19da473ded51ed09863a5e12a3aba81c0607d0044b7e03a38babd9fe32ec155b4bf9714543715aaee618eee92f9093e30df67eac08dbc580804844d0acbe28790df147b9d5bbb86ede360ff8b5ce18a946492d5adf85a5c921e1fc1cc073d523df2fab8ad52f9c09082718e6ffb8aeb6435324c4455930e9d4cdeab20a12ed26f3b3e75bdc2455d94028d8d84167befe2cb0558bad72998b134b0237aac601765b426d73a911497cd7ce46cb1bbac302191b4589b9ad303694b466bae274690c1571f0b3b39f83941fbd7a55c6e9429fd80b7e8b9c1e9aa89c8c7d2c76ae4a43b7bec011", 0xe5}], 0x6, &(0x7f0000003240)=[@ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_retopts={{0x10}}, @ip_ttl={{0x14, 0x0, 0x2, 0xff}}, @ip_retopts={{0x88, 0x0, 0x7, {[@cipso={0x86, 0x18, 0x1ff, [{0x6, 0x6, "25be9766"}, {0x0, 0xc, "44f05b66eb247c3008c6"}]}, @lsrr={0x83, 0xf, 0x6, [@multicast1, @loopback, @rand_addr=0x7]}, @ssrr={0x89, 0x1f, 0x0, [@multicast1, @multicast2, @rand_addr, @empty, @remote, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @rr={0x7, 0x1b, 0xaa4f, [@broadcast, @dev={0xac, 0x14, 0x14, 0x17}, @dev={0xac, 0x14, 0x14, 0x2b}, @dev={0xac, 0x14, 0x14, 0x11}, @loopback, @multicast1]}, @end, @ssrr={0x89, 0xb, 0x80000001, [@loopback, @rand_addr=0xff]}, @ra={0x94, 0x6, 0x8}, @end, @end]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x46f61d88}}], 0xe0}}, {{&(0x7f0000003340)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10, &(0x7f0000003580)=[{&(0x7f0000003380)="cf1bb9fd47636a039079f522ba143ff26ed12a2a53143b11d2f49f4c8f925ed9d06e16ed3a63fcdd6daf4e6d910fac9cc5d60d60145b166b0a3bfc230d29b02137dacead1669beaaa7873fc9d21f8d6f176dd8d6d61aaa724c33aca9b496b33ab23d1ece28ca7d90afd135295347f6d2638f5ffc2870d21e4cbbbcaaff2c153f012523947f29fd6b762cb98362339b2971a5e17fcbd38fd2212ae484dcb495c14f713315a2a869a1a6d56e06ed36dbafce", 0xb1}, {&(0x7f0000003440)}, {&(0x7f0000003480)="85e5f5f383b27f92e8e828f886b3b49f2c", 0x11}, {&(0x7f00000034c0)="5c441c781e", 0x5}, {&(0x7f0000003500)="cbb0c9716f9ec9591cbfc58bffab700d9993d6289481a82f7faf4033842620a9e20edd246ee4ac489ff790457805c57ff148f385465166ece8d5197566ca7861032ba142efa95a9ad61fd7d5b2c892b05ad5dd", 0x53}], 0x5, &(0x7f0000003680)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @local, @rand_addr=0x1}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}], 0x38}}, {{&(0x7f00000036c0)={0x2, 0x4e23, @rand_addr=0x3f}, 0x10, &(0x7f0000003a80)=[{&(0x7f0000003700)="ca53708ec81a4349c3", 0x9}, {&(0x7f0000003740)="0a7aef80b26dfdb5573a14b2842ac0e565ea8f0e296b3c70a4d0ecdb2471a1e1db792555f2fe81a0fd2f120bc61b051ec946008ea94a74b45d9f3fdd8706a557aa4951055125b27a329395ed88bc01b4b2dada6e0c857bca564e8b0e4ecf9e513018414ae6910709125f3df7a5fa929840828c4ce31d1946107bb6a3aebc0bde3a249b0db1807352a8d5b07dfb2ca7c33b1862ed832df89cae24d04d52d5ad3f8315fef7938257b131f6a322b397c5734cf7bd48527eb38e5726291c3c69be1a40612f326ce97468", 0xc8}, {&(0x7f0000003840)="f803e3b4139d53ca5909ceb27416e385a51ed41e630a44b31121663189ed0370d208304973a99ce593973a3299334de16da4a7aa3955559f0afc38259bb81b", 0x3f}, {&(0x7f0000003880)="95b05a159a0c4d5982dc13a3919d118ff1da0e52f6fa3caaef424ad0b82c02472ead9d05e8a3d5772ad9504e1498d1b56da345e79c668efec1b74c8a33b9ea50d33a51005edf043f0462d1495a5d137d388e37de0521d1407014", 0x5a}, {&(0x7f0000003900)="be5d2c9b8b5afc30455789e8b72a9d92893a621b274c1ca2b5287655c3fbc6db4f4676cfe7f06317d830ce01f2a7684a7e191ea10116c9294f3e9d52694b9d748be1d337caa0c3369591df7cab5038e4ab424e60b4cbcf9113366734a2065908ef9b8cda3317370027bb31185a81014716688d858be4924d93fdde30ef5c56", 0x7f}, {&(0x7f0000003980)="140281670201d5f889272cb17a35f7f5195996365b7fb65bfa61b2949c5eef245c4d024510742c74bdc4cbd5f58df917ea0771ad217a119e63e2098d7db59045679c485e29aa3b14fa35db0b0a1827643d081229c301ce0eed5660dfce50b5b002f9a03ed0b3a530e26e4f8067ce7d7da70b9b45ccefde91723db9ba0b5d0de13d3d1df3216d134b3d7de0b9aab25be2cfcd7d66d3228538560b89b459b09d5056683af0931c315f72", 0xa9}, {&(0x7f0000003a40)="9b05b9d64d1b269139b41d2a56817b243afd3807d62056b3f0a3975cc3181cc0", 0x20}], 0x7, &(0x7f0000003d80)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x3}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @multicast1, @dev={0xac, 0x14, 0x14, 0x23}}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @local, @multicast1}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4000000000000}}], 0x70}}, {{&(0x7f0000003e00)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000004200)=[{&(0x7f0000003e40)="0abbc67b2b8d1a6842a740a6995e312c7f163586fcfb9f1b0f00ebd41a6d16562071025bae1a850052a3ddbb5c7b2cbfc90f7aeb2f94877bbbc6a995654820f0932db0be5a58ad32f59370bea269070a079c954dd7125866b0e0d93d38144e515c4ca96e9cd2184c70ea1ba9be3a7fc7b171d6b5a2117c6b824e76f7fc622f5bd7c8f28153bdf9ad228cf9aa2f202a37955355ef0aa9876d26ef19b85d2eb953c47f9810b63f645734b91275d7ccd7f2e2405885af753ccb862bff5c0a63da1123503ab03f6c642d15980484544d167c408ed056226d3e881c851403dcda2e4cd24dd5cce3b3964b12f04d32d86994", 0xef}, {&(0x7f0000003f40)="0b09464b4962053c1193d9e6263211425361a7", 0x13}, {&(0x7f0000003f80)="9d74414f2f3d7cb34812ab610706c132a043cefbd8b1b8b32ec72d9d14828683ad5c94e9b24b5c72ad4532ac6fb09ced035479d64483a7dd3afe077004892bbdd73b7c048fc7fab48df21dd51aa85af24269c0e57b6634dc009595ad38df8405882bf177a11a1edcce12dcefd5391b77751b2530a4f4168bd1c9993bf3ab23a52e831c85e553c20f2a287ea2844d5d377ed532298c9e70aa9e63d1d2961545cd3a16ceaa2a9ae7735f22", 0xaa}, {&(0x7f0000004040)="f45d5879a1cd5db254ac909d959b3b547cf2a29fa8b037b216ec8f6bd3ee8a06a7a755c131ca63f73f5736184648a7a33e94d0c1d0a23e5a5e555386d085dca304094a3cb587a9f5f08555bc9296", 0x4e}, {&(0x7f00000040c0)="d5441b0abc8db6bf6ce4e2861ea59e880437f8f95239a3b1b82f3559be49b99fbf2e6e7350a8377d1cbb0ae18c3f3249cb4d80a197ab138918faf3d5b8462a30f3a269054de351265c04855857b1fde3570eebf00386de3db6046f546d486335109d9a82105943ad92b4f2351b92a8d7fa930674ff0ce4b7713f4dd16d8a0a5b3a6d1b52d682abd0b3e09a4cb4c9cf7a26df6bd81982cd0543563ddbe6d8fa317f52cbee94d49393a9784734b1a8e5ee7cf6ae135306bf", 0xb7}, {&(0x7f0000004180)="bf0890294c6740ce43954b8c98311c5e02734b3e4cd1e775f116a0ad99e172c4585e5541470054c9e2badcf9832177ed8a6d3552512babbbbfda89ff6d13b11ad21ee1", 0x43}], 0x6, &(0x7f0000004280)=[@ip_retopts={{0xc0, 0x0, 0x7, {[@noop, @lsrr={0x83, 0x13, 0x7, [@rand_addr=0x5, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2]}, @ssrr={0x89, 0x23, 0x7f, [@loopback, @initdev={0xac, 0x1e, 0x80000000, 0x0}, @dev={0xac, 0x14, 0x14, 0xf}, @local, @local, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x15}]}, @ra={0x94, 0x6, 0x4}, @rr={0x7, 0x23, 0xb1, [@loopback, @multicast2, @empty, @multicast2, @multicast2, @loopback, @local, @local]}, @generic={0x89, 0x9, "b5754e2467b1e0"}, @ssrr={0x89, 0xb, 0xe7, [@local, @multicast1]}, @ssrr={0x89, 0x27, 0xfff, [@dev={0xac, 0x14, 0x14, 0x25}, @dev={0xac, 0x14, 0x14, 0x1d}, @empty, @broadcast, @empty, @dev={0xac, 0x14, 0x14, 0x1a}, @loopback, @dev={0xac, 0x14, 0x14, 0x16}, @rand_addr]}, @rr={0x7, 0x13, 0x100000001, [@broadcast, @dev={0xac, 0x14, 0x14, 0x10}, @broadcast, @multicast1]}]}}}, @ip_ttl={{0x14}}], 0xd8}}, {{&(0x7f0000004380)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f0000004480)=[{&(0x7f00000043c0)="bced279cae3ee9707716f80e9b85015cf09cecd601d98ea538d39f14e46998f3cb16505c3fcc6896f9e6d18e85b49a5486103c5f9830307860d6dfd1acddb4225d80fd31506cc14e992303205219ddde203d6423a73d05b959774b9a5f75e6def1453e07ad531e4bc8e8ac56c1d28bd8b94fc08ebc5174fc13d293c577ca609afd6815a3e599b667b8ae039a084fe6365d3bf4657e5887c17686eed465e3e37b8b2659d5646f140d53d6253111b565", 0xaf}], 0x1, &(0x7f0000004540)=[@ip_ttl={{0x14, 0x0, 0x2, 0xffffffff}}, @ip_ttl={{0x14, 0x0, 0x2, 0x3}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x401}}, @ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x10000}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @dev={0xac, 0x14, 0x14, 0x18}, @initdev={0xac, 0x1e, 0x1, 0x0}}}}], 0xe0}}, {{&(0x7f0000004640)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000004740)=[{&(0x7f0000004680)="8b44b22d77d2aefc0a0ef803c234e977fd416c134a010424bbe58da7fa2594452d86984618cd88e5977146a46b2b5d440fd08060f448709c3ea9c38a3aa4cdebfa4fa2789bb965ef3d5a833b322894e3965ecb7bb3745afe7eca0787c335552ee53cf28b6ea1cad859", 0x69}, {&(0x7f0000004700)="20be24ed974303937d2de8409039c328c96a62fae0b8c6", 0x17}], 0x2, &(0x7f0000004780)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x40}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8001}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x41a}}, @ip_retopts={{0x14, 0x0, 0x7, {[@end]}}}], 0x60}}], 0x9, 0x4000)
r8 = fcntl$dupfd(r1, 0x406, r1)
write$FUSE_STATFS(r8, &(0x7f0000000180)={0x60, 0xfffffffffffffffe, 0x7, {{0x2, 0x56c, 0xd5, 0x5, 0x400, 0xfb2a, 0xfffe000000000000, 0x3}}}, 0x60)
clone(0x10000, &(0x7f0000000200)="09877ad3c9eeec7d752640d573e8c3514105fe830cd895aed773ce6f0274f4eb76b1a1a6e25a84dca51f03ffc3a45ee3365f4fbf8206590641c987349d82ed9abdbe967a65e6bb1cd96b1e87bf8c2eae269608fc08a59fea06b7221ee4cdf2ddb93362f2bd6fe092f5fcff9eb092707210519161d453fdd04698009626fec506c9f4f35cbb4137fe2204ac65eee3d1c58a9d4005b6181ada5e0c9c5d8273865a6e72b4377d1d542e7aaa2d2a4a54d856d9056afe2032cfcfa8bc55fc", &(0x7f00000000c0), &(0x7f00000002c0), &(0x7f0000000500)="7a78e9e6d852cf5efb7be102b98dafc5ac3848fbc3032e93043544dfaa749d2def97fd02adbcf7cea555839594681395a2ca91641779370d4f6ce04b1c18355cf320d37c9bb32eb251cedfe8763fdd44abef0388dc8a68969a75241d620145fcf91320475ff137b0faba498ba779bd35436c6a1959e07ef6cc89fdcd9a6e557fbda63cbe3263e131386a1074f3d44f3138f0c0324d81f481bb6956b31f948f6cb81dae2826da2620bec8eb9f")
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000000)="0f78b00600000066b8f2008ec8360f1b4047480fc76cb5f1b9800000c00f3235000400000f30b90e0900000f328fa808951517000000990f01f8c744240060000000c7442402b88d6d5eff1c243e67428478b4", 0x53}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$amidi(&(0x7f0000000180)='/dev/amidi#\x00', 0x0, 0x80)
ioctl$TIOCCONS(r3, 0x541d)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000))
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r4 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x9, 0x4680)
ioctl$RTC_ALM_SET(r4, 0x40247007, &(0x7f00000000c0)={0x13, 0x0, 0xb, 0x5, 0x3, 0x7f, 0x2, 0x2b, 0xffffffffffffffff})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0)={<r5=>0x0, 0x6}, &(0x7f0000000200)=0x8)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000240)=ANY=[@ANYRES32=r5, @ANYBLOB="0000090000007d0809003a847f0000e5fffbba0a0010"], &(0x7f0000000280)=0x1a)

[  588.839167] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.873713] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.877424] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  588.903044] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.932219] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.943747] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  588.990538] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  588.997829] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  589.012686] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  589.033824] Interruptibility = 00000000  ActivityState = 00000000
[  589.067742] *** Host State ***
[  589.070385] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  589.076674] RIP = 0xffffffff81173b5f  RSP = 0xffff88805ff6f998
[  589.117230] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  589.126079] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  589.153873] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  589.167385] FSBase=00007fc7ebd65700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  589.181911] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  589.193856] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  589.215026] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  589.224719] CR0=0000000080050033 CR3=0000000093a79000 CR4=00000000001426e0
[  589.253413] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  589.266593] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  589.278068] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  589.281929] Interruptibility = 00000000  ActivityState = 00000000
[  589.299445] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  589.302729] *** Host State ***
[  589.312164] RIP = 0xffffffff81173b5f  RSP = 0xffff88805e9d7998
[  589.316856] *** Control State ***
[  589.324921] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  589.329596] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  589.338066] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  589.338076] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  589.366237] CR0=0000000080050033 CR3=000000009fa05000 CR4=00000000001426f0
[  589.373056] EntryControls=0000d1ff ExitControls=002fefff
[  589.381123] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  589.388423] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  589.394488] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  589.407110] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  589.409235] *** Control State ***
[  589.421802] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  589.426005] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  589.436270] EntryControls=0000d1ff ExitControls=002fefff
[  589.447334] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  589.449367]         reason=80000021 qualification=0000000000000000
[  589.462267] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  589.475677] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  589.478053] IDTVectoring: info=00000000 errcode=00000000
[  589.490112]         reason=80000021 qualification=0000000000000000
[  589.501657] TSC Offset = 0xfffffec272746ea1
[  589.503138] IDTVectoring: info=00000000 errcode=00000000
[  589.507162] EPT pointer = 0x000000008686d01e
[  589.519268] TSC Offset = 0xfffffec25ca3b668
14:06:33 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000040)=0xc)
ioctl$int_out(r0, 0x5462, &(0x7f0000000080))
process_vm_readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000080)}, {&(0x7f00000000c0)=""/56, 0x38}, {&(0x7f0000000340)=""/108, 0x6c}], 0x3, &(0x7f0000000580)=[{&(0x7f0000000400)=""/139, 0x8b}, {&(0x7f00000004c0)=""/177, 0xb1}], 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:33 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000400)=[@in6={0xa, 0x4e22, 0x7, @rand_addr="cb6b00151e24f9ce03c4f0716b8851cb", 0x9}, @in6={0xa, 0x7, 0x8, @local}, @in6={0xa, 0x4e22, 0x20, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x7}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e22, 0xe233, @loopback, 0x3}, @in={0x2, 0x4e24, @broadcast}], 0x90)

14:06:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x0, 0x101402)
ioctl$KVM_GET_PIT(r3, 0xc048ae65, &(0x7f0000000180))
ioctl$TCGETX(r3, 0x5432, &(0x7f0000000040))

14:06:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000000c0)=<r2=>0x0)
sched_getparam(r2, &(0x7f0000000180))
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x8000000000001)
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x80002000, 0x0)
sendto$llc(r3, &(0x7f00000000c0)="cc0e33ee318b546bf139cbd02373b0b2da4a229057f7e438c795963cf44b8a2473f7a16e6268513e62", 0x29, 0x4880, 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000040)=0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
r3 = syz_open_dev$cec(&(0x7f0000000180)='/dev/cec#\x00', 0x0, 0x2)
ioctl$VT_SETMODE(r3, 0x5602, &(0x7f00000001c0)={0x100000000, 0x9, 0x40, 0x81, 0x3})
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000500)=ANY=[@ANYBLOB="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"])
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  589.525944] Virtual processor ID = 0x0003
[  589.529234] EPT pointer = 0x0000000057ae801e
[  589.540176] Virtual processor ID = 0x0002
14:06:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x420c00, 0x0)
write$UHID_CREATE(r3, &(0x7f0000000180)={0x0, 'syz1\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000040)=""/33, 0x21, 0xfffffffffffffeff, 0x2, 0x0, 0xefe, 0x2f7}, 0x120)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:33 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x1, 0x2, 0x4, {0x10003, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$LOOP_SET_FD(r0, 0x4c00, r0)

14:06:33 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000400)=[@in6={0xa, 0x4e22, 0x7, @rand_addr="cb6b00151e24f9ce03c4f0716b8851cb", 0x9}, @in6={0xa, 0x7, 0x8, @local}, @in6={0xa, 0x4e22, 0x20, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x7}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e22, 0xe233, @loopback, 0x3}, @in={0x2, 0x4e24, @broadcast}], 0x90)

[  589.600134] net_ratelimit: 20 callbacks suppressed
[  589.600140] protocol 88fb is buggy, dev hsr_slave_0
[  589.610249] protocol 88fb is buggy, dev hsr_slave_1
[  589.615399] protocol 88fb is buggy, dev hsr_slave_0
[  589.620537] protocol 88fb is buggy, dev hsr_slave_1
14:06:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.stat\x00', 0x0, 0x0)
ioctl$SIOCRSGCAUSE(r1, 0x89e0, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {0x0, 0x0, 0xc}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  589.773504] *** Guest State ***
14:06:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000040)={<r3=>0x0, 0x6}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000180)={r3, 0x800}, 0x8)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:33 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000000)=0x7, 0x4)

14:06:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000180)={0x7, 0x0, [{0xc0000001, 0xf7, 0x7e7, 0x3, 0x7}, {0x1, 0x6, 0x0, 0x6, 0x3507}, {0xc0000005, 0x72c2, 0x8, 0xef, 0x2}, {0x7, 0x0, 0x5, 0x3, 0xc28}, {0x4000000d, 0x445, 0x9, 0x4, 0x3}, {0xc000000d, 0x3a2, 0x29, 0x80, 0x2}, {0x6, 0x1, 0x7, 0x8, 0x8}]})
ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  589.805834] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  589.865825] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000002c0)='iso9660\x00', &(0x7f0000000300)='./file0\x00', 0x7, 0x4, &(0x7f0000000880)=[{&(0x7f00000005c0)="07ad1c531ba267a34db232648215fc883a86a0dcfd703bb22a3c0ac043ec158275ae01f2bbd1cba25fb6ac108bab62d1f3f5c7483f27ceb10813f58a227030eff9a2dc118323f884622141695c98aece2a3fb513fa196460fd999d028d7aef57398e8f6e4375be1edc17fda8221faafeaa8e17761bb265fc73ec6a6c975e13444511aba99055b749346ad85352b5986b15077d8f7a7891e41aefa622cef1e84d74c778c0960a0a", 0xa7, 0xffffffff}, {&(0x7f0000000680)="b34954255e61ed781ae0fabd87f8020ea60d7f9afaaacc35d642fc2a84fd179424300bd43fe22defc71cb4f9acb635fadba2af4623eb29636dc4b17de893cd0662cb9549308dd682773486e121f4a1926b3961f6663812771846cf4bb619eafbdd4aa0b523b9af67d75fab5d040e662bd86d9d77dde1b516df1c75a8031612d93767c31f81b3547efbe471c83a794139a5f7a79ef8e04bd95069bc0066ba0063caeb664b33f11df01a1c9b3378c6637a890571fc2af6a18d342ceaccd3420a869b5dcefd5abd65eb096aa5", 0xcb, 0x3}, {&(0x7f0000000780)="b19bb80a9476306039e093c76c445f2305776738525ad18e778d130e4e6e95e44f697c08c72e770e841c50f141ffdfa19fda34b2e2fd6a6e6d524f47cd31b5a3ccc1718e4bf54b1531b465a0e1cfaa7f1d755dfb6f9acf81d127884b45321764", 0x60, 0x1}, {&(0x7f0000000800)="90676aafd29618dc3d6d3e9ed63d03bf412ce0a17ef1e8754b376ac807dddf24638167c27275c27bc23178456e2615e30907a499e1db2126f9c2f18ae7be3abf93311b0f926e1c3d0d1c3f7438995f61201b011d6c1a4a", 0x57, 0xe0f}], 0x100000, &(0x7f0000000380)={[{@sbsector={'sbsector', 0x3d, 0x5}}, {@overriderock='overriderockperm'}, {@map_off='map=off'}]})
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0xc000, 0x0)
getsockopt$inet6_dccp_int(r1, 0x21, 0x1f, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x21b)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockname$ax25(r1, &(0x7f0000000180)={{0x3, @rose}, [@null, @default, @remote, @netrom, @rose, @bcast, @default, @rose]}, &(0x7f0000000200)=0x48)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000240)={'#! ', './file0', [{0x20, 'vmnet0'}], 0xa, "1bddf4cbbea8fca387590db5bfbc99d62ace48ebec8e4e9d93f395762d235016912cd762741cd7f241c29577b0d91649e9"}, 0x43)
prctl$PR_CAP_AMBIENT(0x2f, 0x0, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000500)={[0x3f, 0xffffffffc93fa37d, 0x5, 0x2, 0x1ff, 0xab, 0x1, 0x9, 0x0, 0x4, 0x8001, 0x4, 0x6, 0x5, 0xcfb, 0x5], 0xf000, 0x1004})
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x5, 0x4000)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40042409, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$TIOCSSERIAL(r2, 0x541f, &(0x7f0000000240)={0x9, 0x8a, 0x1, 0x1, 0x6, 0x1, 0xfffffffffffffffe, 0x10000, 0x2faaa1a2, 0x4, 0x400, 0x9eb1, 0x4, 0x1, &(0x7f0000000180)=""/138, 0x101, 0x2, 0x9})
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000000)=0x4)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f00000000c0))

[  589.911404] CR3 = 0x0000000000000000
14:06:33 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
msgget$private(0x0, 0x2)
fadvise64(r0, 0x6, 0x8, 0x1)

[  589.963128] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:33 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000340)={0x9, 0x1})
ioctl$sock_bt_hci(r0, 0xc00448f7, &(0x7f0000000000)="117306fd4e9de31065a227f6294ae31f1bccbb64974cde0002411926e6941a725f825ab2b57ab31d071017c12e2fda4cd9caa28f378c35b29a55f774953855a0fe69e187039c1cd425151fb8d6ff201a0052ea41a871ee2fd43b915966a0c7497d88a00f6095f1d2984f8901883de5683fc4c65e4e2921cfa406f9d1f978c36b9044ecd860a444baf43c20578476843bdb061921")
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x17)

[  590.024729] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  590.078628] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  590.084840] protocol 88fb is buggy, dev hsr_slave_0
[  590.084894] protocol 88fb is buggy, dev hsr_slave_1
[  590.153107] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  590.173205] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  590.209294] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.249276] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.263100] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.273101] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.294547] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.319171] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.344621] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  590.359761] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.372055] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  590.380159] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.388263] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  590.394928] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  590.402907] Interruptibility = 00000000  ActivityState = 00000000
[  590.409180] *** Host State ***
[  590.412532] RIP = 0xffffffff81173b5f  RSP = 0xffff8880537ef998
[  590.418558] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  590.425152] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  590.433171] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  590.439099] CR0=0000000080050033 CR3=0000000049116000 CR4=00000000001426f0
[  590.446452] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  590.461745] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  590.467845] *** Control State ***
[  590.471425] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  590.478136] EntryControls=0000d1ff ExitControls=002fefff
[  590.483711] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  590.490760] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  590.497457] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  590.504264]         reason=80000021 qualification=0000000000000000
[  590.510773] IDTVectoring: info=00000000 errcode=00000000
[  590.516257] TSC Offset = 0xfffffec195cdd238
14:06:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000680)='/dev/autofs\x00', 0x6800, 0x0)
mq_getsetattr(r2, &(0x7f00000006c0)={0x3bc, 0x9, 0x7, 0xeb, 0x2, 0x8000, 0x7fff, 0xe1}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x7, 0x420840)
arch_prctl$ARCH_SET_GS(0x1001, 0x2)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r4, 0x84, 0x16, &(0x7f0000000700)=ANY=[@ANYBLOB="070000003f00000000003c0d030003000100cb61f5d6191f2ef745e3ace7d965182fcbf8d7822d38915b7a70f40a63c3494f003f4877c7d83a29697a461377245eb3f043afb0b1923e8b66e33eecca74af4714a4da124126d4db3f10e93b5488ef9ef6dc09d6345acd734b5429aabd572045da5d013520f902d71bca80d5143a1e535c327f2949a262a3dec33c0e3936ac5e55ab990cf219e8dc240b2223dab07c627676b6cade934f7ed9c6a6ce95b37079b3c5aa2796e16f93b3db4e7a08582c38662d79603595ab48e7692ab2a310fb083e205e57c043e0396582c868"], &(0x7f00000000c0)=0x12)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r5 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)="a34d75", 0x3, 0xfffffffffffffffa)
r6 = add_key$user(&(0x7f0000000380)='user\x00', &(0x7f0000000600)={'syz', 0x1}, &(0x7f0000000640)="8d5022fc49c1439dc03b4ce48c23f4a5b97803b4b66e08ad95966d562cf222562e07", 0x22, 0xfffffffffffffffb)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000500)=0x8, 0x4)
keyctl$instantiate_iov(0x14, r5, &(0x7f0000000300)=[{&(0x7f0000000200)="7a840f05ba73a213047dcd2802552510d5ba83df1b3f61bbcdca791c4fe56977bcee38740e22892972c787cbf2724160bbf13ac18ec459f7513de140bd23b3e0ead7f0e68d8bc1450a5dd65495221474774215098c9b22c3bfc494863e7b1ac111df0c5016af68e08ff9d2823148406961f3fe37e79ebf31e8c2b68238c5a267366ffdc43250cf8f196f888b06bc2932e4162ebd32c708127f67c8f3347eb40a30fd2940ed52d52296608e61ae5aabb576f82f92fea1c1fe577635f14f23daa9bd", 0xc1}], 0x1, r6)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{0x0, 0x0, 0x0, 0xfffffffffffffffc}, {}, {}, {0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x690}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x1ffffffffffc, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x4, 0x2)
ioctl$SNDRV_TIMER_IOCTL_STOP(r3, 0x54a1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:34 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000340)={0x9, 0x1})
ioctl$sock_bt_hci(r0, 0xc00448f7, &(0x7f0000000000)="117306fd4e9de31065a227f6294ae31f1bccbb64974cde0002411926e6941a725f825ab2b57ab31d071017c12e2fda4cd9caa28f378c35b29a55f774953855a0fe69e187039c1cd425151fb8d6ff201a0052ea41a871ee2fd43b915966a0c7497d88a00f6095f1d2984f8901883de5683fc4c65e4e2921cfa406f9d1f978c36b9044ecd860a444baf43c20578476843bdb061921")
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x17)

14:06:34 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0x0)
ioctl$KDSETLED(r3, 0x4b32, 0x8)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000040)=0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  590.520646] EPT pointer = 0x000000009e10501e
[  590.525084] Virtual processor ID = 0x0002
[  590.560600] protocol 88fb is buggy, dev hsr_slave_0
[  590.565696] protocol 88fb is buggy, dev hsr_slave_1
14:06:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:34 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000340)={0x9, 0x1})
ioctl$sock_bt_hci(r0, 0xc00448f7, &(0x7f0000000000)="117306fd4e9de31065a227f6294ae31f1bccbb64974cde0002411926e6941a725f825ab2b57ab31d071017c12e2fda4cd9caa28f378c35b29a55f774953855a0fe69e187039c1cd425151fb8d6ff201a0052ea41a871ee2fd43b915966a0c7497d88a00f6095f1d2984f8901883de5683fc4c65e4e2921cfa406f9d1f978c36b9044ecd860a444baf43c20578476843bdb061921")
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x17)

14:06:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x404300, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800011}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=@setneightbl={0x30, 0x43, 0x114, 0x70bd26, 0x25dfdbfc, {0x2}, [@NDTA_THRESH2={0x8, 0x3, 0x2}, @NDTA_GC_INTERVAL={0xc, 0x8, 0x80000000}, @NDTA_THRESH2={0x8, 0x3, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x14)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:34 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f0000000040)={&(0x7f0000ffa000/0x3000)=nil, 0x3000})

[  590.692540] *** Guest State ***
[  590.720124] protocol 88fb is buggy, dev hsr_slave_0
[  590.722744] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  590.725220] protocol 88fb is buggy, dev hsr_slave_1
14:06:34 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000340)={0x9, 0x1})
ioctl$sock_bt_hci(r0, 0xc00448f7, &(0x7f0000000000)="117306fd4e9de31065a227f6294ae31f1bccbb64974cde0002411926e6941a725f825ab2b57ab31d071017c12e2fda4cd9caa28f378c35b29a55f774953855a0fe69e187039c1cd425151fb8d6ff201a0052ea41a871ee2fd43b915966a0c7497d88a00f6095f1d2984f8901883de5683fc4c65e4e2921cfa406f9d1f978c36b9044ecd860a444baf43c20578476843bdb061921")
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:34 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
sendmmsg$inet6(r1, &(0x7f00000000c0), 0x0, 0x20000000)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/member\x00', 0x2, 0x0)

[  590.819638] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  590.891617] CR3 = 0x0000000000000000
[  590.895401] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  590.944750] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  590.951881] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  590.957901] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  590.971607] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  590.978351] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  590.989471] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.023397] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.033956] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.048098] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.056340] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.064671] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  591.072944] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.081585] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  591.089736] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.098159] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  591.104762] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  591.112673] Interruptibility = 00000000  ActivityState = 00000000
[  591.119126] *** Host State ***
[  591.123966] RIP = 0xffffffff81173b5f  RSP = 0xffff8880537ef998
[  591.130107] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  591.136642] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  591.144869] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  591.150922] CR0=0000000080050033 CR3=000000005ff93000 CR4=00000000001426f0
[  591.158081] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  591.165286] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  591.171506] *** Control State ***
[  591.175095] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  591.182276] EntryControls=0000d1ff ExitControls=002fefff
[  591.187887] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  591.195334] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  591.202437] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  591.209160]         reason=80000021 qualification=0000000000000000
[  591.215943] IDTVectoring: info=00000000 errcode=00000000
[  591.221562] TSC Offset = 0xfffffec11654604a
[  591.226035] EPT pointer = 0x00000000a62fd01e
[  591.230905] Virtual processor ID = 0x0003
[  591.256582] *** Guest State ***
[  591.259888] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  591.269027] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  591.278547] CR3 = 0x0000000000000000
[  591.282395] PDPTR0 = 0x800000000dc0200f  PDPTR1 = 0x1dad6fa4f7c0220f
[  591.294366] PDPTR2 = 0x000f00a2b8660000  PDPTR3 = 0x000070009aa7f3d8
[  591.300942] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  591.306938] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  591.312981] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  591.319721] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.327948] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.336114] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.344168] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.352205] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.360311] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.368326] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  591.376354] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.384747] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  591.392798] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  591.400851] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  591.407276] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  591.414779] Interruptibility = 00000000  ActivityState = 00000000
[  591.421081] *** Host State ***
[  591.424300] RIP = 0xffffffff81173b5f  RSP = 0xffff8880537ef998
[  591.430349] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  591.436794] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  591.444656] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  591.450775] CR0=0000000080050033 CR3=000000005ff93000 CR4=00000000001426f0
[  591.457806] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  591.464551] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  591.470664] *** Control State ***
[  591.474219] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  591.481054] EntryControls=0000d1ff ExitControls=002fefff
[  591.486529] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  591.493498] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  591.500255] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  591.506864]         reason=80000021 qualification=0000000000000000
[  591.513719] IDTVectoring: info=00000000 errcode=00000000
[  591.519180] TSC Offset = 0xfffffec0c18fc309
14:06:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/btrfs-control\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000001c0)={<r4=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r3, 0xc010641d, &(0x7f0000000280)={r4, &(0x7f0000000200)=""/98})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r3=>0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x69, 0x0, 0x0, 0x0, @perf_config_ext}, r3, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$VIDIOC_TRY_DECODER_CMD(r0, 0xc0485661, &(0x7f0000000000)={0x0, 0x1, @stop_pts=0x8})
r1 = msgget$private(0x0, 0x200)
msgctl$IPC_STAT(r1, 0x2, &(0x7f0000000080)=""/56)

14:06:35 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000340)={0x9, 0x1})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x2240, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x800, 0x0)

14:06:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000640)='/selinux/policy\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_INFO(r3, 0x80386433, &(0x7f0000000380)=""/7)
r4 = getgid()
r5 = getegid()
lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
fstat(r1, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getgroups(0x4, &(0x7f0000000600)=[r4, r5, r6, r7])
recvfrom$netrom(r3, &(0x7f0000000180)=""/33, 0x21, 0x0, &(0x7f00000001c0)={{0x3, @default, 0x4}, [@null, @null, @null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
ioctl$PPPIOCCONNECT(r3, 0x4004743a, &(0x7f00000000c0)=0x4)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f00000002c0)={0x0, 0x8003, 0x800, 0x8, <r8=>0x0}, &(0x7f0000000300)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000500)={r8, @in6={{0xa, 0x4e22, 0x6f, @loopback, 0x1f}}, 0x69, 0x1}, 0x90)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$sock_SIOCOUTQ(r3, 0x5411, &(0x7f0000000240))

[  591.523730] EPT pointer = 0x000000009635201e
[  591.528180] Virtual processor ID = 0x0002
14:06:35 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-monitor\x00', 0x28100, 0x0)
ioctl$IMCTRLREQ(r1, 0x80044945, &(0x7f0000000380)={0x4408, 0x6, 0x8000, 0x6})
r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x240082)
r3 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x6, 0x101000)
renameat2(r2, &(0x7f0000000040)='./file0\x00', r3, &(0x7f0000000180)='./file0\x00', 0x7)
getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f0000000280)={@initdev, @remote, <r4=>0x0}, &(0x7f00000002c0)=0xc)
read$rfkill(r2, &(0x7f0000000200), 0x8)
bind$packet(r2, &(0x7f0000000300)={0x11, 0xf8, r4, 0x1, 0x1, 0x6, @local}, 0x14)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f00000001c0)="67660f38803b0f69c936360fc75a632e663e0f38f1b345090f01c5d8a46b7ff20f7dd1baa10066ed0f017308652ef20faef6"}], 0xaaaaaaaaaaaacee, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x12000, 0x0)

14:06:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000180)="0f20e035400000000f22e066420f5e520047df65000f01c20fc7aff552be28b9d20a00000f32470f3066baf80cb873e4028cef66bafc0cecb9b20100000f32654c0fc72dd53e4979", 0x48}], 0x1, 0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$TIOCGICOUNT(r1, 0x545d, 0x0)

14:06:35 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cachefiles\x00', 0x80000, 0x0)
ioctl$VIDIOC_S_MODULATOR(r3, 0x40445637, &(0x7f00000001c0)={0x3, "bdcdaae607ce7d1189202e0f6edfdb0c5e60c8060c9967bfbc79a00f26cb1dc5", 0x40, 0x81, 0xdbb7, 0x4, 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r3, 0x4020565b, &(0x7f0000000240)={0x8000000, 0x6, 0x2})

14:06:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000240)='/dev/cachefiles\x00', 0x8000, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000280)={0x36, 0xf, 0x1, 0xd, 0x5, 0x5, 0x2, 0xf6, 0xffffffffffffffff})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DEST(r4, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='O =$', @ANYRES16=r5, @ANYBLOB="001005000053d1fbfd343f827b9320000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x800)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000040))
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
io_setup(0xffffffffffffff20, &(0x7f00000000c0)=<r1=>0x0)
io_cancel(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x5, 0x40000000, r0, &(0x7f0000000340)="5daf43822e0529c5a95b742d0c22f2ecf843ec90227b6626785c4690ad694743e498cb2ffcbe7b8c487155d4769c9574786786c620e293f9ea7f650bb08835376d8efa56c1365d8a2ee170b643bda01f96791a8fdca2bd5d3946001186a12b8ef7251e5f46ce0d73e3278c510f590055e323efb28aab9d2ce7f9fd9d9c405e12", 0x80, 0xfffffffffffffe01, 0x0, 0x0, r0}, &(0x7f0000000400))
ioctl$VIDIOC_G_INPUT(r0, 0x80045626, &(0x7f0000000000))
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000440)=0x2)

14:06:35 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:35 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
close(r0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x1, 0x4, @tid=0xffffffffffffffff}, &(0x7f00000002c0)=<r1=>0x0)
timer_gettime(r1, &(0x7f0000000300))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000200)={0x7, 0x3f, 0x8, 0x0, 0x3edb, 0xffffffffffffffe1, 0xfffffffffffffff9, 0x9a5f, 0x5, 0x40, 0x1000, 0x0, 0x0, 0x7, 0x1, 0x3, 0x7, 0x6})
getsockopt$IP6T_SO_GET_REVISION_MATCH(r3, 0x29, 0x44, &(0x7f0000000000)={'ipvs\x00'}, &(0x7f0000000280)=0x1e)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f00000000c0)="0f013d660f7feb0f01c92ef30f81d9d665f0096fb43ba3e9e20f3266660f388171029966b8010000000f01d9", 0x2c}], 0x1, 0x10, &(0x7f00000001c0)=[@vmwrite={0x8, 0x0, 0x9, 0x0, 0x4, 0x0, 0x577, 0x0, 0x1ff}, @cstype0={0x4, 0xe}], 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sndseq(&(0x7f0000000240)='/dev/snd/seq\x00', 0x0, 0x90000)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  592.041409] *** Guest State ***
[  592.057876] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{0x0, 0x0, 0x10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x904, 0x4, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  592.097837] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  592.117228] CR3 = 0x0000000000000000
[  592.138071] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x205, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffc)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0xc5, 0x8000, 0xf5, 0x5, 0x0, 0x1, 0x104, 0xd, 0x20, 0x8, 0x1, 0x1f, 0x8, 0x221b, 0xcd, 0x7, 0x1ff, 0x6, 0x8, 0x4, 0x3, 0x9, 0x3, 0x7, 0x424b, 0xfe5, 0xffffffff, 0x7fff, 0x80000001, 0x3, 0xfffffffffffffffe, 0xb7, 0x7, 0x0, 0x3, 0x1, 0x0, 0x6, 0x3, @perf_config_ext={0x1, 0x5}, 0x20000, 0x2, 0x2, 0x7, 0x1ff, 0x800, 0xfe}, 0xffffffffffffffff, 0xa, r3, 0x0)
r4 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0)
getsockopt$inet_mreq(r4, 0x0, 0x23, &(0x7f0000000180)={@dev, @local}, &(0x7f0000000300)=0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:35 executing program 5:
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:35 executing program 4:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
vmsplice(r0, &(0x7f0000000040)=[{&(0x7f0000000180)="f9ebc968320484c76e20b3f59325b05af9a39cb57af46aea2199fb8e81996da0206a3ef61c648e36df1b264e27ee565b065b3bcdc01ffe7c0109c2f5b17eba3c4b5e9fd863ba2c06a8041f0b9809fa16285e286f3542bfa63d7ddec5054f947885cbf0b36eff739614edf012563f4a55b669ca9c66d92c91dd196d843aee5152b4183cd08149a8264addea63287e6757288ba1a3ced5ec43a94e30089004f52a78271e", 0xa3}], 0x1, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r2 = dup(r1)
getsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f00000000c0)={@local}, &(0x7f0000000240)=0x14)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$VIDIOC_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000280)={0x7, 0x0, [], {0x0, @bt={0x4, 0xfff, 0x0, 0x3, 0x5, 0x6, 0x80000000, 0x3, 0x80, 0x4, 0x1, 0xfffffffffffffff8, 0x7, 0x5, 0x8, 0x28}}})
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  592.176777] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  592.223899] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  592.268450] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  592.324925] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  592.372791] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.399375] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.433821] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.454917] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.466435] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.476272] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.489004] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  592.501642] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.509686] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  592.520298] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.528342] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  592.539019] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  592.547399] Interruptibility = 00000000  ActivityState = 00000000
[  592.557596] *** Host State ***
[  592.562385] RIP = 0xffffffff81173b5f  RSP = 0xffff8880537ef998
[  592.568420] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  592.578794] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  592.587514] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  592.597403] CR0=0000000080050033 CR3=000000009ff45000 CR4=00000000001426f0
[  592.605278] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  592.615845] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  592.623304] *** Control State ***
[  592.626770] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  592.637320] EntryControls=0000d1ff ExitControls=002fefff
[  592.643687] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  592.654583] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  592.662113] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  592.668822]         reason=80000021 qualification=0000000000000000
[  592.679043] IDTVectoring: info=00000000 errcode=00000000
[  592.685604] TSC Offset = 0xfffffec05f6f91a0
[  592.689959] EPT pointer = 0x000000009139101e
[  592.699060] Virtual processor ID = 0x0004
[  592.722262] *** Guest State ***
[  592.725570] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  592.734585] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  592.744040] CR3 = 0x0000000000000000
[  592.747764] PDPTR0 = 0x800000000dc0200f  PDPTR1 = 0x1dad6fa4f7c0220f
[  592.754331] PDPTR2 = 0x000f00a2b8660000  PDPTR3 = 0x000070009aa7f3d8
[  592.760899] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[  592.766911] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  592.773015] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  592.779822] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.787888] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.795921] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.804048] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.812193] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.820795] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.828793] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  592.836857] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.844906] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  592.852970] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  592.861028] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  592.867451] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  592.875024] Interruptibility = 00000000  ActivityState = 00000000
[  592.881303] *** Host State ***
[  592.884508] RIP = 0xffffffff81173b5f  RSP = 0xffff8880537ef998
[  592.890610] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  592.897060] FSBase=00007f24daac1700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000
[  592.904944] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  592.910930] CR0=0000000080050033 CR3=000000009ff45000 CR4=00000000001426f0
[  592.917964] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  592.924730] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  592.930851] *** Control State ***
[  592.934331] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000ea
[  592.941102] EntryControls=0000d1ff ExitControls=002fefff
[  592.946597] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  592.954100] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  592.960827] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  592.967430]         reason=80000021 qualification=0000000000000000
[  592.973832] IDTVectoring: info=00000000 errcode=00000000
[  592.979302] TSC Offset = 0xfffffebff8c6cc0c
[  592.983684] EPT pointer = 0x000000009e10501e
14:06:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={<r3=>0x0, <r4=>0x0})
pselect6(0x40, &(0x7f0000000180)={0xffffffff, 0x9, 0x100000001, 0x8, 0x6, 0x9, 0x0, 0x5d4f}, &(0x7f00000001c0)={0x100, 0x80000000, 0x5, 0x6, 0x9, 0xeca, 0x6, 0x7fffffff}, &(0x7f0000000200)={0x6, 0xb5, 0xfff, 0x100000001, 0xff, 0x8, 0x7ff, 0x8}, &(0x7f0000000280)={r3, r4+30000000}, &(0x7f0000000300)={&(0x7f00000002c0)={0x3}, 0x8})
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
setxattr$security_smack_entry(&(0x7f0000000380)='./file0\x00', &(0x7f0000000500)='security.SMACK64\x00', &(0x7f0000000540)='/dev/kvm\x00', 0x9, 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:36 executing program 5:
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:36 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000040)=0x8, 0x4)
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000000)=0x5)
setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0xda0c, 0x1f})
r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/mls\x00', 0x0, 0x0)
ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000500)=ANY=[@ANYBLOB="ff070c4c7400000059dcce24527f7b1a57681463d4e22508bd3a0c2c72fe1429eed644ba69cfd65ba471fafe9af84dace2d097fea5222aa8ff541a18dc314d20fd34da4912603063ed583bacc5aea0fc16f82c48081184e2e42a1dcad8d5424cebbd3502bb7beb10fb413290d768542cf05ef6fe75e8de0400000000000000b4f1668198b7072e7b7bc7215d6454f78b83fb9b38de08e4ffa7a86c5b1e96fc40de4fad8135b264cdc14d184cbd2d7dde715529a98b631d109cea4f88debcbab5ff79ab8cc1"])
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r4 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x10d0, 0x0)
fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f00000001c0)=0x3)
ioctl$TIOCLINUX7(r4, 0x541c, &(0x7f0000000040)={0x7, 0xfffffffffffffff9})
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x34f, 0x480000)
setsockopt$netrom_NETROM_T2(r3, 0x103, 0x2, &(0x7f00000000c0)=0x1f, 0x4)
setns(r3, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SIOCAX25DELFWD(r3, 0x89eb, &(0x7f00000001c0)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
ioctl$KDENABIO(r2, 0x4b36)
syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x7, 0x100)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x80, 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  592.988109] Virtual processor ID = 0x0002
14:06:36 executing program 5:
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:36 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)

14:06:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000000)="6f66baf80cb8b6b0a48cef66bafc0c66ed8fcaf8102486c000000066b807008ed8440f070fc7b5bbf25802c4e25d0025a4000000660fc7b616310000b98a0b0000b805000000ba010000000f30c4a17c295700", 0x53}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x2000, 0x0)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00')
sendmsg$TIPC_CMD_GET_LINKS(r3, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r4, 0x401, 0x70bd2a, 0x25dfdbff, {{}, 0x0, 0x4, 0x0, {0x8, 0x11, 0x401}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x20040010)

[  593.134819] *** Guest State ***
14:06:36 executing program 2:
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
ioctl$SIOCRSSL2CALL(r0, 0x89e2, &(0x7f0000000040)=@bcast)
sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000180)="2e4851cd7ea1d10d600c0645255016512780514d86687ab850d7d11745709b893c667e1f472240246d9df1b2e1e455a1c6e4d85b6b6aa0b5deda29ba15a862d72a5fd87168d3f2084dbb1f1b9615907fbd434ae6cd8fe71d6e16327b36e9322b8e4c3f89ff718b4c8ac5c0a11b03269d97ffac7f3031b62ba669574aeb2fe265bbfe48ff8be22417abcb0cf1d487a941932b9bee70b92692ac73", 0x9a}, {&(0x7f00000000c0)="bcd8e7e38d655b", 0x7}, {&(0x7f0000000240)="6be52e16bede3cb0685d69862b2bf21669a15a4950f33f8385d4e8c84d5265b7fb5f5a8eed2472dd1424bd1c8a59f13ff3bcf8e085ffe391a4c9a63814a22749f9d7c100fb69b9169bcbdc3528de15f8ea82dea80440055e6016155068886685f05ad929f1bd3e6498b9ae", 0x6b}, {&(0x7f00000002c0)="123f9045ec0a00f4e3d5785938668fcf74030f23f32451368ee4ea283d90608eb487e9f037dcdee199cd1a21fb8028e53a8f007a8090a3ec6e9d0531503f81612a5baea5d6e10a77e8da47e5a47f806f68efa4d3ea292a505cab0fa43d9737d38251f5", 0x63}, {&(0x7f0000000500)="d1b3b2446f18256dbc62802588ebbbd16edb5d2928dd7bcb63e7ffb9afd78d808ebbe7008d687482c49c3bce6b36b01b534de4dc8e421d235adec3f2b91d022ccaf33ad5d0743dbe842f749b16527ef42aea8bc9cd2a06b338e21e1b38f21f79b0f684375e30f4b978b57c03e3f014d81411a19307a41cd8051676df207f2e358ed93afda3e58ac989670ab393f2a6f14609d5f1d1dd2cfded18a6e7bb1ac696d95c5ba0a6f21290a98e30b95467c24753b0bc8b55b7abe902f10a10057ded41ced6633e841234dc3220dfd70472d977c4d02765901709f33dfa", 0xda}], 0x5, &(0x7f0000000680)=[@ip_ttl={{0x14, 0x0, 0x2, 0x200}}, @ip_ttl={{0x14}}, @ip_retopts={{0x3c, 0x0, 0x7, {[@generic={0x94, 0x12, "8e3a02c736f205e8ea20407ca4026e9a"}, @noop, @end, @timestamp={0x44, 0x18, 0x9, 0x0, 0xb2d, [{[], 0x3c}, {[@rand_addr=0x100], 0x9}, {[], 0x8}, {[], 0x5}]}]}}}, @ip_retopts={{0x3c, 0x0, 0x7, {[@generic={0x9f, 0xd, "7f0f6bdb82a622cb6a0f7c"}, @end, @cipso={0x86, 0x16, 0x1, [{0x7, 0xd, "e6a0417fa9c9e059ccf185"}, {0x0, 0x3, '6'}]}, @lsrr={0x83, 0x7, 0x7, [@empty]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfff}}], 0xc8}, 0x40408c0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  593.181056] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:36 executing program 5:
r0 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  593.261005] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  593.301222] CR3 = 0x0000000000000000
[  593.323985] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  593.359644] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  593.398438] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  593.423634] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  593.452471] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  593.467173] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.485605] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.502938] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.514750] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.522936] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.535644] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.543782] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  593.556886] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.565020] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  593.577651] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  593.585787] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  593.596900] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  593.605144] Interruptibility = 00000000  ActivityState = 00000000
[  593.616026] *** Host State ***
[  593.619259] RIP = 0xffffffff81173b5f  RSP = 0xffff888087797998
[  593.625316] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  593.636575] FSBase=00007f24daac1700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000
[  593.644523] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  593.655192] CR0=0000000080050033 CR3=000000005eb65000 CR4=00000000001426e0
[  593.662302] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018f0
[  593.669018] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  593.679793] *** Control State ***
[  593.683332] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  593.696237] EntryControls=0000d1ff ExitControls=002fefff
[  593.701775] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  593.708736] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  593.720259] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  593.726876]         reason=80000021 qualification=0000000000000000
[  593.737826] IDTVectoring: info=00000000 errcode=00000000
[  593.744236] TSC Offset = 0xfffffebfc87f0861
[  593.748591] EPT pointer = 0x00000000994ea01e
[  593.756888] Virtual processor ID = 0x0004
14:06:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x100, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x20d, 0x1, &(0x7f0000000200)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r4 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x41, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r4, 0x0, 0x81, &(0x7f0000000500)={'broute\x00', 0x0, 0x0, 0x0, [], 0x8, &(0x7f00000001c0)=[{}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}, 0xf8)
ioctl$IMDELTIMER(r3, 0x80044941, &(0x7f0000000080)=0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:37 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x4, 0x2, 0x1000002, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:37 executing program 5:
r0 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f00000000c0)={@loopback, <r2=>0x0}, &(0x7f0000000180)=0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0xf, 0x5f0, 0xfff, 0x0, 0x19, r1, 0x1, [], r2, r0, 0x2, 0x1}, 0x3c)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x12200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000240)=<r5=>0x0)
ptrace$setsig(0x4203, r5, 0x7fff, &(0x7f0000000280)={0x31, 0x100000000, 0x6})
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$kcm_KCM_RECV_DISABLE(r1, 0x119, 0x1, &(0x7f0000000200), 0x4)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$swradio(&(0x7f0000000180)='/dev/swradio#\x00', 0x1, 0x2)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, &(0x7f00000001c0)={{0xffffffffffffffff, 0x1, 0x8001, 0x3, 0x5}, 0x80000000, 0x9, 0x212})
openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x12400, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000000))

14:06:37 executing program 5:
r0 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000280)='/dev/dsp\x00', 0x800, 0x0)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000040)={<r5=>0x0})
ioctl$DRM_IOCTL_DMA(r4, 0xc0406429, &(0x7f0000000240)={r5, 0x2, &(0x7f00000000c0)=[0x800, 0x5], &(0x7f0000000180)=[0x3b, 0x80000001, 0xfffffffffffff001, 0x7], 0x63, 0x4, 0x3, &(0x7f00000001c0)=[0x7, 0x8, 0x7, 0x1f], &(0x7f0000000200)=[0x1000, 0x5]})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:37 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000000)={0x49, 0x5757555d, 0x2, @stepwise={0x10001, 0x0, 0x20, 0x43af, 0xfffffffffffffff7, 0x2}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:37 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x7ffa, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x20, 0x80040)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000200)='nbd\x00')
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='comm\x00')
r6 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/btrfs-control\x00', 0x341040, 0x0)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = fcntl$dupfd(r0, 0x0, r0)
r9 = syz_open_dev$usb(&(0x7f0000000300)='/dev/bus/usb/00#/00#\x00', 0x8000, 0x191000)
r10 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dsp\x00', 0x400, 0x0)
r11 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000380)='/selinux/avc/cache_stats\x00', 0x0, 0x0)
r12 = socket(0x5, 0x3, 0xb6)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x58, r4, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SOCKETS={0x44, 0x7, [{0x8, 0x1, r5}, {0x8, 0x1, r6}, {0x8, 0x1, r7}, {0x8, 0x1, r8}, {0x8, 0x1, r9}, {0x8, 0x1, r10}, {0x8, 0x1, r11}, {0x8, 0x1, r12}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  593.949576] *** Guest State ***
[  593.965386] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  593.983426] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  594.045185] CR3 = 0x0000000000000000
[  594.062604] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
14:06:37 executing program 4:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000180)="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")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/enforce\x00', 0x900, 0x0)
ioctl$DRM_IOCTL_ADD_BUFS(r2, 0xc0206416, &(0x7f00000000c0)={0x5, 0x400, 0x2, 0x7fffffff, 0x10, 0x4})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  594.099415] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  594.154902] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  594.188098] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  594.206689] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  594.225882] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.245121] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.254721] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.272052] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.288363] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.298864] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.311237] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  594.319386] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.331565] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  594.339657] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  594.351994] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  594.358523] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  594.368498] Interruptibility = 00000000  ActivityState = 00000000
[  594.377333] *** Host State ***
[  594.383044] RIP = 0xffffffff81173b5f  RSP = 0xffff88808b74f998
[  594.389124] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  594.398039] FSBase=00007f24daac1700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  594.409153] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  594.417587] CR0=0000000080050033 CR3=00000000a1823000 CR4=00000000001426e0
[  594.427117] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  594.436296] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  594.444873] *** Control State ***
[  594.448425] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  594.457627] EntryControls=0000d1ff ExitControls=002fefff
[  594.465631] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  594.475045] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  594.485786] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  594.494957]         reason=80000021 qualification=0000000000000000
[  594.503954] IDTVectoring: info=00000000 errcode=00000000
14:06:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = dup3(r0, r0, 0x80000)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:38 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:38 executing program 3:
r0 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x1, 0x200)
ioctl$SCSI_IOCTL_DOORUNLOCK(r0, 0x5381)
r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
write$selinux_create(r1, &(0x7f0000000000)=@objname={'system_u:object_r:tzdata_exec_t:s0', 0x20, 'system_u:system_r:kernel_t:s0', 0x20, 0x0, 0x20, './file0\x00'}, 0x5e)
ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r3 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x400000000000000, 0x40002)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r3, 0xc0a85322, &(0x7f0000000500))
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r4 = dup2(r2, r0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x117, 0xf}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r4, &(0x7f0000000180)={0x6, 0x118, 0xfa00, {{0x1ff, 0x5076f24e, "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", 0x2e, 0xffffffff7fffffff, 0x2, 0x2, 0x1, 0xffffffffffffffe1, 0x1be, 0x1}, r5}}, 0x120)

14:06:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x1, 0x2)
write$P9_RWSTAT(r2, &(0x7f0000000180)={0x7, 0x7f, 0x1}, 0x7)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x802102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
ptrace$setopts(0x4206, r4, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
tkill(r4, 0x80008000000038)
ptrace$cont(0x18, r4, 0x0, 0x0)
ptrace$cont(0x18, r4, 0x0, 0x2)
ptrace$cont(0x1f, r4, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  594.509513] TSC Offset = 0xfffffebf597721db
[  594.516384] EPT pointer = 0x000000009e1ac01e
[  594.523409] Virtual processor ID = 0x0003
14:06:38 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x381100, 0x4a)
bind$isdn_base(r1, &(0x7f00000000c0)={0x22, 0x20000003ff, 0x9, 0x2, 0xfffffffffffffffc}, 0x6)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mISDNtimer\x00', 0x40001, 0x0)
ioctl$TUNGETIFF(r1, 0x800454d2, &(0x7f0000000180))

14:06:38 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:38 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  594.712305] *** Guest State ***
[  594.720149] net_ratelimit: 20 callbacks suppressed
[  594.720155] protocol 88fb is buggy, dev hsr_slave_0
[  594.730184] protocol 88fb is buggy, dev hsr_slave_1
14:06:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x80, 0x0)
accept4$nfc_llcp(r1, 0x0, &(0x7f00000000c0), 0x80800)
r2 = dup3(r0, r0, 0x0)
bind$pptp(r2, &(0x7f0000000000)={0x18, 0x2, {0x1, @dev={0xac, 0x14, 0x14, 0x20}}}, 0x1e)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$isdn(0x22, 0x3, 0x25)
mincore(&(0x7f0000ff9000/0x2000)=nil, 0x2000, &(0x7f0000000500)=""/4096)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x400000000000)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
modify_ldt$read_default(0x2, &(0x7f0000000000)=""/101, 0x65)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  594.776152] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  594.853047] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  594.880134] protocol 88fb is buggy, dev hsr_slave_0
[  594.885330] protocol 88fb is buggy, dev hsr_slave_1
[  594.920282] CR3 = 0x0000000000000000
[  594.949719] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  594.978669] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  594.999915] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  595.011173] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  595.017309] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  595.042288] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.055854] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.076063] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.088876] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.097069] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.109966] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.118191] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  595.131519] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.139510] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  595.150643] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  595.158652] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  595.169022] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  595.177413] Interruptibility = 00000000  ActivityState = 00000000
[  595.187625] *** Host State ***
[  595.191685] RIP = 0xffffffff81173b5f  RSP = 0xffff8880a918f998
[  595.197671] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  595.211315] FSBase=00007f24daac1700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  595.219134] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  595.228193] CR0=0000000080050033 CR3=000000009f06b000 CR4=00000000001426e0
[  595.236804] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  595.246566] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  595.254224] *** Control State ***
[  595.257688] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  595.267396] EntryControls=0000d1ff ExitControls=002fefff
[  595.274534] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  595.281626] protocol 88fb is buggy, dev hsr_slave_0
[  595.281682] protocol 88fb is buggy, dev hsr_slave_1
[  595.297100] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  595.303850] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  595.315075]         reason=80000021 qualification=0000000000000000
[  595.321457] IDTVectoring: info=00000000 errcode=00000000
[  595.326916] TSC Offset = 0xfffffebeefe1540d
[  595.335927] EPT pointer = 0x000000009fdd901e
[  595.340378] Virtual processor ID = 0x0003
14:06:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x2, 0x80000)
ioctl$SG_EMULATED_HOST(r3, 0x2203, &(0x7f00000001c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

14:06:38 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x100001)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:38 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
fsetxattr$trusted_overlay_upper(r0, &(0x7f00000000c0)='trusted.overlay.upper\x00', &(0x7f0000000340)={0x0, 0xfb, 0xa5, 0x4, 0xfdb8, "30bbd1db2a1d5ab482a3cd26a2d119a7", "47b31babe41df61bfe2e6d9b53ebcea22547a0be1e1cbb9c2878e18230edc186a65c6c9c5922bd68e3a499e0db45866ae35b37eeed40cbe10414c1f8f36c6c99d1979ab001f0788f3abe59e36cd3e328d914cdbc82f2adcb583a252770833ff086dafd49cde9ebfbc2f774b1435e9e0222dfb2d9c33298c39e2a1e8b4de41bd1a93a9b1cec2808e74ea71935543fb2cb"}, 0xa5, 0x3)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$VIDIOC_QUERYBUF(r0, 0xc0585609, &(0x7f0000000040)={0x2, 0xe, 0x4, 0x400000, {}, {0x4, 0xc, 0x7a, 0x7fffffff, 0x8, 0x200, "fd7a82e6"}, 0x80000000, 0x7, @userptr=0x9, 0x4})
syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x7, 0x80001)

14:06:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x3, 0x2)
getsockopt$netrom_NETROM_T2(r1, 0x103, 0x2, &(0x7f0000000180)=0x5, &(0x7f00000001c0)=0xfffffffffffffed3)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xfffffffffffffffb, 0x100)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000040)={0x67ec, 0x7})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0xfffffffffffffdd9)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:38 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:38 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x5, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:39 executing program 4:
r0 = open(&(0x7f0000000300)='./file0\x00', 0x200100, 0x164)
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000380)=0x100000000)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @empty}, &(0x7f0000000040)=0x10, 0x0)
sendto(r1, &(0x7f0000000180)="38c688980d41c18b42369a923a63956a4638cd809e673c993d9974033e08966d87829620b60ea92a79e1a20526b70c0e7b08632b4ea81fab695dd1ec4ccea2a699bbd976545e89b8045ecfa315fa420f080d34d1d60a6877beed9a89eaab2924b2af7e7b88dd0b9030b26aafdc6c8fbbbbf66e2cc7be66cc80e7f0c251bb67ce60ac09c08f5a3907c8cb2636a76d4527ab3c5cb5b66820458ae4c9c80f9834c7c7bbe5dfbb3e92a1921bc9dc2195af26810ecd9929b7af8c15923caf44d94f5d587cab8d2264bf68fb35223ec8abae6cd5b92c1f4d1e9ea9200254adee1237569a1d0e9f2c5dcdac7be765309129", 0xee, 0x4000000, &(0x7f0000000280)=@ethernet={0x6, @random="180f341b16ea"}, 0x80)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0xffffffff00000000, 0x40040)
ioctl$VIDIOC_LOG_STATUS(r5, 0x5646, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, [0xfffffffffffffffc]})

14:06:39 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r3 = fcntl$dupfd(r0, 0x406, r2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'filter\x00'}, &(0x7f0000000200)=0x78)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x6)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x80000000, 0x800000000}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:39 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:39 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000040)={0x54, 0x10001, 0x87, {0x2, 0x3}, {0xae}, @const={0x155456c4, {0xfb5f, 0x7fff, 0x101, 0xbbd}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x8, 0x5, 0x3, 0x209, 0xa, 0x9, 0xff, 0x0, 0x15d8ad88, 0x1f})

14:06:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000)=<r3=>0x0)
setpriority(0x3, r3, 0xff)

14:06:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000280)='/selinux/avc/cache_threshold\x00', 0x2, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r2, 0x770a, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x200800, 0x0)
ioctl$EVIOCGKEYCODE_V2(r3, 0x80284504, &(0x7f0000000180)=""/115)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$selinux_create(r3, &(0x7f0000000200)=@objname={'system_u:object_r:hald_dccm_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1, 0x20, './file0\x00'}, 0x5a)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:39 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:39 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x2, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  595.840157] protocol 88fb is buggy, dev hsr_slave_0
[  595.845302] protocol 88fb is buggy, dev hsr_slave_1
[  595.850455] protocol 88fb is buggy, dev hsr_slave_0
[  595.855543] protocol 88fb is buggy, dev hsr_slave_1
14:06:39 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x0, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:39 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$RTC_PIE_ON(r0, 0x7005)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000000)={0x51, 0xffffffff, 0x2, {0x3}, {0x2}, @cond=[{0x50c, 0x3, 0xfffffffffffffffe, 0x401, 0xb2f3, 0x80}, {0x1f, 0x10000, 0x6, 0xfffffffffffffc00, 0x8, 0xfffffffffffff001}]})
fsync(r0)

14:06:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/mixer\x00', 0x80000, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'vlan0\x00', <r3=>0x0})
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000540)={{{@in=@empty, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@broadcast}}, &(0x7f0000000640)=0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000680)={{{@in=@multicast1, @in=@dev={0xac, 0x14, 0x14, 0x26}, 0x4e20, 0x0, 0x4e20, 0x5, 0xf84b60afcf2815ac, 0xa0, 0x80, 0x7f, r3, r4}, {0x9, 0x6, 0xb15, 0x81, 0x66, 0x4de, 0x74, 0x40}, {0x3, 0x1ff, 0x1f, 0xfffffffffffff800}, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1}, {{@in=@multicast1, 0x4d5, 0x3f}, 0xa, @in=@multicast2, 0x3504, 0x2, 0x1, 0x0, 0x4, 0x6, 0x6}}, 0xe8)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCINQ(r6, 0x541b, &(0x7f0000000000))
ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.events\x00', 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r3, 0x0, 0x48f, &(0x7f0000000040)={0x3c, @multicast2, 0x4e22, 0x1, 'lc\x00', 0x21, 0x3, 0x8}, 0x2c)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  595.999042] *** Guest State ***
14:06:39 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x0, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  596.028071] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
14:06:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x8, 0x442000)
setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r3, 0x111, 0x5, 0x800004, 0xfffffffffffffc26)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000500)={0x1, 0x0, 0x2080, {0x5000, 0x16000, 0x1}, [], "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", "de770668d98c9267197c20e291c9291da4d56e9500c1ac49e37e2dcbfb7bbbf34e630b7004d9308798ec361ac00d5a84115c167a9b0b663fb6a52acce95172aea749379ce9a7dc42d5e7d2f0535d63067f3baff2fe65b468ed0e027f844082e3b9df3717c8a21b9c6b7165db0ce5f858cebf7da341ad1e9ddba013d5893003fa20557c7738e4474dbdc9a2e2dd288305206cd20b52dc27e62849ab5d96c02accafb5ea4e67f23cc5e273c72dc22fa3fcaf2b38b1ad30ac9bb34e871eca926de7eb653e2602fd57794afc27574c6e0349b5bb1010db60b6dbbf24a5cbde3d2b3093a6e1d74a799c2cad76a8958684ac1832f03abe9ffdd96cc849585fc0ec3f17d82aac826c9e65cfb4b206cba371f32cb84f9468d7b1bfefa860d7b925c42b48c5364a323dbc0873b48e4b4e0e2a9c9787f1fd9349ead53a91f6dde30e8516e917b687780ac6e94737bfd6009bc8345473bfd26838c38a8e4074bced553b04477cda97f793e1058dddecf783fffbf2cf9d6f394874e114c4f58acb405ab5dda9b4cf839cc3a8e34884def673739cfa51f85a3ceb34755dcc4c1457dfc24441bf5fd482dcd8ac0762ca235a82b5d37671698680b36fca02b544c2e4e41563a638f6b76c59814542a8f0ab72e8f3cb1112915541ebcec528e74b288dd27bfdfcb26655bb0bd81eb5a122bfba8a898b65c04fd44798a254e31732999824826b31da6f79922ff34353057c5c0bfa899ca73ee62d4c71d014351a0efd396c5f9059b4811d417c16a9671849ca4be7a0ede066deabc6c19ff039f5b1931871821aaf17f6a41ba26185061147c6a35ef2a5cbc9cd809223377a2ed5b725ca4ce7048812cb7927acf5ca2aa40b61564eb77f59a81deb6f97b83f2be80c0ab7f3febbee4132a9e03d22a468adb12ca48c4db43aee06ca4a1fa72ae79aeeafaadfc5e54aa29b2ff7259211b732b31e05ab3c254bc0fa0fc780428c15f571cda3dec238b73050a09e49558a676d27aa9df0ca0dbb75f7745bae079fe21e480380fc18f6c631680dcd7ad01512e6b0ed0b6bfbff031d1e38610de70005ddeacd1d504bb35714763923af8adf19c58afac75a532568e005a72b40609fdf0654037bd68cf68492a325544e6e278d7f17365585da62da0f70922e1ddccc84263cef952a25cb1e730cbf83103a3b1de66b59299ff62e32e2083162baa03af1cf5a9f26634b32bca4f47a02fec19c49e387bdf16dbddb30406160e2ff5db4b9d304e21b7c12e2c81ede681dad53c1b3df775758c61d9b5276332f3c2928f7dff9a38e10b212639d51a58d4354e591711f5ac5af46a8f939be616e982fe91d9ff8a7700c5be6406dc79b92065a62471af2e16850a2d9b507559f89e9132a694f5df8f2eaf8a6a7b76f457b101f56eae867fc3e77f3991347be8ca4f902ef2ee25efa07cccdb03dbe63f1a11439baef62cf014450d224c224c09bf6ed93798d955e886ededcbdfa5e5f987100ac86a347cfb2c7ec6ea29e0915e7e5112214970ed9a7a509d083d71540652b9d073b926da7e6f7791eb58a8c6d48545825641e534f80047eac0a2708a15b9b6156fef43f6d2c669aaffff270a3d140ebd213f6b758e1c02950fe1790b25ea3ddf8a8c5cd029d4fcabb69f249a6c9a42abc9e8db6647390c9dbe0cdb3491b4ed29eae2f0926c046ed0258dd2c6bd237b07ace146628452411974a300c0538881a8ef914c2ab5afdbfc3da3fe98bb20b2abf9a8e3026fc995c4f5ec8f639ff7fc70cb7921601899c7e38ace195bd3a8f9ab8493e85d617a71e3dd9e3b5e3ee83ca8c13a760967d00b209f2fbfdb872b82156c6cfe4d39ca423130adbf275613a40421ee1fbbc08255fa8ea796f55d3f320074c69c190d332c4046468d07223b55fe138277dbec6b21005cf86f43378c6398507407058750348c5d20c9f02a76b03e3047de3dd4a475fd2d172070e4887dbc2f6ddfb9471a73c27a6848513c8268f59faa075ce8f374604b3d92600448cc0b9c42deb0af1327af086876656664cb564f8bb7422be9d2fbf0a12afbb7a7e0973d8a0fe63c6e6aa3835158221e5d436721718f8eee63692ce727b706e651b877843b3e7c68d7579d1a6a35ec8f3d0b87e804d6da77e555f7aeab03f29693ca9f003978cba8f9a4f909c49333b4b7de38049bb5edf9cc6edc63612a2165186b3b3a9b39f0807895b994a60c2994b7912849ee0c1c53ced47fdc8123192ff4a4d6aac6d3ef3aef31e064fa1e8b4d1e31277f235d0becf4a265d17ac275d161cb74e0f1b8578c6937fc0428deae5d48dfff3746a10719cc5d66c88f6cd3bf994fe7d709adb6c4c28241dcc2fd1a07f483462653eacad5c5d16dfc5af996df8da49a3f108791d739908c9dbc8198b2be193fc4c32d4d2016b512f7a13f4aeaabe7219834c0af4263c493ae613b30b56dbd40767180e2bc96096aa2aa5b85461d0a74968ce71daaf108791e6022dce114214303d10b585165830e3c4ef49286d1d8d560b37b2e13748303f489df95a783bda571f0cbe4d017c9da76ec9b50573fcf7b295b0e4a304ad5d38f74317db9e6b14adc86b5efa06c64c36d933eb75a47538ad12cf07bd5e993ca5c5bf4b3012c75605fdc36ec88f2d2ccae8e55f23446b9b5cb5770ce766ee87ff41cd8f15e1e1a9caf570b10278799c72bb40465d9ef6e4c6c2593ead16c0d9e1487a6c2e7539d61c5e6b56e491acd10e963c85a593a05081cb27cf7fe020627b479621bd2258bc81ca6ec740cf849fd750d0fc925264669b3dbc8a49d54931233c1a169c1aada17797672a553c860f1aadee21fb92329dcae462ad80d206883c2eafb8817af02aa1eadd9d0111f6143a6a0c03725bd2fcd95d291ba7b89048b76b2a45af75228286128059707e67073b51f75974d881aeb2f81e708433abb5d2bdf0ea9adaaa6e0fcb8e9fcada977cd0b367b17df626e35860b032ec6f7f98f3d937fbdf455df3b9fa7f768513be14275605e9b56cbbb75a9c8a7dfe62dfbec8141b21aaa127ece5171457a8ae53b5be12e3e3e09b9495527d9579b88cd413e7d37ed992d6b17a82a6831f7b9a5dbda2f3790c6b79c3a4828a9c5e05d8afb321af7ff05788a61742b69be69eca067d7a276ef338dad9a6cb9c50e68ed44f45e1653ab6d11f5258db054d2d270facb6b91a09550f30192a111172d3777d60a3db4a7f8ea144c7940309901009dee9e54decc81cb15bc3931ba964fa119b19bff00283982e53eece490b32fb1c1309c0c3ca60d9ef6ee73b05d21c7580adc7a1ee4e0503b050ad8816cb074939e5ca55e07775444b6b81f3d6de3c684fda612962d3e136c3c00a56216815354945a0635ce2236068fcd2b3fff0ac61aecd43fd5cc5506061f14613d6675ad77e7b00872d91c92094a799d98196fbb85c550c8cac022abe824cb0415dbedc8f7f7fd90aec1abef47d070e5e8d52ad417e14d70383613fa91f32cfc8a245f965ee32047a9b060fa334c22402cdbac2834c8c5106be47b783d41a83a49c3c4e535f0871c20022ac9754c704181b3443fa44e7e98efe348738cb490636887d675765234f6f3917d024224194485f2ad810f02941642de30d853e0917455e8a71a4ca953af10fc0fe16ea93ba890c05967cd166442dfcdde1fcf49d0f5fd26dfc71b106bce24fdd6f0096e2ed776c7878871c406d06848f30f7bf3b9522deb47b3e7a45ef9c936fd6539195bde3b34a83bdedda8d57ce8728d2d58a7f58c57f4a1ddf15d57e4f541ec438e3a0f90bf4d7df0b2a30d2441e7b64fb3e15a8a41036c592f4d1dc3f14b3a7b5a83008a10df1c8ffff17cce424159d3adafbc7590dc833543c28fe5a884bf515daea2a642cc2f8c8cdf1cc8eb628ba445caf0a19e1116b32a0411018a22b981f68afd62232b607df331b58957ffb3e6e064287be9f53be95a1a58b827741f2b18eee89c125db6c2f15d7701fb90827acc859d6fefb1076daf7a7bb8c9bd7466018b0e3e2ae70ff781ada1c574a77d0363cec968e5933be8c7e1dfe480533f02c0dc72170454073ef12aa982cce6c10445d77f181fd8981650525bbf24cace15382cfb1cc42af8dd99404df9e170705a6806406efe646a0d0f79a51222f601840bdc6852be2f4cacba6b7c4cc5457ce14e56bb6c4123d11c4d57f104aba63c7cf7c32ec86e17885a0f41d34b0204a7668bffe5171b7423a0e9f6273ae07857e9a0c8efbb8056e7701983985c4aae8ade65cedc091be034173c8541e5e58d7bc61dd3631a0149a6ec13e2cee124261ade5d0aa0c95fec23586b83e0872537379467d64cfd96ce0d2d36ca528edc1216025805690ceba8bca9f348f72772e5c3dead1ca2690c17f5d032cfe6603441fab60e3bc4d203001d007e9dcdb3e03e2cb973a5407cad25477a5750c1b32cf3dfe3a3344509ed89da6973f82e3affdf38e51d8a5d71b590e7aaaa669529f00d2ebeb6ac82d3b3ee67a23148514a09d2df2996109700b856217071525962e032b54b5501c99f22754a6d1878806a13c55edb1025dd82f3c9a595132db04a07ab12202649f11a1021ff3ca9090b0a38673dc0c25a3b29bf57430149bf631fad7da5a081a65547a02234d8cd71789d9e26f21908655f9b5699d0e6ba49a993dd9bcd3fb7785da41d6da2c62921b6b02c5ea165515d94c1a86c7c1349e84232d88f1ad544245bddca2a0350efb6bffb138b7363a10abbabd91b2539791011e299fe8a09999dbe408a22db2fd453d17082edc3f140fbade7fd638e1042342715a3a4251d2dac113a61e91e9194a008e9373c2ef8c29bc05767a45cdbb6eafa19db724a057aaafa4d32cd0e8715262f5ee764632049c4eaadcac3e5f94fe30dc5f176d632f85f798ca3f43ee9524146d9c61f458627d718dde339b44b97b20b5d50d4c994a29f3ded6b8beff5e77eece514d5c04a5d2166c53518ff987cf702ec7ab8b1a5c712b9298e2964528afed19605bef1b17cf9f91376fcceef3449be4dd30b18307fb3c190bf27b62e4ebb5e553a0a18b4f2e630cbcb95c7b207fc7cb8c4d3c52d654674b035dc0d5609712332ab2068cbae33dfdc34a19a2ce48802faa9ae59d9228d03c79c0d2261becb05f76015c4a7dcfca7bf9a210eef029334f5a6adbc20fbf1c4fdd410bbf99432bb4c5ceb388ce36a99b8087f06456bf73ed50b4d4e86fe2ba8abf0145e5014be127d0f9f40f7122d13f665389d31570b8653a0e22a716c0e96fdbdd7c464970d96ee042e3059e848cc26b1eb7e963a240463dda602f8ba6ce10667cd933833b5fcfb2c89c9e72f0000f38e43269a6c8c98dce2339486f6dff51aa3acbb20d0ce410ccf59d257b66e23717fbf99e5b4d451b1c8cb0a56b336892b98c159e767c4a3c20321e628665d46c56a54ccc95bfef555f05c2a3f0ef3f050edcac270bb02f6a52002a497779060340788dd57157c80d0a050c0fa72037b8ffe798a579e5d15a1219bb7524e82185a617cf3ecab685ed3932d458c103aa0c52d4cf72810c953515448131d7e90b36d5a402405d1e66583cb77b07ca13f4863d20bcff60c1be242607eb0ef81a9d771c7255dd7702690bc7b89a8ea94c06dae2930586195287c094164d36b7d19f684514be80698be234a82393b5df5f9733e0fc08d0346430d3baffc9ec5847ac458bab4994a233dcfc87d768f3492294d43c08cda4bb08beb70415563de4be18dbfde99a60b13de944283a59ccaa73feac775be98fc36fbbe27d10e41322ddc147c555d0cf199631204a6dcc688b"})

14:06:39 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x3, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x5, 0x0, 0xb2})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:39 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x0, {0xb, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r4 = fcntl$dupfd(r3, 0x406, r0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cachefiles\x00', 0x0, 0x0)
write$P9_RSETATTR(r4, &(0x7f00000000c0)={0x7, 0x1b, 0x1}, 0x7)

[  596.115854] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
14:06:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x101002, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000800)='IPVS\x00')
sendmsg$IPVS_CMD_GET_INFO(r3, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r4, @ANYBLOB="00042cbd7000fbdbdf250f0000004800030008000800010000000800030003000000080005001a00000414000600fe8000000000000000000000000000aa0800030003000000080004000600000008000400020000000800050057d80000080005000900000008000600800000000c000200080007000900000008000500ce0b000008000600010000000c000200080009000a0f0000"], 0x9c}, 0x1, 0x0, 0x0, 0x845}, 0x10)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000000180))
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000000600))

[  596.177293] CR3 = 0x0000000000000000
[  596.215271] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  596.234224] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  596.253274] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  596.267267] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  596.286032] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  596.297951] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.326013] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.341171] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.349325] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.357543] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.366030] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.374518] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  596.382700] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.390887] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  596.399039] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  596.407301] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  596.413943] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  596.421573] Interruptibility = 00000000  ActivityState = 00000000
[  596.427942] *** Host State ***
[  596.431335] RIP = 0xffffffff81173b5f  RSP = 0xffff888087797998
[  596.437444] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  596.444039] FSBase=00007f24daac1700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000
[  596.452033] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  596.458150] CR0=0000000080050033 CR3=00000000a8d95000 CR4=00000000001426e0
[  596.465350] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018f0
[  596.472211] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  596.478420] *** Control State ***
[  596.486382] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000e2
[  596.494816] EntryControls=0000d1ff ExitControls=002fefff
[  596.509879] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  596.519789] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  596.537016] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  596.549178]         reason=80000021 qualification=0000000000000000
[  596.555982] IDTVectoring: info=00000000 errcode=00000000
[  596.566419] TSC Offset = 0xfffffebe3fe28fee
[  596.571334] EPT pointer = 0x0000000090eba01e
[  596.575872] Virtual processor ID = 0x0003
14:06:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14:06:40 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VHOST_SET_VRING_ENDIAN(r0, 0x4008af13, &(0x7f0000000000)={0x0, 0x3})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:40 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0x0, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
recvmsg(r3, &(0x7f0000000180)={&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1, &(0x7f0000001380)=""/4096, 0x1000}, 0x40000000)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)

14:06:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0xfffffffffffffffe, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0x0, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x2, 0x2, {0xb, @pix_mp={0x0, 0xb6}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x1f, 0x9, 0x1, {0xb, @pix={0x0, 0xffffffff00000001}}})
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000000)={{{@in=@loopback, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@broadcast}, 0x0, @in=@remote}}, &(0x7f0000000340)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000540)={'vcan0\x00', r1})
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000440)={{{@in6=@empty, @in=@multicast1}}, {{@in6=@empty}, 0x0, @in=@local}}, &(0x7f0000000400)=0xfffffe12)
getsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

14:06:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
fstatfs(r0, &(0x7f0000000200)=""/185)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getpeername$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000000c0)=0x1c)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/enforce\x00', 0x40000, 0x0)
ioctl$sock_netrom_SIOCADDRT(r3, 0x890b, &(0x7f0000000180)={0x1, @bcast, @rose={'rose', 0x0}, 0x798, 'syz1\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x7, 0x4, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default]})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0x0, @vbi={0x8000, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x200, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x1, &(0x7f00000000c0)=[@cr4={0x1, 0x200000}], 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x401, 0x200)
write$nbd(r3, &(0x7f0000000500)={0x67446698, 0x0, 0x0, 0x3, 0x1, "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"}, 0x1010)

[  596.786225] kasan: CONFIG_KASAN_INLINE enabled
[  596.799376] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  596.828941] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  596.835206] Modules linked in:
[  596.835706] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  596.838399] CPU: 0 PID: 27060 Comm: syz-executor.3 Not tainted 4.14.135 #31
[  596.838403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  596.838408] task: ffff88805c194740 task.stack: ffff88809f960000
[  596.838421] RIP: 0010:vb2_vmalloc_put_userptr+0x6e/0x210
[  596.838424] RSP: 0018:ffff88809f967c18 EFLAGS: 00010202
[  596.848363] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  596.851754] RAX: dffffc0000000000 RBX: ffffc9000e17e000 RCX: 1ffffffff0da760c
[  596.851758] RDX: 0000000000000001 RSI: ffff88808f073514 RDI: 0000000000000009
[  596.851763] RBP: ffff88809f967c40 R08: dffffc0000000000 R09: ffffffff88c9d070
[  596.851768] R10: ffff88809f967cd0 R11: ffff88805c194740 R12: ffff88808d165e00
[  596.851773] R13: 0000000000000000 R14: ffff88808d165e00 R15: ffff88808d165e08
[  596.851779] FS:  00000000015df940(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000
[  596.851783] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  596.851787] CR2: 00007fa2abd73000 CR3: 000000008cd29000 CR4: 00000000001426f0
[  596.851794] Call Trace:
[  596.851812]  __vb2_queue_free+0x3a8/0x7d0
[  596.865413] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  596.867215]  ? vb2_vmalloc_detach_dmabuf+0x90/0x90
[  596.867227]  vb2_core_queue_release+0x64/0x80
[  596.867234]  _vb2_fop_release+0x1cf/0x2a0
[  596.867245]  vb2_fop_release+0x75/0xc0
[  596.898461] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  596.901564]  vivid_fop_release+0x180/0x3f0
[  596.901572]  ? vivid_remove+0x3d0/0x3d0
[  596.901579]  ? dev_debug_store+0xe0/0xe0
[  596.901584]  v4l2_release+0xf9/0x190
[  596.901592]  __fput+0x275/0x7a0
[  596.901606]  ____fput+0x16/0x20
[  596.914676] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  596.916144]  task_work_run+0x114/0x190
[  596.916157]  exit_to_usermode_loop+0x1da/0x220
[  596.916167]  do_syscall_64+0x4bc/0x640
14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000}, {}, {0xd000, 0x3, 0x0, 0x7fffffff, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x6bc]})

14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x101, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="f7a46fad1d000066b8a2000f00d8f3a79a007000001c018fe9589a39da1966ba4100b800000000efc4c17de9800f0000000f20e035000001000f22e066baa10066b8000066ef", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x100, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffd)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0)='SEG6\x00')
sendmsg$SEG6_CMD_DUMPHMAC(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="bc183ecd", @ANYRES16=r4, @ANYBLOB="20002bbd7000fedbdf2502000000080003000900000008000600010000001400010000000000000000000000000000000001"], 0x38}, 0x1, 0x0, 0x0, 0x48840}, 0x8805)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  596.958714] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  596.960486]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  596.960500]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  596.960507] RIP: 0033:0x413511
[  596.960510] RSP: 002b:00007ffd8fcfeda0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  596.960517] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000413511
[  596.960521] RDX: 0000001b30420000 RSI: 0000000000000000 RDI: 0000000000000003
[  596.960525] RBP: 0000000000000001 R08: 0000000010745ce5 R09: 0000000010745ce9
14:06:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})

[  596.960529] R10: 00007ffd8fcfee80 R11: 0000000000000293 R12: 000000000075bf20
[  596.960538] R13: 0000000000091b32 R14: 0000000000761748 R15: ffffffffffffffff
[  596.967219] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  596.969943] Code: 4c 89 fa 48 c1 ea 03 80 3c 02 00 0f 
[  596.997640] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.000140] 85 8d 01 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 6c 24 08 49 8d 
[  597.003585] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
14:06:40 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x0, 0x7, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

14:06:40 executing program 5:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x2, {0xb, @vbi={0x0, 0x0, 0x2, 0x20385655, [0x2], [0xa01b, 0x1f]}}})
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000380)={0x0, 0x9, 0x2, {0xb, @pix={0x0, 0xffffffff00000001}}})

[  597.006724] 7d 09 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 
[  597.036073] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.039111] 38 
[  597.047967] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.055170] d0 7f 08 84 c0 0f 85 3c 01 00 
[  597.055204] RIP: vb2_vmalloc_put_userptr+0x6e/0x210 RSP: ffff88809f967c18
[  597.058172] kobject: 'loop1' (ffff8880a48d0560): kobject_uevent_env
[  597.090893] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.109103] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.112460] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.126485] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.147213] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.155137] kobject: 'loop1' (ffff8880a48d0560): fill_kobj_path: path = '/devices/virtual/block/loop1'
[  597.175008] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.182512] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.184122] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.189608] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.201939] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.215224] kobject: 'loop5' (ffff8880a4a3a920): kobject_uevent_env
[  597.233921] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.256765] kobject: 'kvm' (ffff8880a6e14a90): kobject_uevent_env
[  597.260786] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.267734] kobject: 'kvm' (ffff8880a6e14a90): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  597.278965] ---[ end trace cc130775e7653c16 ]---
[  597.288015] kobject: 'loop5' (ffff8880a4a3a920): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  597.298516] Kernel panic - not syncing: Fatal exception
[  597.307720] kobject: 'loop1' (ffff8880a48d0560): kobject_uevent_env
[  597.309405] Kernel Offset: disabled
[  597.324731] Rebooting in 86400 seconds..