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"}], 0x11a0}}, {{0x0, 0x0, &(0x7f0000004000)=[{&(0x7f0000003f80)="8878bf26e62644e8f2047e410c7a70eae219f679ecd5520ae126b7d09dc4dea8c011e6873b018b75be0f922038857a6cf8c373425064d320da38cbec647a4fe7505e44d248e53f3a8685da33bed93fe322e38ea5f2c0e7271fada7", 0x5b}], 0x1, &(0x7f0000004040)=[{0x1010, 0x1ff, 0x6, "584072c558dd70cb9a67c648fcbb9d1bcf34e5d0158682b1b9dfea66f32e4a2014a655b3105db5cd4793c80f9e1df20de8d70733d14fa092f7b935f7fda9e79f15f8f53510e2749dae2c26bf6000674c7ece5e96faaf72d6ab54c9184ae4963df85f07115e0db8cdeb4d751a5ce80421585d7f89c635bd452286c4474d96dbcbd69d8b6ebe95f711a7784a74f425c12af83a9718eb397981f79d192fad398654532ba2b351cb852f84cbcb50c1d50f619eabcf90bb8243866732115a2bf0d5d5cbdc4c9986ea8cb845f1c4217fa342450d4ca43097d9553f42833d52585a90bb040db10b19c38f166ee687feb497d4a91320d7521690f029321cae837a284d4e52b34f28014450602e8fd75c75f39baa609f2bd0ae56f4f9a4ff55607d4e732defac10d4e771f52bb2ac51ba318fa73fc9bf07e36b3fc777188be5d5c53af7bb22910621150874518388eeca3692b5fa9bd2be8ebd8b3a4a391ba425cde6afad0e3f1e3a339b21f114ead9d5427d5bca92b3f829f37123cd0367f9c65e95c35bc635e8f7cb62665ca035983ddacefada420b90a8651e7314769b2e87b6572edab61139ea070962b092eccd0d0474b5e0a84db4eb7303a2037efe126ee0fc993e4c3c1a21a74aa302a979f579faabefa0fed6dd9a753c6b4c7ab715ded492037d17cf3a738356c88f1e721585612c1ab6b610e80d949182b5fd952a6ff0b91615b58e90c2342f876a15076eb865a1df1eec1692f7e8122ad79c2f1b4d1a8586bbe3e51997c872ca364a08d3753bb51a5f926afbf72446b6c77398ec8c41b769dbfda3feeb064ecd6c69d9720cf473e1de08bda09ad3de72be4036260b7e18920e3b0d98176b2e56d5b10063a1e16b017ee1f31033c1b54ddbd1fe51cd048d9d7071e7670887a83f6b60cb7698e350a2ab32ce68b9476cf55e15d52d96e6c16e0fd23741a08adabc21409c5b8f881da4ada815a834997adf0e055b0518f29bb2ae3fb05e13f82bd08d50f3196f57e51ef19ccbc6e0566590c6886ec1430fd576c63e89449b306c4e12c5c52b0a0395bdfbb8afe826adfdd8c02d37a1c2bfe8816ee158c33ad81ac10680c8e6ec45001bb4c0851e4b4477b5ee9d276299a83a76aafa39af18e275ca70c960519af15cca94078815b1701eb10cba875a2bcfcc701f6c437515bbb45d24adfa96a02415607dfbd5f5157cf677ff88175dec3442c1339257e6a2de233ea04e18929cff19c3f3ae66dd476e6028fad40661e0f05498f12bf1c7f7a5b6e0008823b9835cabcc662f79cbd2474f1f57f645a13cd2da0cc43d39ef7ec2bcbd79e603a063289cbc09e291c6fe2cc524f53ce4c2287538cbb2ecc74fdbd0bb6cf4f8de3147954d65446237da51851cf8d3f54aba77041a40e52784c39243bdc230fb21ab9b120ab0b8d1ce31aab9a380c4aef34de2613170730df299f0300fad6aacfb45a63774c829bb9644363d7b1d3f059337c7e8df3e67f1daa6c696e8795f6892a05c4498db7480d8d324554dc24527df3e262cf4dae26342fb990838aecf7fcf0dbc58ea82272f55510aa73e695abad86a875a3a2a160b8b972a4403618d07f7d0c28e1360ae49244fceb509fbdbd06966ad2286d4a7d9c7fda6b938977202a87c9c960ab32a5b26e9ec3e5b7d549874affa3ac686ca0a2e64d12115bb8931695196afb3b91482ddd4c25d347bfeb00d0f1e7cbbaaf7167ba9322d829ad6f5a086a39476b7aca5fcfb10901d973df24aac35d533bdd72cca4062fac487599f6ce29ec8a6c673b3903e0afe381bd80628b7925d801a83f0136fbc8475c5c1610982d5ff05de1989b526336a101db2c6b1133741ea2307d91aaa3c620e096e331e028fac06d0db33b7bbfd2b26ae02cd29d6b032bb5f19fdc5730390a35f870a53e942bbeaf092924c68a896e0f9dc072192cda4d958647ff28f2a246845ea23a0c4b08775efeb9c29d6dca2faf2feb4699079fd04bd5be7f83d31437f79c43b22045709ed1adc2fef796ec56a4551fa5dd34c68062a206ed13ca5a19b802b4e2f15d3109b44819fff43e1c8981444a18e5685d870e74b6c6880b3e69cd5c91643aa0f373fae595ef3c21792567d6fdd568176f72c68e29e6df4a1c7711e1f60accd08e0a29aed50f89c88b1191c7e9e41a8b478d46b03ada20e00c7bcb202dca68cdf2f198afc14b7119b81a96b02a62332f80ecbb8cbe0d891f7efd6041691f8f9a884a72e863fb36b2f595be2feb8ed9507aaedebf75ff64afebbed57a92479c5e9bae27431e82f6f2da711680d7b57354a742b5efd852b3c98b7444ba5d74cc7c9426c0314fac329cda541a84a7d5a67ad8fc6dce0c643ef6dc51c5a5a9155c6d512d9783e33bb1d927e06c5a1a47a48314be4cf7e1f2a8881a7743ac42008192c36eb2e5976bfdbe3e30af63b04b9b76f0e3bb24f0c372a88e429251c3c7151e499391e3170bb3635bce177a5337cf0cc950ce688205b9a7c4f29c8801759f31780ab57c309885a33fd45c5b79410a708cf666ca41bb5c9bd9d6da34ee7f0d7576832e9ede181656b3442ba6210ebc4089ada11a078bee93f1e1b7f60a22cc6c66ec5775dc8dce922148714f7603d2dcedc427e5b50801665f4e0b4816a9b8b5dae70619f889d014837d7c55dd2db0c226ad565644458ebf4a36cd2c917fe2d35505244e7b3ab5fa6a8d5f71257eb8409b36574dc2ea4008bdbaeafdb6880e914b460a1109881401b93731e28846705f89071f37604a7bead36de8dcff48dbc041b3b7761ca87d21f62a05041e6b3d5bd058f4fad4c06eaff4b28f419dbc8693ee4fd264e79e314cc82d727da85ccea4fe85795062aaded7ab535a6b2c838d4fab9afe915779aca5fe7957bc3ddeba55b1eaacbc594452dfbce7d7014e6a9e3b7a413e70ba45f969256b2b144dc3d76b0c8507d555661344b070a0cd1a5bafafc4849336f943bd57c959c8b5db724a2bdf3d6a816cbbd7db09333a774a32e460e707630cf53ed08c77f105f53c21250043219730e41969dc805e9d9a1035fbb3b3cf4d27a1c56f46d9d0e6e78ed49f63b00081e25c044a24f7dadec880a509309b0e2ebb39099d459e7bdad68c9fe879401a0570007e280fc08ea1d42a14951c0da04a2dba673d466bf9eec092729d830307938fc8d07208a63ad46288eae7c172908a34a7075d38f41f37272744376f905c1deed926850d9e8dc32b8304ba2fc286196c9c1473f6c817ad74a2c11691fde892e0840001b71d3215a9bcbf617dc474c04428570281006c5b874cd9d19f2f35663f443cee77bbb7cceedb62d210fe9e781ee118d97f12c7faf3f4e95868f082fd154cb2eb725a65e1ca3b6aa3b23694b9ab19e26f07bf559ea3b854a361674dd1a4c841daba534235f46439a6ab8361b075590a602d20bc04be98dc76856154e944a38059512891d6f11a5b41064007866e702a966b7d691a44dc6381f6f4b2f3e3c34a6ffc83a9b3f1803545c3504633fdf9e092bb7d3ce48ef1eae6cbb954069e634916877d292680307545f29837560eba8edadc9605bc09d1312b7307d9de5d1ef7101af3ef0cfdbf35e572a59a7d2776ed383e44c0704b7203644336d1bd79a7080f5754a0e4acbd7e915855a55ebf99012207d112463404ea1b31d6b96f95048706f7439fbde943d37dcfef01aa5dcd8579a6952e35754baa07c0a677fedab9bff084c27d33278772290403ff24549ee958d9fba2122fa8e5c0659cd34112ff7cb22bff9666dd0e56902db295ce9beab1aaf0157e6673b84b94a3208b4715db6c5f20adc1791f1a387c4b0a049be28850d822baf147a27354771043ba88e32a4805afaeb7d06477b0d4690e67cfe91293c6e7fd999ef022a53598e4f787181763bd130a1ad704b4fdaeaa8af67ba863c28ff0586410a554dfd905f31a19a21304a3c2a764ce4caeea71b68136951766bc3cae96dec5998d97bf259cbb1a8d95aeecf8ccf694aa60072f61e3810f77e0d44e6b414371772f5b01945fe93527900b19d842b574cf1eecbb9dd250ee16ac61cffb168ab6e53d8b331e2bfce07374528318346849c87a05d9da56bfd48aff2db6b89c6fe1d5e89e1426ec96dfa854a090761c114bdedf1a6384ea6d277979f1fdc2984b2db3b6eff5bf6328d512c8c93956b7e26d41e69a5c9341a8aa283eb4db61f898c56e0872a17ccdf719d89573d33288accb731d2716ada4fd65a2c5995fb5053d5b88b92b223bb6e00c883afd4e1a2a238e0329c950c90aa57cd0127790edcf0ed97fd13b73000f644b2f38bd23b8823f553af095e6291d798899dcb970213bb1b99aa030e17679751a5851d6a8c0584ad045ced35b1f6bc0a9146e285a6a25b175968556d2d8c5ea2f62b0f75bcb8467c3b1fc754d99cbb5f7ffa67ad7bfddfebf56003a5fc367a0adfd0dbc8cc3ea1388761b130de8a899146750ac90d7d8a4b3bbdbde4910bc04397b82fe750b69711caf5479f669dc4b5668b986a87188524540c8fa5c3a4e5a023bf070f941524634618734bfd4b10d769298427fde84ed57b8fbee6b030b308353d82f39addf2bb04ce03176a56bf25bb8b1fe5dced4aacc6468ed8ca380f600651f87b54f4b7c1a69ef4958d4d1857bf749d5ed539880a7464ece6c815441bb584c71a83eaf382de3a85d768d049b46d37000efdea9c9e1c88f77b629d3966ca2d1d2591ed90c26315b74a9ffde396e3cec18bea659f73af2fb047c3006f2e8b0882b4b54750cb63a9433f16ddf4192833530f7b42fa51d2891c57b40a3e5680b045a4d8f14ac3b6e3071e0d109fcc814a94a6b1392bfbd060dca489a93c316ba064da56dce7d4f23c2fb403c91bb8c1a5fd159c65edaf83bfa561e56531162f663c35eeb370d21643d84882e8b2c60ae9dc07c0fdc192b61fcca42dbd1a170faf52b6aa436cea5d1bec5c8b1c2dfbb72818ed7c61dc0f1a8eb0458534c4b9aa069526469d020799b7ecc627710a87f7a571d4a5d8a692fd159d4f8bbfda69844b0833c954605c28dd0ab51ae29fe79ea0d27d390d774a6365659ca44842e63ec474343687b654cfeef96156b274949323c21976e5c3494df5c8db050dfdac1992a2a32d8c9e7fa64bc4bdd76e573c30b3819090a635e7c87660733f0c21a60cb4058f979f374d01dce77ee88ca3c7f34b4747b7940de46ebaf21e86a56244519eb520ac36e62f57be968d9b46b4cd784d250b7cb1f4413d47a95c41616c12e3d11bb9cee2e128ce4a147efea0c4b0109614b733ce9f66321ae8d47efdf39296e6b2a846623548f4684fab2fb74e608d1a795f33358fa8a71b007e674c60c4b4e61069a31472a604622d16e34ae92b4542701d3fccc25713295caf6b0c112d46feb506eac93cedab70609a9b9c9744930973051b172adbebe7c3bae5ceead52520936c5b2bc87c19667dcff3636dfe725ea9512180337d9a5ec7c49966127ae68b9f160d2da669e7418b55281e64bc21b7f178ddb69612e392328dd21c890cc0f7ce047b842913224e4ec94488c18edd0dc20379333d54d5f8574a1c22f26df51171d835475670f92604911c693c451313299f864baa965f08055a8e0a7440d5fa01db52cd7c57ea8086bf3a357a954537e096fbc833b4b2eba2c8893cf64561553aeca97d91564a3a38f6e41ec974dd2b8d63e1715d05a9d00dd9556be9ba00f1f5cf3c1b0981e4d7d0034782042169b1fbacce90c4f665aac3137b1460199181775fd0b09ed89aeb71df981dd21b1722067603ab5cf30c77158e57b5b3a7f3e5"}, {0xe8, 0x117, 0x7, "13c9a1fe3e0d0fcd373be30ac9ac0304b81d17040884efef2488cd348624ee35a4ed0a20576044efb4bfa37e859117150388e90829eabacc3d13bff0ee484d6f720327ac92750711f2cf8c7987eaf311866f00535241f98b30880d43cf59aefc90b68591b72ae7bef891a366c101099e1a1555d8b5b6562c24ca51e124c5ddc8e546a5f4568b928288b445ce4bf4c5cc5cdc87494bc678363315349099698a542c04ea90a89df181b661ff103c59bf9c46631b12934b399ac8a1b5c43f5ea81f0a39610726fc7280315d47c88e341165b495e8f3846aca"}, {0xd8, 0x11b, 0x9, "71afa639ab2e7016d0f283c0f0dc8baf6902c9ca4cd938f4505c5c234445a61540c26d45f352d830aaa3f756aa9b37d87d880ea8b12440dd404538e0904deee362597525c4bbb17b9cf791358ffa46d13409d55d4a0e2ca26a14df1f2cb3ad471bf27b2e05d2f719fea6b4a82e1b5a48284840fed033da6fe9f3f657de577e85e25efca3637abfad226b0a94f3150e0b9c1130ce3715646278e5f1172a2803d7360cca2d940dc337aee314b198f951f2079cc25b0617ab9cd6931d14384e8eebba940c4e40"}, {0xc0, 0x107, 0x8, "479af9fb0281d339d7265b2614cd7528d88c762e3c32d185445e00beca9aedb2944a0e5c09024f3ffd8948c84f4e6e47e049db1fd41b6692c2646b7ee342b2feaa8526c6e992e228c0c6610b2b79a50fa5008d94902dacbd373e9d21693578b02e601632b73c810e5c59158174fb9e2da059422f84bb7742e83643ea094c5ba4ae0775e4d1d5f6755a8a15876870cdadcd62e8570f4c60f66a1fafe2296d77e167553b00b199788dd57f10d7e9"}, {0xc8, 0x117, 0x339c500d, "a0f95b97749589eae3ec9287028ce2a890f9c99702192bf47275beecd408e1fd77092d2db0ecdf60f784fad12082289c2c61200afc799f9a11c96df9e738155d7e1025bfbe8e3e0cd505da703382cbbb8796df1764cc2bb125e93fccca7b8c1d271e6c8f3e2e652be5925ff65096402483a762d2f93a3e65e79b85d7f3425793bc151bca23679226e64c529aa8f7f505e86d97df039415ce64db13998ac0d69d64ea16ec72c01320dfcac7755eed02dd7f1155"}, {0xc8, 0x113, 0x6, "6ca422a4b5856052c3884cc7994e4927fc7b77bd13cb009b691fb61b1d7c03668c2b7c9848594c595d3665b2215b2599eaba7b0b056eb31df7a818a845a4ec50bd7f22082e949fb71a6284550e07740ce5af03b2933047497ad7effe0fa7a744029e8473de20f3106936230152bd83eb8f3f1cc01da4bdda75cbde5b8ffd57f1eb1f29dc455a7c7b5225c1df99e2fd4768d02b0cb55d67a445a0ec3ab03880991e56edd54f7aabee2201de5c805dffa32e43"}, {0x50, 0x10f, 0x0, "2f59799f222efe7954d51ba1b4c501d600c0eeb33074c9d575a8f563a9b5ddfb9f7527f8c6229424dde96e1bde79fd90184f3715ebbfe6e6eb6bd9"}, {0x50, 0x13f, 0x0, "7f69ba3bb46c71f224cd409c9ea821e300e00c8c68f95affc6caaa2090e6a0ad00a5c32ded36a812ee68f25aeacaf5dfce195cd788dbe5417e1fe17e0edacfe5"}], 0x14c0}}, {{0x0, 0x0, &(0x7f0000006800)=[{&(0x7f0000005500)="96", 0x1}, {&(0x7f0000005540)="40105c910810854a5c42299a0cffeed4f550efbcc0d4061d02ce1726ece4accec073528d324db3b3ed0a3e21462d95862430b1cc90f5078a2c70fbf613e0c59b6177998c183065ea6c05e283cb0610f4dc3ace8acf2743bf822600fe7ecf1912ae084df550d13f49d3ac0f41d888617ff65b47d532b4544bc0a4569ba5b5f6269d2d659be8ca2ee89a6989275486ceb52138f4ead1a44f982c48ee4fab73c8857faba4aeb5028e03df664c030d09d769511ddf14d4e2b2a89fa214832f74da3fbe24", 0xc2}, {&(0x7f0000005640)="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", 0x1000}, {&(0x7f0000006640)="a93483dd934cee596b8ddb35f64657f15121393e545b3597e4a8c896acaa1850f3113e", 0x23}, {&(0x7f0000006680)="fe4b40806dba212ad506328cd37da7fde60ef33759d6f6f86d94c95467aad5863c5c9e67396f2b45da66c72d532accde95d5a3f7c974fc4baeaa94346890d1085ee84fafeb3bca16ebab9a986f1130573f1b6208d132ac6cf7839a21af80a3127006c5ee86a00356dd4e47ce14b90d0b5a54a6cc52f2fce6c5437589b8a03dc81794f6d4423ccc9252dc55f21a876787148bc878c873161d50c9765ced8da8a54f1c33958271636bc28e65", 0xab}, {&(0x7f0000006740)="bb68f1e7ffe4d08bd709a2b095ccd2aa0df03dca3583cb8ff97890e506172516599a85d8714d5a2070646c250763e58f3623a0c1fd85741436392676ef0cc2c2256e191b83adee2e32c7379aa62100a2af1e4190036283dc20ad1c2f8068a10c689b24a1fa335f08c33284dce4ec7af1c195b2721192e087c7082c0a5c2150b570ed192a29122349f7517a148037d7aaef0f296393734df3bfd5bfffa16a3e562fd9acd5a7c279372b59", 0xaa}], 0x6, &(0x7f0000006880)=[{0x70, 0x0, 0x1f, "b8fd25362e5c95c72f199dec73d94f90835eb6093170e8191880801e5d5ea5c83ec387ecb5f15c3930a462308078d636ce81b4f7a865eb167a4b6c683b137873e0ff2dcc69f967155174368f6e19108934efcc90f42ceb00c646a1f1f75e"}], 0x70}}], 0x4, 0x4804)
r2 = syz_open_dev$admmidi(0x0, 0x8, 0x0)
sendmsg$sock(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000040)="cb", 0x1b}], 0x52c9729d1c96517c, 0x0, 0x2b8}, 0x40000d0)
getpriority(0x20000000000000, 0x0)
sendmmsg(r0, &(0x7f0000005b40), 0x4000000000002e3, 0x0)

10:53:52 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x50f15555550000, 0x0, 0x0)

[  357.470623][T15410] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  357.484058][T15410]  loop5: p1
[  357.498545][T15410] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xf0ffff, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  357.550859][T15421] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  357.588059][T15421] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  357.640890][T15421]  loop0: p1
[  357.644599][T15421] loop0: p1 size 2047 extends beyond EOD, truncated
[  357.690584][T15410] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  357.730197][T15410] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:53:52 executing program 4:
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/fib_triestat\x00')
r1 = syz_open_dev$binder(&(0x7f0000000580)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
pipe(0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x10000014c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KDGKBENT(r0, 0x4b46, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r2=>0x0})
pselect6(0x40, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)={0x1b7}, &(0x7f0000000200)={0x0, r2+30000000}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f00000000c0))
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')

10:53:52 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xc00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6600)

[  357.802012][T15410]  loop5: p1
[  357.811086][T15410] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:52 executing program 5:
syz_read_part_table(0x4c04, 0x376, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x1000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:52 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x60710000000000, 0x0, 0x0)

[  358.066412][T15454] validate_nla: 8 callbacks suppressed
[  358.066421][T15454] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  358.107661][T15448] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  358.158821][T15448] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:53:52 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)
syz_open_pts(r0, 0x0)
prctl$PR_SET_ENDIAN(0x14, 0x1)
dup3(r0, r0, 0x0)

10:53:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6700)

10:53:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x1020000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  358.214175][T15448]  loop0: p1
[  358.221336][T15448] loop0: p1 size 2047 extends beyond EOD, truncated
[  358.366554][T15462] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  358.420446][T15462] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  358.454967][T15462]  loop5: p1
[  358.464336][T15462] loop5: p1 size 2047 extends beyond EOD, truncated
[  358.484384][T15474] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:53 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xd00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:53 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x70f35555550000, 0x0, 0x0)

10:53:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x2000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:53 executing program 5:
syz_read_part_table(0x4c04, 0x397, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x8004)

[  358.832869][T15489] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x3000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  359.001173][T15491] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  359.051680][T15491] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  359.097814][T15491]  loop5: p1
[  359.117088][T15491] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:53 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xc094957f7f0000, 0x0, 0x0)

[  359.152493][T15487] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  359.179821][T15503] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  359.195537][T15487] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  359.219376][T15487]  loop0: p1
10:53:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x4000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  359.260404][T15487] loop0: p1 size 2047 extends beyond EOD, truncated
10:53:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xe0fe)

[  359.477412][T15515] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:54 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)
syz_open_pts(r0, 0x0)
prctl$PR_SET_ENDIAN(0x14, 0x1)
dup3(r0, r0, 0x0)

10:53:54 executing program 5:
syz_read_part_table(0x4c04, 0x39d, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:54 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xe00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:54 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xd0700000000000, 0x0, 0x0)

10:53:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x5000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfeff)

[  360.101267][T15536] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  360.214330][T15540] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:53:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x6000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xff00)

[  360.278049][T15540] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  360.300741][T15540]  loop5: p1
[  360.305529][T15540] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:55 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xe0500000000000, 0x0, 0x0)

[  360.323461][T15532] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  360.361844][T15532] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  360.383810][T15532]  loop0: p1
[  360.416712][T15532] loop0: p1 size 2047 extends beyond EOD, truncated
[  360.470895][T15540] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  360.497585][T15555] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  360.515391][T15540] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:53:55 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xf00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  360.565169][T15540]  loop5: p1
[  360.568782][T15540] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x7000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:55 executing program 5:
syz_read_part_table(0x4c04, 0x39e, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  360.829584][T15566] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  360.971156][T15563] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:53:55 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x100000000000000, 0x0, 0x0)

10:53:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)
syz_open_pts(r0, 0x0)
prctl$PR_SET_ENDIAN(0x14, 0x1)
dup3(r0, r0, 0x0)

10:53:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfffe)

10:53:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xa000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  361.012655][T15563] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  361.031323][T15563]  loop0: p1
[  361.055842][T15568] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  361.080799][T15563] loop0: p1 size 2047 extends beyond EOD, truncated
[  361.088317][T15568] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  361.123285][T15579] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  361.130117][T15568]  loop5: p1
[  361.158473][T15568] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xe000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:56 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x200000000000000, 0x0, 0x0)

10:53:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x40000)

10:53:56 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xffa, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:56 executing program 5:
syz_read_part_table(0x4c04, 0x500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  361.467133][T15592] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xf000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xc0000)

[  361.813061][T15602] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  361.849333][T15602] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  361.865842][T15595] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  361.887083][T15602]  loop5: p1
[  361.901793][T15602] loop5: p1 size 2047 extends beyond EOD, truncated
[  361.922537][T15595] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  361.980527][T15595]  loop0: p1
10:53:56 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x300000000000000, 0x0, 0x0)

[  362.006520][T15595] loop0: p1 size 2047 extends beyond EOD, truncated
10:53:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x20000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)
syz_open_pts(r0, 0x0)
prctl$PR_SET_ENDIAN(0x14, 0x1)
dup3(r0, r0, 0x0)

10:53:56 executing program 5:
syz_read_part_table(0x4c04, 0x600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:56 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x100000)

10:53:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x3a020000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  362.488311][T15626] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:53:57 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x400000000000000, 0x0, 0x0)

[  362.537946][T15626] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  362.584171][T15626]  loop5: p1
[  362.610330][T15626] loop5: p1 size 2047 extends beyond EOD, truncated
[  362.690599][T15629] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:53:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x80ffff)

[  362.731889][T15639] print_req_error: 448 callbacks suppressed
[  362.731946][T15639] print_req_error: I/O error, dev loop5, sector 1 flags 80700
[  362.735271][T15626] __loop_clr_fd: partition scan of loop5 failed (rc=-16)
[  362.760095][T15629] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  362.774582][ T2492] print_req_error: I/O error, dev loop5, sector 1 flags 0
10:53:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x3f000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  362.781857][ T2492] buffer_io_error: 446 callbacks suppressed
[  362.781868][ T2492] Buffer I/O error on dev loop5p1, logical block 0, async page read
[  362.799024][ T2492] print_req_error: I/O error, dev loop5, sector 2 flags 0
[  362.806350][ T2492] Buffer I/O error on dev loop5p1, logical block 1, async page read
[  362.824271][ T2492] print_req_error: I/O error, dev loop5, sector 3 flags 0
[  362.831803][ T2492] Buffer I/O error on dev loop5p1, logical block 2, async page read
[  362.840146][ T2492] print_req_error: I/O error, dev loop5, sector 4 flags 0
[  362.847746][ T2492] Buffer I/O error on dev loop5p1, logical block 3, async page read
[  362.850482][T15629]  loop0: p1
[  362.863341][ T2492] print_req_error: I/O error, dev loop5, sector 5 flags 0
[  362.873645][ T2492] Buffer I/O error on dev loop5p1, logical block 4, async page read
[  362.882606][ T2492] print_req_error: I/O error, dev loop5, sector 6 flags 0
[  362.890024][ T2492] Buffer I/O error on dev loop5p1, logical block 5, async page read
[  362.898184][ T2492] print_req_error: I/O error, dev loop5, sector 7 flags 0
[  362.905693][ T2492] Buffer I/O error on dev loop5p1, logical block 6, async page read
[  362.913927][ T2492] print_req_error: I/O error, dev loop5, sector 8 flags 0
[  362.921163][ T2492] Buffer I/O error on dev loop5p1, logical block 7, async page read
10:53:57 executing program 5:
syz_read_part_table(0x4c04, 0x700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  362.931380][T15629] loop0: p1 size 2047 extends beyond EOD, truncated
[  362.931985][ T2493] print_req_error: I/O error, dev loop5, sector 1 flags 0
[  362.945468][ T2493] Buffer I/O error on dev loop5p1, logical block 0, async page read
[  362.945730][ T2493] Buffer I/O error on dev loop5p1, logical block 1, async page read
10:53:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x40000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)
syz_open_pts(r0, 0x0)
prctl$PR_SET_ENDIAN(0x14, 0x1)

10:53:57 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:57 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x500000000000000, 0x0, 0x0)

10:53:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x960004)

[  363.317510][T15662] validate_nla: 5 callbacks suppressed
[  363.317520][T15662] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  363.363049][T15658] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  363.428484][T15658] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  363.493463][T15658]  loop5: p1
[  363.538549][T15658] loop5: p1 size 2047 extends beyond EOD, truncated
10:53:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x48000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:58 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x600000000000000, 0x0, 0x0)

[  363.760140][T15667] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  363.794844][T15667] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  363.798970][T15685] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1000000)

[  363.836138][T15667]  loop0: p1
10:53:58 executing program 5:
syz_read_part_table(0x4c04, 0x900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  363.857286][T15667] loop0: p1 size 2047 extends beyond EOD, truncated
10:53:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x4c000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:58 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  364.122921][T15697] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:58 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)
syz_open_pts(r0, 0x0)

10:53:59 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x700000000000000, 0x0, 0x0)

10:53:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x60000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  364.332702][T15701] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:53:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2000000)

[  364.379521][T15701] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  364.403393][T15701]  loop5: p1
[  364.408012][T15701] loop5: p1 size 2047 extends beyond EOD, truncated
[  364.459407][T15703] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  364.498939][T15715] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  364.535848][T15703] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  364.548578][T15703]  loop0: p1
[  364.564023][T15703] loop0: p1 size 2047 extends beyond EOD, truncated
10:53:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x68000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:53:59 executing program 5:
syz_read_part_table(0x4c04, 0xa00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:53:59 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x800000000000000, 0x0, 0x0)

10:53:59 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  364.846590][T15726] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:53:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x3000000)

10:53:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x6c000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  365.200938][T15730] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:00 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  365.254580][T15730] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  365.281506][T15732] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  365.295426][T15730]  loop5: p1
[  365.317081][T15730] loop5: p1 size 2047 extends beyond EOD, truncated
[  365.336216][T15732] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  365.345322][T15746] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  365.370701][T15732]  loop0: p1
[  365.374257][T15732] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:00 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x900000000000000, 0x0, 0x0)

10:54:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x74000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:00 executing program 5:
syz_read_part_table(0x4c04, 0xb00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:00 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x4000000)

[  365.630867][T15756] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x7a000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:00 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xa00000000000000, 0x0, 0x0)

[  366.034974][T15776] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  366.101405][T15765] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x4009600)

10:54:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x9effffff, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  366.150744][T15769] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  366.172313][T15765] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  366.207252][T15765]  loop5: p1
[  366.220670][T15769] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  366.235542][T15765] loop5: p1 size 2047 extends beyond EOD, truncated
[  366.261582][T15769]  loop0: p1
[  366.268817][T15769] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:01 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000100)={0x1, 0x7, 0x2, 0xb})
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  366.358387][T15789] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:01 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x1000000000000000, 0x0, 0x0)

10:54:01 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xf0ffffff, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:01 executing program 5:
syz_read_part_table(0x4c04, 0xc00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x5000000)

[  366.732553][T15807] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xfffff000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  366.890458][T15803] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  366.910329][T15803] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  366.955478][T15803]  loop0: p1
[  366.991141][T15803] loop0: p1 size 2047 extends beyond EOD, truncated
[  366.999578][T15808] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:01 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x3f00000000000000, 0x0, 0x0)

[  367.064338][T15808] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  367.124969][T15808]  loop5: p1
10:54:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6000000)

10:54:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xffffff7f, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  367.160750][T15808] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:02 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:02 executing program 5:
syz_read_part_table(0x4c04, 0xd00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:02 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xffffff9e, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x7000000)

10:54:02 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0)

10:54:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xfffffff0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  367.831325][T15838] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  367.887066][T15838] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  367.940514][T15838]  loop0: p1
[  367.947317][T15838] loop0: p1 size 2047 extends beyond EOD, truncated
[  367.955739][T15844] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x3000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  368.030144][T15844] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  368.049440][T15844]  loop5: p1
[  368.059799][T15844] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:02 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x8000000)

10:54:02 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4800000000000000, 0x0, 0x0)

10:54:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x40030000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:03 executing program 5:
syz_read_part_table(0x4c04, 0xe00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  368.504863][T15879] validate_nla: 5 callbacks suppressed
[  368.504879][T15879] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  368.531586][T15867] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  368.586600][T15867] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  368.619138][T15867]  loop0: p1
[  368.664496][T15867] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xf0ffffffffffff, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:03 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:03 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4c00000000000000, 0x0, 0x0)

10:54:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x9000000)

10:54:03 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  368.890483][T15884] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  368.919803][T15896] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  368.932687][T15884] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  369.004278][T15884]  loop5: p1
[  369.026710][T15884] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x100000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:03 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x6800000000000000, 0x0, 0x0)

10:54:03 executing program 5:
syz_read_part_table(0x4c04, 0xf00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xa000000)

10:54:04 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  369.340811][T15911] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  369.400975][T15903] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x102000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  369.472152][T15903] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  369.535304][T15903]  loop0: p1
[  369.538791][T15903] loop0: p1 size 2047 extends beyond EOD, truncated
[  369.604946][T15916] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  369.621993][T15916] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  369.649093][T15930] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  369.685413][T15916]  loop5: p1
10:54:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xb000000)

10:54:04 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x6c00000000000000, 0x0, 0x0)

[  369.710165][T15916] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x200000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:04 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2})
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:04 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:04 executing program 5:
syz_read_part_table(0x4c04, 0xffa, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  369.953175][T15934] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x300000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xc000000)

10:54:04 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x7400000000000000, 0x0, 0x0)

10:54:05 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  370.341889][T15949] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  370.352365][T15962] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  370.362210][T15949] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  370.409336][T15949]  loop0: p1
[  370.410642][T15954] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x400000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  370.458519][T15949] loop0: p1 size 2047 extends beyond EOD, truncated
[  370.479775][T15954] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  370.491198][T15954]  loop5: p1
[  370.542596][T15954] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:05 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x7a00000000000000, 0x0, 0x0)

10:54:05 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xd000000)

10:54:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x500000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:05 executing program 5:
syz_read_part_table(0x4c04, 0x1100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  371.035614][T15990] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:05 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0)

10:54:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x600000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xe000000)

[  371.227923][T15984] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  371.308141][T15984] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  371.352609][T15984]  loop0: p1
[  371.389302][T16003] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  371.421854][T15984] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x700000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:06 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v1={0x1000000, [{0x10000, 0x9}]}, 0xc, 0x3)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  371.491408][T15994] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:06 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xfeffffff00000000, 0x0, 0x0)

[  371.547873][T15994] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  371.575451][T15994]  loop5: p1
[  371.587398][T15994] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:06 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  371.668464][T16014] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf000000)

10:54:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xa00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x10000000)

10:54:06 executing program 5:
syz_read_part_table(0x4c04, 0x1200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  372.028827][T16032] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:06 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xff00000000000000, 0x0, 0x0)

10:54:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xe00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  372.174106][T16025] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  372.262921][T16025] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  372.358208][T16025]  loop0: p1
[  372.382725][T16025] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xf00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  372.512446][T16037] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  372.545054][T16037] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:07 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:07 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  372.608320][T16037]  loop5: p1
10:54:07 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xffefffffff7f0000, 0x0, 0x0)

10:54:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x11000000)

[  372.630574][T16037] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x2000000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:07 executing program 5:
syz_read_part_table(0x4c04, 0x1300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x3a02000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x12000000)

10:54:07 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x0)

[  373.172142][T16062] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  373.214039][T16062] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  373.247024][T16062]  loop0: p1
10:54:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x3f00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  373.265673][T16062] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:08 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  373.463477][T16079] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x4000000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  373.507145][T16079] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  373.546731][T16079]  loop5: p1
[  373.580839][T16079] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:08 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x13000000)

10:54:08 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0xffffffffff600000, 0x0, 0x0)

[  373.731591][T16099] validate_nla: 5 callbacks suppressed
[  373.731600][T16099] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:08 executing program 5:
syz_read_part_table(0x4c04, 0x1400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x4800000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  373.911162][T16096] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x14000000)

[  373.980291][T16096] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  373.992089][T16096]  loop0: p1
[  374.013308][T16096] loop0: p1 size 2047 extends beyond EOD, truncated
[  374.052226][T16114] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x4c00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  374.182497][T16096] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
[  374.183197][T16117] print_req_error: 447 callbacks suppressed
[  374.183209][T16117] print_req_error: I/O error, dev loop0, sector 1 flags 80700
10:54:09 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x2)

[  374.242261][T16112] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  374.269601][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  374.277047][ T2492] buffer_io_error: 446 callbacks suppressed
[  374.277058][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  374.292518][ T2492] print_req_error: I/O error, dev loop0, sector 2 flags 0
[  374.299747][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  374.308622][ T2492] print_req_error: I/O error, dev loop0, sector 3 flags 0
[  374.316051][ T2492] Buffer I/O error on dev loop0p1, logical block 2, async page read
[  374.324221][ T2492] print_req_error: I/O error, dev loop0, sector 4 flags 0
[  374.331468][ T2492] Buffer I/O error on dev loop0p1, logical block 3, async page read
[  374.339493][ T2492] print_req_error: I/O error, dev loop0, sector 5 flags 0
[  374.347511][ T2492] Buffer I/O error on dev loop0p1, logical block 4, async page read
[  374.351285][T16125] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  374.355643][ T2492] print_req_error: I/O error, dev loop0, sector 6 flags 0
[  374.373166][ T2492] Buffer I/O error on dev loop0p1, logical block 5, async page read
[  374.377154][T16112] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  374.381384][ T2492] print_req_error: I/O error, dev loop0, sector 7 flags 0
[  374.381402][ T2492] Buffer I/O error on dev loop0p1, logical block 6, async page read
[  374.381431][ T2492] print_req_error: I/O error, dev loop0, sector 8 flags 0
[  374.381443][ T2492] Buffer I/O error on dev loop0p1, logical block 7, async page read
[  374.388586][ T2493] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  374.426165][ T2493] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  374.431572][T16112]  loop5: p1
10:54:09 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x1f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  374.434265][ T2493] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  374.462934][T16112] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x6000000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x15000000)

10:54:09 executing program 5:
syz_read_part_table(0x4c04, 0x1500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:09 executing program 4:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{}], 0x1, 0x9b)

[  374.740640][T16135] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:09 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3)

10:54:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x6800000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  374.924956][T16131] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  374.941884][T16142] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  374.975088][T16131] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  374.986903][T16142] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  374.997158][T16131]  loop0: p1
[  375.008458][T16131] loop0: p1 size 2047 extends beyond EOD, truncated
[  375.027880][T16142]  loop5: p1
[  375.034931][T16151] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  375.068037][T16142] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:09 executing program 4:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{}], 0x1, 0x9b)

10:54:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x16000000)

10:54:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x6c00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:09 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:09 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4)

10:54:10 executing program 5:
syz_read_part_table(0x4c04, 0x1600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  375.331102][T16161] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  375.421726][T16161] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:10 executing program 4:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{}], 0x1, 0x9b)

10:54:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x7400000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x17000000)

[  375.676111][T16167] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  375.682901][T16179] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:10 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x5)

[  375.733475][T16167] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x7a00000000000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  375.787822][T16167]  loop0: p1
[  375.792283][T16172] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:10 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  375.834134][T16167] loop0: p1 size 2047 extends beyond EOD, truncated
[  375.843415][T16172] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  375.920499][T16172]  loop5: p1
[  375.924695][T16172] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x18000000)

[  375.982892][T16190] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:10 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x9effffff00000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:10 executing program 5:
syz_read_part_table(0x4c04, 0x1700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:10 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:10 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6)

[  376.261925][T16198] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x19000000)

10:54:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xf0ffffff00000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  376.509396][T16202] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  376.546003][T16202] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:11 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  376.560678][T16202]  loop0: p1
[  376.564379][T16202] loop0: p1 size 2047 extends beyond EOD, truncated
[  376.591765][T16206] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xffffff7f00000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  376.665873][T16206] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:11 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7)

[  376.734971][T16206]  loop5: p1
10:54:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1a000000)

10:54:11 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  376.759767][T16206] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:11 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xffffffff00000000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:11 executing program 5:
syz_read_part_table(0x4c04, 0x1800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:11 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x8)

10:54:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0xfffffffffffff000, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1b000000)

[  377.230822][T16234] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  377.262565][T16234] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:12 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  377.316354][T16234]  loop0: p1
[  377.334668][T16234] loop0: p1 size 2047 extends beyond EOD, truncated
[  377.410480][T16242] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  377.458520][T16242] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  377.470800][T16242]  loop5: p1
[  377.474517][T16242] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:12 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:12 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x9)

10:54:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:12 executing program 5:
syz_read_part_table(0x4c04, 0x1900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:12 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1c000000)

10:54:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  378.036581][T16271] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:12 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xa)

[  378.124942][T16271] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:12 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  378.190707][T16285] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  378.213946][T16271]  loop0: p1
[  378.217463][T16271] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1d000000)

10:54:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  378.254097][T16285] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  378.289000][T16285]  loop5: p1
[  378.295638][T16285] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:13 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:13 executing program 5:
syz_read_part_table(0x4c04, 0x1a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:13 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1e000000)

10:54:13 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x10)

[  378.804901][T16321] validate_nla: 8 callbacks suppressed
[  378.804912][T16321] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:13 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  378.931988][T16318] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  379.000783][T16311] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  379.016566][T16318] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  379.023601][T16311] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  379.049375][T16311]  loop0: p1
[  379.057891][T16318]  loop5: p1
[  379.068789][T16311] loop0: p1 size 2047 extends beyond EOD, truncated
[  379.081653][T16318] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1f000000)

[  379.147607][T16336] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:13 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x48)

10:54:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:14 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, 0x0, 0x0)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

10:54:14 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:14 executing program 5:
syz_read_part_table(0x4c04, 0x1b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  379.472736][T16351] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x21000000)

10:54:14 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4c)

[  379.741168][T16356] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  379.757902][T16365] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:14 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, 0x0, 0x0)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  379.781491][T16356] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  379.820543][T16356]  loop5: p1
[  379.831360][T16359] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  379.890888][T16356] loop5: p1 size 2047 extends beyond EOD, truncated
[  379.927405][T16359] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  379.977226][T16359]  loop0: p1
10:54:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x23000000)

[  380.014037][T16359] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:14 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, 0x0, 0x0)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x9b)

[  380.109194][T16380] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:14 executing program 5:
syz_read_part_table(0x4c04, 0x1c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:14 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x68)

[  380.173572][T16378] print_req_error: 447 callbacks suppressed
[  380.173584][T16378] print_req_error: I/O error, dev loop0, sector 1 flags 80700
[  380.187504][T16359] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
[  380.260300][ T2493] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  380.267506][ T2493] buffer_io_error: 446 callbacks suppressed
[  380.267518][ T2493] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  380.290247][ T2493] print_req_error: I/O error, dev loop0, sector 2 flags 0
[  380.297414][ T2493] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  380.305824][ T2493] print_req_error: I/O error, dev loop0, sector 3 flags 0
[  380.313133][ T2493] Buffer I/O error on dev loop0p1, logical block 2, async page read
[  380.321638][ T2493] print_req_error: I/O error, dev loop0, sector 4 flags 0
[  380.328872][ T2493] Buffer I/O error on dev loop0p1, logical block 3, async page read
[  380.330254][ T2493] print_req_error: I/O error, dev loop0, sector 5 flags 0
[  380.344090][ T2493] Buffer I/O error on dev loop0p1, logical block 4, async page read
[  380.347242][T16389] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  380.352338][ T2493] print_req_error: I/O error, dev loop0, sector 6 flags 0
[  380.367635][ T2493] Buffer I/O error on dev loop0p1, logical block 5, async page read
[  380.367808][ T2493] print_req_error: I/O error, dev loop0, sector 7 flags 0
[  380.382953][ T2493] Buffer I/O error on dev loop0p1, logical block 6, async page read
[  380.391169][ T2493] print_req_error: I/O error, dev loop0, sector 8 flags 0
[  380.398312][ T2493] Buffer I/O error on dev loop0p1, logical block 7, async page read
10:54:15 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  380.428216][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  380.435575][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  380.444348][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  380.515329][T16394] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:15 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(0x0, 0x0, 0x9b)

10:54:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x25000000)

10:54:15 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6c)

[  380.768048][T16406] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  380.780248][T16387] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  380.834250][T16387] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  380.848774][T16396] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  380.888388][T16396] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  380.903918][T16387]  loop5: p1
[  380.912873][T16396]  loop0: p1
[  380.931950][T16387] loop5: p1 size 2047 extends beyond EOD, truncated
[  380.941265][T16396] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:15 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x74)

[  381.098160][T16420] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:15 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:15 executing program 5:
syz_read_part_table(0x4c04, 0x1d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x26000000)

10:54:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  381.459366][T16434] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:16 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7a)

10:54:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  381.611829][T16429] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  381.650566][T16429] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  381.681006][T16428] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  381.720585][T16429]  loop5: p1
[  381.735194][T16428] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  381.751246][T16429] loop5: p1 size 2047 extends beyond EOD, truncated
[  381.767212][T16428]  loop0: p1
[  381.801401][T16428] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:16 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(0x0, 0x0, 0x9b)

10:54:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x27000000)

10:54:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:16 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:16 executing program 5:
syz_read_part_table(0x4c04, 0x1e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:16 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x300)

10:54:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:17 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x500)

[  382.499075][T16461] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  382.520370][T16461] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x29000000)

[  382.541601][T16458] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  382.558030][T16461]  loop5: p1
[  382.575369][T16461] loop5: p1 size 2047 extends beyond EOD, truncated
[  382.604951][T16458] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  382.679750][T16458]  loop0: p1
[  382.720162][T16458] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:17 executing program 5:
syz_read_part_table(0x4c04, 0x1f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:17 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  383.258891][T16491] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:18 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(0x0, 0x0, 0x9b)

10:54:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:18 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x600)

10:54:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2b000000)

[  383.354493][T16491] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  383.430610][T16491]  loop0: p1
[  383.434115][T16491] loop0: p1 size 2047 extends beyond EOD, truncated
[  383.460942][T16492] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  383.509820][T16492] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  383.561212][T16492]  loop5: p1
[  383.588478][T16492] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:18 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x700)

10:54:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2d000000)

10:54:18 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:18 executing program 5:
syz_read_part_table(0x4c04, 0x2000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  383.925798][T16527] validate_nla: 6 callbacks suppressed
[  383.925807][T16527] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  384.196723][T16529] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  384.200956][T16541] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:19 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x900)

[  384.240416][T16529] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  384.264148][T16529]  loop0: p1
[  384.291918][T16529] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:19 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540), 0x0, 0x9b)

10:54:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2e000000)

10:54:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  384.381164][T16531] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  384.422621][T16531] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  384.457963][T16531]  loop5: p1
[  384.476136][T16531] loop5: p1 size 2047 extends beyond EOD, truncated
[  384.513227][T16553] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:19 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xa00)

10:54:19 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:19 executing program 5:
syz_read_part_table(0x4c04, 0x2100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  384.806146][T16568] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2f000000)

10:54:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:19 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x2000)

[  385.034831][T16579] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  385.102209][T16569] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  385.149097][T16569] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  385.158152][T16573] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  385.220124][T16573] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  385.249444][T16569]  loop0: p1
10:54:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540), 0x0, 0x9b)

[  385.270478][T16569] loop0: p1 size 2047 extends beyond EOD, truncated
[  385.290569][T16573]  loop5: p1
[  385.300555][T16573] loop5: p1 size 2047 extends beyond EOD, truncated
[  385.353933][T16591] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x36000000)

10:54:20 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:20 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3f00)

10:54:20 executing program 5:
syz_read_part_table(0x4c04, 0x2200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  385.770145][T16611] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x3e000000)

10:54:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  385.911142][T16603] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  385.970250][T16603] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  385.978103][T16610] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  385.996285][T16603]  loop0: p1
[  386.027616][T16603] loop0: p1 size 2047 extends beyond EOD, truncated
[  386.040507][T16610] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  386.075793][T16610]  loop5: p1
10:54:20 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4000)

[  386.105743][T16610] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:20 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  386.161750][T16623] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x3f000000)

10:54:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:21 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540), 0x0, 0x9b)

10:54:21 executing program 5:
syz_read_part_table(0x4c04, 0x2300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:21 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4800)

[  386.564309][T16641] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  386.600682][T16633] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  386.623229][T16633] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  386.661868][T16633]  loop0: p1
[  386.689441][T16633] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x40000000)

10:54:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  386.775803][T16640] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  386.825865][T16640] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  386.882122][T16640]  loop5: p1
10:54:21 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  386.908560][T16640] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:21 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4c00)

[  386.980867][T16659] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:21 executing program 5:
syz_read_part_table(0x4c04, 0x2400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x4f000000)

10:54:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:22 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x60ff)

[  387.431608][T16664] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  387.470184][T16664] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  387.504312][T16664]  loop0: p1
[  387.520365][T16664] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:22 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{}], 0x1, 0x9b)

10:54:22 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x2f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x64000000)

[  387.840717][T16674] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:22 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6800)

[  387.882694][T16674] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  387.930894][T16674]  loop5: p1
[  387.934539][T16674] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x65000000)

10:54:23 executing program 5:
syz_read_part_table(0x4c04, 0x2500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  388.231937][T16701] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  388.285011][T16701] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  388.330531][T16701]  loop0: p1
[  388.334243][T16701] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:23 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6c00)

10:54:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:23 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  388.741770][T16722] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  388.772259][T16722] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x66000000)

10:54:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{}], 0x1, 0x9b)

10:54:23 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7400)

[  388.818092][T16722]  loop5: p1
[  388.828032][T16722] loop5: p1 size 2047 extends beyond EOD, truncated
[  388.951283][T16731] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  389.010453][T16731] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  389.018531][T16745] validate_nla: 6 callbacks suppressed
[  389.018541][T16745] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  389.036264][T16731]  loop0: p1
[  389.056075][T16731] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:23 executing program 5:
syz_read_part_table(0x4c04, 0x2600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x67000000)

10:54:23 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:24 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7600)

[  389.319311][T16755] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  389.551612][T16754] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  389.591590][T16767] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  389.601892][T16754] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  389.614826][T16760] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  389.639158][T16754]  loop5: p1
[  389.649429][T16760] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  389.670402][T16754] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  389.706126][T16760]  loop0: p1
10:54:24 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7a00)

[  389.733937][T16760] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x80040000)

10:54:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{}], 0x1, 0x9b)

[  389.871435][T16775] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:24 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:24 executing program 5:
syz_read_part_table(0x4c04, 0x2700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  390.119450][T16791] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:25 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x9600)

10:54:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  390.391809][T16793] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  390.431993][T16800] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  390.447680][T16793] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  390.471151][T16792] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  390.509412][T16792] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  390.521345][T16793]  loop5: p1
10:54:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  390.558727][T16793] loop5: p1 size 2047 extends beyond EOD, truncated
[  390.571485][T16792]  loop0: p1
[  390.586958][T16792] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf0ffffff)

10:54:25 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:25 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xff00)

10:54:25 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
poll(&(0x7f0000000540)=[{r0}], 0x1, 0x0)

10:54:25 executing program 5:
syz_read_part_table(0x4c04, 0x2800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  390.833412][T16811] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf2ffffff)

10:54:25 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x100000)

[  391.095567][T16830] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  391.137495][T16816] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  391.207840][T16816] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:26 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  391.255019][T16816]  loop0: p1
[  391.269345][T16816] loop0: p1 size 2047 extends beyond EOD, truncated
[  391.290891][T16823] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  391.325569][T16823] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  391.392533][T16823]  loop5: p1
10:54:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf3ffffff)

10:54:26 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  391.420241][T16823] loop5: p1 size 2047 extends beyond EOD, truncated
[  391.452046][T16839] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:26 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x200000)

[  391.608865][T16839] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:26 executing program 5:
syz_read_part_table(0x4c04, 0x2900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:26 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:26 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x6, 0x0, 0x0)

10:54:26 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  391.990372][T16845] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  392.012436][T16845] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfee00000)

[  392.050769][T16845]  loop0: p1
[  392.054494][T16845] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:26 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x400000)

10:54:26 executing program 4:

10:54:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:27 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  392.240991][T16855] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  392.300491][T16855] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  392.325474][T16855]  loop5: p1
[  392.341965][T16855] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:27 executing program 4:

10:54:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfeff0000)

10:54:27 executing program 5:
syz_read_part_table(0x4c04, 0x2a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:27 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x50e000)

10:54:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:27 executing program 4:

[  392.670906][T16883] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  392.738948][T16883] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  392.790258][T16883]  loop0: p1
[  392.809165][T16883] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xff000000)

10:54:27 executing program 4:

10:54:27 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  392.999673][T16899] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  393.028386][T16899] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:27 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x607100)

[  393.066305][T16899]  loop5: p1
[  393.091580][T16899] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:27 executing program 4:

10:54:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:28 executing program 5:
syz_read_part_table(0x4c04, 0x2b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xffff0000)

10:54:28 executing program 4:

[  393.430572][T16917] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  393.495460][T16917] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  393.531945][T16917]  loop0: p1
[  393.535581][T16917] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:28 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x70d000)

10:54:28 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r2 = dup2(r1, r1)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r2, 0x84, 0x18, &(0x7f0000000040), 0x4)
recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x800e0080d)

10:54:28 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  393.765297][T16931] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  393.809364][T16931] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xffff8000)

[  393.860327][T16931]  loop5: p1
[  393.886710][T16931] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  394.051345][T16946] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:28 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x716000)

[  394.098629][T16946] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  394.126558][T16946]  loop0: p1
10:54:28 executing program 5:
syz_read_part_table(0x4c04, 0x2c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  394.145051][T16946] loop0: p1 size 2047 extends beyond EOD, truncated
[  394.203129][T16963] validate_nla: 9 callbacks suppressed
[  394.203138][T16963] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfffffff0)

10:54:29 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  394.507609][T16978] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:29 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x760000)

[  394.571023][T16967] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  394.638317][T16967] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  394.675381][T16967]  loop5: p1
[  394.687176][T16967] loop5: p1 size 2047 extends beyond EOD, truncated
[  394.700119][T16974] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:29 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='net/udp6\x00')
sendfile(r0, r2, 0x0, 0x80000000)

10:54:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfffffff2)

[  394.744494][T16974] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  394.784004][T16974]  loop0: p1
[  394.808501][T16974] loop0: p1 size 2047 extends beyond EOD, truncated
[  394.825495][T16991] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:29 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:29 executing program 5:
syz_read_part_table(0x4c04, 0x2d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  395.007476][T17001] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:29 executing program 4:
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0xfffffffffffffffd, 0x0, 'lblc\x00'}, 0x2c)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000040)={r0, 0x0, 0x3, 0xffffffff, 0x6})
r1 = socket(0xa, 0x4000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x11, @rand_addr, 0x0, 0x0, 'lblcr\x00'}, 0x2c)

10:54:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:30 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x960000)

10:54:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfffffff3)

10:54:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=<r3=>0x0, &(0x7f0000000140)=0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000180)={0x0, 0x4, 0x9, 0x3ff, r3}, 0x10)

[  395.361706][T17007] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  395.414733][T17007] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  395.430717][T17010] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  395.462846][T17024] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  395.465191][T17010] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  395.491233][T17007]  loop0: p1
[  395.494895][T17007] loop0: p1 size 2047 extends beyond EOD, truncated
[  395.512611][T17010]  loop5: p1
[  395.548034][T17010] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  395.622445][T17027] print_req_error: 447 callbacks suppressed
[  395.622456][T17027] print_req_error: I/O error, dev loop0, sector 1 flags 80700
[  395.636996][T17007] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
[  395.661549][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  395.668826][ T2492] buffer_io_error: 446 callbacks suppressed
[  395.668837][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  395.684506][ T2492] print_req_error: I/O error, dev loop0, sector 2 flags 0
[  395.691840][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  395.700560][ T2492] print_req_error: I/O error, dev loop0, sector 3 flags 0
[  395.707912][ T2492] Buffer I/O error on dev loop0p1, logical block 2, async page read
[  395.716679][ T2492] print_req_error: I/O error, dev loop0, sector 4 flags 0
[  395.724015][ T2492] Buffer I/O error on dev loop0p1, logical block 3, async page read
[  395.733649][ T2492] print_req_error: I/O error, dev loop0, sector 5 flags 0
[  395.741616][ T2492] Buffer I/O error on dev loop0p1, logical block 4, async page read
10:54:30 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xd07000)

[  395.768519][ T2492] print_req_error: I/O error, dev loop0, sector 6 flags 0
[  395.775880][ T2492] Buffer I/O error on dev loop0p1, logical block 5, async page read
[  395.791675][ T2492] print_req_error: I/O error, dev loop0, sector 7 flags 0
[  395.799456][ T2492] Buffer I/O error on dev loop0p1, logical block 6, async page read
[  395.808545][ T2492] print_req_error: I/O error, dev loop0, sector 8 flags 0
10:54:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x8000000000)

10:54:30 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  395.815980][ T2492] Buffer I/O error on dev loop0p1, logical block 7, async page read
[  395.832358][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  395.840360][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  395.848644][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
10:54:30 executing program 5:
syz_read_part_table(0x4c04, 0x2e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  395.899563][T17037] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=<r3=>0x0, &(0x7f0000000140)=0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000180)={0x0, 0x4, 0x9, 0x3ff, r3}, 0x10)

[  396.251974][T17054] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:31 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xe05000)

10:54:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xe0fe00000000)

[  396.314223][T17044] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  396.347325][T17044] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  396.386239][T17044]  loop0: p1
[  396.405893][T17044] loop0: p1 size 2047 extends beyond EOD, truncated
[  396.551044][T17048] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:31 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  396.593303][T17069] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  396.607422][T17048] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000)

[  396.701979][T17048]  loop5: p1
[  396.705574][T17048] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:31 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x1000000)

10:54:31 executing program 5:
syz_read_part_table(0x4c04, 0x2f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=<r3=>0x0, &(0x7f0000000140)=0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000180)={0x0, 0x4, 0x9, 0x3ff, r3}, 0x10)

[  396.930651][T17082] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  397.068807][T17076] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  397.138163][T17076] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xc000000000000)

[  397.200286][T17076]  loop0: p1
[  397.225052][T17076] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:32 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x2000000)

[  397.266758][T17098] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  397.405991][T17092] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  397.440160][T17092] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=<r3=>0x0, &(0x7f0000000140)=0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000180)={0x0, 0x4, 0x9, 0x3ff, r3}, 0x10)

[  397.470339][T17092]  loop5: p1
10:54:32 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  397.510391][T17092] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x10000000000000)

10:54:32 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3000000)

10:54:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:32 executing program 5:
syz_read_part_table(0x4c04, 0x3000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  397.960776][T17117] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  398.061012][T17117] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  398.098141][T17117]  loop0: p1
[  398.114375][T17117] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x80ffff00000000)

10:54:33 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4000000)

[  398.264316][T17117] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
10:54:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:33 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  398.350780][T17137] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  398.427489][T17137] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  398.459127][T17137]  loop5: p1
[  398.500470][T17137] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000)

10:54:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:33 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x5000000)

10:54:33 executing program 5:
syz_read_part_table(0x4c04, 0x3100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  398.802130][T17153] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  398.854367][T17153] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  398.903945][T17153]  loop0: p1
[  398.920591][T17153] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000)

10:54:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:33 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  399.204735][T17173] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:34 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6000000)

[  399.270896][T17173] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  399.296830][T17173]  loop5: p1
[  399.329260][T17173] loop5: p1 size 2047 extends beyond EOD, truncated
[  399.361094][T17186] validate_nla: 6 callbacks suppressed
[  399.361106][T17186] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000)

10:54:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:34 executing program 5:
syz_read_part_table(0x4c04, 0x3200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:34 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7000000)

10:54:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  399.638650][T17184] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  399.664828][T17202] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  399.670148][T17184] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  399.704392][T17184]  loop0: p1
[  399.715213][T17184] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000)

10:54:34 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x3f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  399.944593][T17201] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:54:34 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x8000000)

[  399.997299][T17201] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  400.020130][T17219] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  400.041966][T17201]  loop5: p1
[  400.057564][T17201] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x400960000000000)

10:54:35 executing program 5:
syz_read_part_table(0x4c04, 0x3300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  400.328592][T17232] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  400.350236][T17220] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  400.398474][T17220] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  400.450137][T17220]  loop0: p1
[  400.453750][T17220] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:35 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x9000000)

10:54:35 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  400.711705][T17247] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  400.842325][T17238] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x500000000000000)

10:54:35 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xa000000)

[  400.950065][T17238] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  400.997174][T17238]  loop5: p1
[  401.010420][T17238] loop5: p1 size 2047 extends beyond EOD, truncated
[  401.071412][T17261] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  401.186192][T17249] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:36 executing program 5:
syz_read_part_table(0x4c04, 0x3400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  401.252551][T17249] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  401.280856][T17249]  loop0: p1
[  401.292033][T17249] loop0: p1 size 2047 extends beyond EOD, truncated
[  401.351278][T17272] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:36 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:36 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x10000000)

10:54:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x600000000000000)

10:54:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  401.718193][T17291] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  401.821774][T17275] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  401.882452][T17275] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  401.902355][T17285] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:36 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3f000000)

[  401.963629][T17285] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  401.980038][T17275]  loop5: p1
[  401.983513][T17275] loop5: p1 size 2047 extends beyond EOD, truncated
[  402.009622][T17301] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  402.048693][T17285]  loop0: p1
[  402.052336][T17285] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000)

[  402.267612][T17311] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:37 executing program 5:
syz_read_part_table(0x4c04, 0x3500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:37 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:37 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x40000000)

10:54:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x800000000000000)

[  402.759266][T17326] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  402.801395][T17326] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  402.830490][T17324] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  402.851384][T17326]  loop5: p1
[  402.874913][T17326] loop5: p1 size 2047 extends beyond EOD, truncated
[  402.879299][T17324] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  402.905294][T17324]  loop0: p1
10:54:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:37 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x48000000)

[  402.924561][T17324] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:37 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:37 executing program 5:
syz_read_part_table(0x4c04, 0x3600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x900000000000000)

10:54:38 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  403.492249][T17364] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:38 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4c000000)

[  403.548120][T17364] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x5}, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  403.595025][T17364]  loop5: p1
[  403.611330][T17359] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  403.627335][T17364] loop5: p1 size 2047 extends beyond EOD, truncated
[  403.651124][T17359] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  403.700497][T17359]  loop0: p1
10:54:38 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xa00000000000000)

[  403.727372][T17359] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:38 executing program 5:
syz_read_part_table(0x4c04, 0x3700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:38 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:38 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x68000000)

10:54:38 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xb00000000000000)

10:54:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  404.311208][T17392] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  404.391200][T17392] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  404.423688][T17392]  loop5: p1
[  404.427290][T17392] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:39 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6c000000)

[  404.498809][T17412] validate_nla: 6 callbacks suppressed
[  404.498819][T17412] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  404.522035][T17397] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  404.603786][T17397] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xc00000000000000)

10:54:39 executing program 5:
syz_read_part_table(0x4c04, 0x3800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  404.688604][T17397]  loop0: p1
[  404.724408][T17397] loop0: p1 size 2047 extends beyond EOD, truncated
[  404.732135][T17422] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:39 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:39 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x74000000)

10:54:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  405.140838][T17426] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  405.183577][T17426] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  405.212236][T17426]  loop5: p1
[  405.222780][T17426] loop5: p1 size 2047 extends beyond EOD, truncated
[  405.231411][T17443] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xd00000000000000)

10:54:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  405.300854][T17435] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  405.340305][T17435] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  405.365147][T17435]  loop0: p1
[  405.394283][T17435] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:40 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7a000000)

10:54:40 executing program 5:
syz_read_part_table(0x4c04, 0x3900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  405.511513][T17455] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:40 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xe00000000000000)

10:54:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  405.851190][T17472] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:40 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfeffffff)

10:54:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  405.961374][T17462] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  405.994468][T17462] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  406.030717][T17462]  loop0: p1
[  406.035079][T17462] loop0: p1 size 2047 extends beyond EOD, truncated
[  406.060781][T17471] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  406.116916][T17471] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  406.126790][T17483] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  406.155283][T17471]  loop5: p1
10:54:40 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  406.209533][T17471] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:41 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000)

10:54:41 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xff000000)

[  406.462972][T17499] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:41 executing program 5:
syz_read_part_table(0x4c04, 0x3a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:41 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1000000000000000)

[  406.731020][T17496] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  406.770276][T17496] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  406.786944][T17496]  loop0: p1
[  406.796503][T17496] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:41 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xff600000)

[  406.892068][T17514] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  407.005459][T17509] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:41 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:41 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  407.080125][T17509] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  407.150929][T17509]  loop5: p1
[  407.154456][T17509] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000)

[  407.242773][T17533] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:42 executing program 5:
syz_read_part_table(0x4c04, 0x3b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:42 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffffe)

10:54:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  407.571129][T17534] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:42 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  407.612139][T17534] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  407.624409][T17552] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  407.633234][T17534]  loop0: p1
[  407.656970][T17534] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1200000000000000)

[  407.821556][T17549] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:42 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x400000000000)

10:54:42 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  407.940137][T17549] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  408.001936][T17549]  loop5: p1
[  408.005661][T17549] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:42 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1300000000000000)

10:54:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:43 executing program 5:
syz_read_part_table(0x4c04, 0x3c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:43 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x555555f15000)

[  408.381005][T17569] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  408.457266][T17569] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  408.517928][T17569]  loop0: p1
[  408.532880][T17569] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:43 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1400000000000000)

10:54:43 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x555555f37000)

[  408.861106][T17595] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  408.927599][T17595] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  408.996715][T17595]  loop5: p1
10:54:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  409.020689][T17595] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0xa, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  409.200873][T17612] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:44 executing program 5:
syz_read_part_table(0x4c04, 0x3d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1500000000000000)

[  409.288371][T17612] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  409.348664][T17612]  loop0: p1
[  409.373645][T17612] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:44 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x60ffffffffff)

10:54:44 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0xf, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  409.683885][T17639] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1600000000000000)

[  409.749222][T17639] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  409.814669][T17639]  loop5: p1
10:54:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x14, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  409.840390][T17639] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:44 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:44 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x760000000000)

[  410.060287][T17654] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  410.087293][T17654] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x25, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:44 executing program 5:
syz_read_part_table(0x4c04, 0x3e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  410.201240][T17654]  loop0: p1
[  410.204825][T17654] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1700000000000000)

10:54:45 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x2f, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:45 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:45 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x5a, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:45 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7f7f9594c000)

[  410.654772][T17683] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1800000000000000)

[  410.726485][T17683] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  410.754814][T17683]  loop5: p1
[  410.788880][T17683] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:45 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x60, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  410.895514][T17697] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  410.970658][T17697] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  410.993975][T17697]  loop0: p1
[  411.012880][T17697] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:45 executing program 5:
syz_read_part_table(0x4c04, 0x3f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:45 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:45 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7fffffffefff)

10:54:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0xc0, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1900000000000000)

10:54:46 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:46 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0xec0, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  411.590384][T17726] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:46 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x960000000000)

10:54:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1a00000000000000)

[  411.656973][T17726] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  411.671049][T17737] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  411.695932][T17726]  loop5: p1
10:54:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x33fe0, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  411.705151][T17737] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  411.715759][T17726] loop5: p1 size 2047 extends beyond EOD, truncated
[  411.739828][T17737]  loop0: p1
[  411.788349][T17737] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:46 executing program 5:
syz_read_part_table(0x4c04, 0x4000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:46 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x200006a0, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:46 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x10000000000000)

10:54:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1b00000000000000)

10:54:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x7ffff000, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  412.280733][T17766] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  412.405137][T17766] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:47 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x20000000000000)

10:54:47 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  412.460846][T17771] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  412.475364][T17766]  loop5: p1
[  412.498500][T17771] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  412.521965][T17766] loop5: p1 size 2047 extends beyond EOD, truncated
[  412.533443][T17771]  loop0: p1
[  412.537183][T17771] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0xfffffdef, 0x19, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1c00000000000000)

10:54:47 executing program 5:
syz_read_part_table(0x4c04, 0x4100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0xf, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:47 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x4f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:47 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:47 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x50f15555550000)

10:54:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x5a, 0x1, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:47 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1d00000000000000)

[  413.112579][T17811] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  413.146639][T17811] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  413.181125][T17814] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  413.182902][T17811]  loop5: p1
10:54:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x2, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  413.230297][T17814] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  413.242108][T17811] loop5: p1 size 2047 extends beyond EOD, truncated
[  413.266399][T17814]  loop0: p1
10:54:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  413.279502][T17814] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:48 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x60710000000000)

10:54:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1e00000000000000)

10:54:48 executing program 5:
syz_read_part_table(0x4c04, 0x4200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:48 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x7, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x1f00000000000000)

[  413.826971][T17854] validate_nla: 4 callbacks suppressed
[  413.826987][T17854] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:48 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x70f35555550000)

10:54:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x8, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  413.984688][T17850] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  414.028253][T17850] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  414.049562][T17850]  loop0: p1
10:54:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  414.073146][T17850] loop0: p1 size 2047 extends beyond EOD, truncated
[  414.140316][T17852] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  414.180328][T17852] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  414.192993][T17852]  loop5: p1
[  414.209343][T17852] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2100000000000000)

10:54:49 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x9, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:49 executing program 5:
syz_read_part_table(0x4c04, 0x4300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:49 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xc094957f7f0000)

[  414.521813][T17883] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0xa, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2300000000000000)

10:54:49 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xd0700000000000)

10:54:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1d, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  414.807791][T17886] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  414.869650][T17886] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  414.900198][T17886]  loop0: p1
[  414.903833][T17886] loop0: p1 size 2047 extends beyond EOD, truncated
[  414.965346][T17908] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  415.001730][T17894] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  415.041092][T17894] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:49 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  415.116152][T17894]  loop5: p1
[  415.119816][T17894] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x25, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2500000000000000)

10:54:50 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xe0500000000000)

[  415.364414][T17923] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:50 executing program 5:
syz_read_part_table(0x4c04, 0x4400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x5a, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  415.571181][T17917] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  415.603200][T17917] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  415.632453][T17917]  loop0: p1
10:54:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  415.684720][T17917] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:50 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x100000000000000)

10:54:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x63, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  415.732561][T17934] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2600000000000000)

[  415.792487][T17934] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  415.817065][T17934]  loop5: p1
10:54:50 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  415.855579][T17934] loop5: p1 size 2047 extends beyond EOD, truncated
[  415.936011][T17951] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x300, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:50 executing program 5:
syz_read_part_table(0x4c04, 0x4500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:50 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x200000000000000)

10:54:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2700000000000000)

10:54:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x7ffffff2, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  416.287244][T17957] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  416.330872][T17957] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  416.350773][T17957]  loop0: p1
[  416.354317][T17957] loop0: p1 size 2047 extends beyond EOD, truncated
[  416.542905][T17970] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:51 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:51 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x300000000000000)

10:54:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2900000000000000)

[  416.583895][T17970] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x7ffffff8, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  416.628092][T17970]  loop5: p1
[  416.644494][T17970] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:51 executing program 5:
syz_read_part_table(0x4c04, 0x4600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x7ffffff9, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:51 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x400000000000000)

[  417.006325][T17992] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2b00000000000000)

[  417.069937][T17992] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  417.145462][T17992]  loop0: p1
[  417.167349][T17992] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:52 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0xffffff1f, 0x0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:52 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  417.322736][T18010] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  417.371803][T18010] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  417.395295][T18010]  loop5: p1
[  417.411685][T18010] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:52 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x500000000000000)

10:54:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x2, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2d00000000000000)

10:54:52 executing program 5:
syz_read_part_table(0x4c04, 0x4700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  417.734828][T18040] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:52 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  417.861607][T18029] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:52 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x600000000000000)

[  417.927822][T18029] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  417.959813][T18053] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  417.999352][T18029]  loop0: p1
[  418.015438][T18029] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  418.123790][T18045] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  418.185435][T18045] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  418.218207][T18045]  loop5: p1
10:54:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2e00000000000000)

10:54:53 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  418.240483][T18045] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  418.290492][T18063] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:53 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x700000000000000)

10:54:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x5, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:53 executing program 5:
syz_read_part_table(0x4c04, 0x4800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x2f00000000000000)

10:54:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:53 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x800000000000000)

10:54:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  418.761505][T18073] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  418.843791][T18073] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  418.915522][T18073]  loop0: p1
[  418.921159][T18089] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  418.951222][T18073] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x3600000000000000)

[  418.968257][T18089] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  418.987318][T18102] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  419.026173][T18089]  loop5: p1
[  419.036480][T18089] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:53 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:54 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x900000000000000)

10:54:54 executing program 5:
syz_read_part_table(0x4c04, 0x4900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  419.268540][T18111] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x3e00000000000000)

10:54:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xa, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  419.511235][T18114] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  419.562504][T18132] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  419.565623][T18114] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  419.607071][T18114]  loop0: p1
[  419.618722][T18114] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:54 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xe, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:54 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000)

[  419.761266][T18126] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  419.803582][T18126] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  419.851634][T18126]  loop5: p1
10:54:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x3f00000000000000)

[  419.873639][T18142] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  419.896483][T18126] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:54 executing program 5:
syz_read_part_table(0x4c04, 0x4a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:54 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000)

[  420.174391][T18155] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x48, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  420.241876][T18147] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  420.274553][T18147] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  420.325660][T18147]  loop0: p1
[  420.336498][T18147] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000)

[  420.457577][T18172] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:55 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4c, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:55 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000)

[  420.710997][T18168] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  420.760248][T18168] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  420.785544][T18168]  loop5: p1
[  420.812282][T18168] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x4f00000000000000)

[  420.855330][T18187] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x60, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  421.018906][T18185] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:55 executing program 5:
syz_read_part_table(0x4c04, 0x4b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  421.074299][T18185] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  421.124100][T18185]  loop0: p1
10:54:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:55 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000)

[  421.159303][T18204] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  421.170562][T18185] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6400000000000000)

10:54:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x68, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:56 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  421.530795][T18208] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  421.586792][T18225] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  421.589331][T18208] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  421.631758][T18208]  loop5: p1
[  421.636503][T18208] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:56 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4800000000000000)

10:54:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6c, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6500000000000000)

[  421.863940][T18224] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  421.898820][T18238] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  421.907697][T18224] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:56 executing program 5:
syz_read_part_table(0x4c04, 0x4c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  421.960136][T18224]  loop0: p1
[  421.968380][T18224] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x74, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:56 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x4c00000000000000)

10:54:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:56 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7a, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6600000000000000)

[  422.274204][T18245] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  422.329091][T18245] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  422.383427][T18245]  loop5: p1
[  422.416292][T18245] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:57 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6800000000000000)

10:54:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  422.541763][T18259] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  422.576168][T18259] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:57 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  422.610984][T18259]  loop0: p1
[  422.614601][T18259] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:57 executing program 5:
syz_read_part_table(0x4c04, 0x4d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:57 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:57 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x6700000000000000)

10:54:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x102, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:57 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x6c00000000000000)

10:54:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x201, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  423.211170][T18291] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  423.263854][T18288] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  423.268497][T18291] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x8004000000000000)

[  423.330566][T18291]  loop0: p1
[  423.336629][T18288] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  423.357996][T18291] loop0: p1 size 2047 extends beyond EOD, truncated
[  423.371682][T18288]  loop5: p1
10:54:58 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7400000000000000)

[  423.375226][T18288] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:58 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x23a, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

10:54:58 executing program 5:
syz_read_part_table(0x4c04, 0x4e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf0ffffff00000000)

10:54:58 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x7a00000000000000)

10:54:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x300, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  424.067974][T18340] validate_nla: 6 callbacks suppressed
[  424.067984][T18340] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x500, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  424.153735][T18322] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:54:58 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000)

[  424.211119][T18330] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  424.230478][T18322] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  424.244973][T18322]  loop0: p1
10:54:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf2ffffff00000000)

10:54:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  424.263213][T18330] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  424.281385][T18322] loop0: p1 size 2047 extends beyond EOD, truncated
[  424.301104][T18330]  loop5: p1
[  424.308037][T18330] loop5: p1 size 2047 extends beyond EOD, truncated
[  424.364349][T18352] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:59 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:59 executing program 5:
syz_read_part_table(0x4c04, 0x4f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x600, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:54:59 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000)

10:54:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  424.688185][T18368] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:54:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xf3ffffff00000000)

10:54:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x700, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  424.881067][T18364] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  424.909936][T18364] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:54:59 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000)

[  424.933302][T18364]  loop0: p1
[  424.949544][T18363] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  424.967544][T18364] loop0: p1 size 2047 extends beyond EOD, truncated
10:54:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4)

[  424.991779][T18363] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  425.018924][T18363]  loop5: p1
[  425.022898][T18381] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  425.045831][T18363] loop5: p1 size 2047 extends beyond EOD, truncated
10:54:59 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x5f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:54:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xa00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:00 executing program 5:
syz_read_part_table(0x4c04, 0x5000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xfeff000000000000)

[  425.314975][T18396] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:00 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffefffffff7f0000)

10:55:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000140))

10:55:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xe00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  425.583428][T18395] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  425.634671][T18411] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  425.647161][T18395] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  425.685771][T18395]  loop0: p1
[  425.690783][T18395] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xff00000000000000)

[  425.764338][T18403] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:00 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000)

[  425.829011][T18403] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  425.864016][T18403]  loop5: p1
10:55:00 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  425.881578][T18403] loop5: p1 size 2047 extends beyond EOD, truncated
[  425.952359][T18423] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x2000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000140))

10:55:00 executing program 5:
syz_read_part_table(0x4c04, 0x5100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xffff000000000000)

[  426.276475][T18440] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  426.300372][T18425] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  426.357454][T18425] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  426.388024][T18425]  loop0: p1
10:55:01 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffff600000)

[  426.406110][T18425] loop0: p1 size 2047 extends beyond EOD, truncated
[  426.420903][T18440] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3a02, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:01 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000)

[  426.632101][T18445] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000140))

[  426.674595][T18445] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  426.694906][T18445]  loop5: p1
[  426.715527][T18445] loop5: p1 size 2047 extends beyond EOD, truncated
[  426.821584][T18464] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:01 executing program 5:
syz_read_part_table(0x4c04, 0x5200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:01 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
utime(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x8000})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0xffffffffffffffff)

10:55:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3f00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  427.085999][T18458] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  427.130554][T18458] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  427.141514][T18458]  loop0: p1
[  427.145037][T18458] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), 0x0)

10:55:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:02 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x3, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  427.342558][T18478] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:02 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fde000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="660ffd350c00000066baf80cb86c9ca084ef66bafc0cb8537f6d9cefc0be080000000d66baf80cb8d83cf68aef66bafc0c66edc4c3097d140a00b8c24f478f0f23c00f21f835000001000f23f82e0fe8cdde7709f236f744f608cd1500000f01c9", 0x61}], 0x1, 0x13, &(0x7f0000000140)=[@efer={0x2, 0x3001}, @dstype3={0x7, 0xb}], 0x2)

[  427.462350][T18478] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  427.492784][T18478]  loop5: p1
[  427.496430][T18478] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4800, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), 0x0)

10:55:02 executing program 5:
syz_read_part_table(0x4c04, 0x5300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4c00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  427.861788][T18495] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  427.926900][T18495] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:02 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000080)=@int=0x6, 0x4)

[  427.971849][T18495]  loop0: p1
[  427.989113][T18495] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:02 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  428.230916][T18512] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000100), 0x0)

10:55:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6800, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  428.343407][T18512] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  428.426908][T18512]  loop5: p1
10:55:03 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
fsetxattr(r0, &(0x7f0000000080)=@random={'security.', ':8em0\x00'}, &(0x7f0000000100)='em0ppp1user\x00', 0xc, 0x3)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000007c0)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, @ppp={{0x8, 0x1, 'ppp\x00'}, {0xc, 0x2, {0x8, 0x1, r3}}}}]}, 0x38}}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  428.448416][T18512] loop5: p1 size 2047 extends beyond EOD, truncated
[  428.610869][T18530] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  428.653988][T18530] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  428.700849][T18530]  loop0: p1
10:55:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
unshare(0x8000400)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="c0dca5055e0bcfec7be070")
r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2)
sync_file_range(r2, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:03 executing program 5:
syz_read_part_table(0x4c04, 0x5400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6c00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  428.733536][T18530] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:03 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:03 executing program 4:

10:55:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7400, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:03 executing program 4:

[  429.121057][T18549] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:03 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={<r3=>0x0, 0x2}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_value={r3, 0x4}, &(0x7f0000000140)=0x8)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  429.175090][T18549] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  429.206221][T18569] validate_nla: 6 callbacks suppressed
[  429.206231][T18569] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  429.225675][T18549]  loop5: p1
[  429.229292][T18549] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x40000)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_NMI(r2, 0xae9a)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x7e, 0x42)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000040)={0x4, r3, 0x1})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7a00, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:04 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = accept$unix(0xffffffffffffff9c, 0x0, 0x0)
lseek(r0, 0x0, 0x0)

[  429.380873][T18564] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  429.445329][T18564] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:04 executing program 5:
syz_read_part_table(0x4c04, 0x5500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  429.496770][T18564]  loop0: p1
[  429.505204][T18581] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  429.548195][T18564] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:04 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmmsg$alg(r0, &(0x7f00000002c0)=[{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="b8557e021e0d86b60067c77767fb4649acbeadf295312751561b2b6c6c824beb9d903d7269f0fed1c15e49c4624c4a03d37d190c3fdf329ac81812bfd18ccb03a6dbfe58bf641c0c5f804d15f7ff5aa3068de35b8ba6927570945e53776c47dabccea672975b8e11904795b1f5b3078397", 0x71}], 0x1, &(0x7f0000000140)=[@iv={0xd8, 0x117, 0x2, 0xbe, "994e72cf0316008c51a94e17706eee9d43ec52af0c0fa69b37b91a3764b95c7824a8d6c116aa83c8b44c16ebba1a6baf53966680bc75ec4d22f7ee65f33b280185e42bb60a373e6f01f5da1bb852c0249ae0cbca23b3067567290bb56114e6755fd61fd0484af24a7a4189b88249641cc1c1b99f80c033150fcc0e7fb391a0464a8673d0723d58800d5478e27e1e6ee223cdbcccf72def0f7c9757a40317b8de45598f99e9babac4be608e7bbbfbd265a8019f66ff91b42d7ebf1178f0c9"}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18}, @iv={0x58, 0x117, 0x2, 0x3f, "0103d7238aab8356eeb8e8d9a7aec0812de5ea0e084dcbadb54a6d8c0987449a7208f66b4d73739d050d9d29c34fb23a1ca960eb2625c3870e7afbacbca044"}], 0x160, 0x20000004}], 0x1, 0x4000)
r4 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r4)

10:55:04 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:04 executing program 1:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffff9c)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000140))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
r4 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x8040, 0x0)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, &(0x7f0000000040), &(0x7f0000000080)=0x4)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000380)={{0x2, 0x2, 0x40, 0x3, 0x20000000000000}, 0x1, 0x4, 'id0\x00', 'timer1\x00', 0x0, 0x2, 0x58, 0x2, 0x2})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  429.781424][T18592] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x30000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  429.860918][T18588] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  429.923077][T18588] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  429.949000][T18588]  loop5: p1
[  429.958075][T18588] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:04 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vfio/vfio\x00', 0x200, 0x0)
openat$cgroup_int(r0, &(0x7f0000000000)='notify_on_release\x00', 0x2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000280)='/dev/vcsa#\x00', 0x3315, 0xc2)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f0000000080)={0xff, 0x81, 0x9})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x4000000580, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000000c0)={<r2=>0xffffffffffffffff}}}, 0x20)
write$RDMA_USER_CM_CMD_REJECT(r0, &(0x7f0000000140)={0x9, 0xfffffe86, 0xfa00, {r2, 0x4d, '\x00', "22f18765b4687eea47f36b27f571a7e816e5c308a20e6e0631331c3ad932cf309fff070000000000000549ad72a95de4a52d719463dff090e717c64a5f043f834bf270c508b492241c45b3d5b65af18c07391ebda38e9f0a7190e915e0efad85995ebce7830d5b71c645af8f1d5e52ec63003fcb77e5ad0944d146208b1ad977600dabbf9cbfc1275e096a0f97c2be3b214461928be0a5be24af055db07b7c8b75acab137d28392314dbcfbf2abb078d24555ec923b4c11fe2c139cd2b4f00780b0681567978abae137ea5968bdedc73a15ddaa935b4b843cd97c00efaf1c4ab3cf111fc71ba759c8797c99fc96823b98bf710747400"}}, 0x16a)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:04 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = syz_open_procfs(0x0, 0x0)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, 0x0)

[  430.086453][T18604] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x34000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:05 executing program 5:
syz_read_part_table(0x4c04, 0x5600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  430.250298][T18600] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  430.308060][T18600] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  430.353544][T18600]  loop0: p1
[  430.369909][T18616] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  430.393748][T18600] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x400300, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:05 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$FICLONE(r1, 0x40049409, r0)
setxattr$trusted_overlay_nlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.nlink\x00', &(0x7f0000000200)={'L+', 0x2}, 0x28, 0x1)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000080)={0x5, 0x201, 0x4fd, 0x80000001, <r2=>0x0}, &(0x7f00000000c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_value={r2, 0x1e7}, &(0x7f0000000140)=0x8)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, &(0x7f0000000280)={0xd, 0xff, {0x52, 0xd59, 0xff, {0xdba, 0x2}, {0xe73, 0x9d7}, @period={0x5b, 0xffffffff, 0x2, 0x8000, 0x4, {0x8, 0x401, 0xef, 0x1d0}, 0x5, &(0x7f0000000240)=[0x0, 0x2, 0x7f, 0x0, 0x3ff]}}, {0x56, 0x9, 0x8b4, {0xff, 0x6}, {0xc46, 0x9}, @ramp={0x6, 0x7, {0x1, 0x968, 0x1b30}}}})
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:05 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:05 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = accept$inet(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, 0x0, 0x0)

[  430.597466][T18625] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  430.613917][T18619] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf0ffff, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  430.689011][T18619] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  430.718613][T18619]  loop5: p1
[  430.745553][T18619] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  430.896187][T18639] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:05 executing program 5:
syz_read_part_table(0x4c04, 0x5700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  430.990972][T18634] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x1000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:05 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = accept$inet(0xffffffffffffff9c, 0x0, 0x0)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)

[  431.034921][T18634] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:05 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000080)={@in6={{0xa, 0x4e21, 0x4, @remote, 0xff}}, 0x0, 0xa3, 0x0, "6538e77d4126986cda028568a0a952edb7d79f30eacb389c70236e341682c4f2505ac3ea6a0a5c8370445855c063994dbfeba49b22553a12d7293b94d1ba3987bdc257ec3506a475aeefb59f7b9b7337"}, 0xd8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  431.089393][T18634]  loop0: p1
[  431.104349][T18634] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:06 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  431.246980][T18655] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  431.351048][T18648] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  431.390125][T18648] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x1020000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  431.429658][T18648]  loop5: p1
[  431.445016][T18648] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:06 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000080))
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r3, 0x4004ae8b, &(0x7f00000000c0)={0xc3, "2377dd1461269b8fc264b89159a3c6735115c1d0d35268e7822aa5b9975a4c3c8d155543da7cc33dd82eb191bfe89ffb40cae15e2b5121cd63b43b5b993a71732ae94486dfeecd2fc5a16ff0eab93a0eaa11ec1c6979d93953fb8d6a10264a31c423ce5777b4c14afcd68054353b9c28236b2817fa295d91a9c542371b0e5f669a25df2fb5cfc61562e954da18add6c89785c40bcff1e2b3750b68f1e986a7efe54945282cab0e2cd8db25ae8941195d8ce57dbe1e9b308bdf97206a5d75daf9599026"})

10:55:06 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
close(r0)

10:55:06 executing program 5:
syz_read_part_table(0x4c04, 0x5800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  431.689399][T18669] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  431.711181][T18663] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  431.740587][T18663] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  431.756996][T18663]  loop0: p1
[  431.771209][T18663] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x2000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:06 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x2000000050000}]})
r0 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x0)

10:55:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
accept4$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000040)=0x1c, 0x80000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:06 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  432.067458][T18692] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  432.092622][T18683] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:06 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  432.139708][T18683] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  432.180167][T18683]  loop5: p1
10:55:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  432.204287][T18683] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:07 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)='\n', 0x1)
r1 = accept$alg(r0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000001340)=""/239, 0xfe34}, {&(0x7f0000000280)=""/24, 0x20000298}]}}], 0x400000000000187, 0x0, 0x0)

10:55:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000540)='/dev/video35\x00', 0x2, 0x0)
fcntl$setsig(r1, 0xa, 0x1f)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socket$kcm(0x29, 0x5, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  432.370973][T18694] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  432.414934][T18694] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  432.435628][T18708] print_req_error: 904 callbacks suppressed
[  432.435640][T18708] print_req_error: I/O error, dev loop5, sector 1 flags 80700
[  432.449448][T18683] __loop_clr_fd: partition scan of loop5 failed (rc=-16)
[  432.450506][T18694]  loop0: p1
[  432.475845][T18694] loop0: p1 size 2047 extends beyond EOD, truncated
[  432.480504][ T2492] print_req_error: I/O error, dev loop5, sector 1 flags 0
[  432.489749][ T2492] buffer_io_error: 902 callbacks suppressed
[  432.489762][ T2492] Buffer I/O error on dev loop5p1, logical block 0, async page read
[  432.504989][ T2492] print_req_error: I/O error, dev loop5, sector 2 flags 0
[  432.512216][ T2492] Buffer I/O error on dev loop5p1, logical block 1, async page read
[  432.520560][ T2492] print_req_error: I/O error, dev loop5, sector 3 flags 0
[  432.527771][ T2492] Buffer I/O error on dev loop5p1, logical block 2, async page read
[  432.540117][ T2493] print_req_error: I/O error, dev loop5, sector 4 flags 0
[  432.547329][ T2493] Buffer I/O error on dev loop5p1, logical block 3, async page read
[  432.555924][ T2493] print_req_error: I/O error, dev loop5, sector 5 flags 0
[  432.563116][ T2493] Buffer I/O error on dev loop5p1, logical block 4, async page read
[  432.571757][ T2493] print_req_error: I/O error, dev loop5, sector 6 flags 0
[  432.578923][ T2493] Buffer I/O error on dev loop5p1, logical block 5, async page read
[  432.579074][ T2493] print_req_error: I/O error, dev loop5, sector 7 flags 0
[  432.594393][ T2493] Buffer I/O error on dev loop5p1, logical block 6, async page read
[  432.603049][ T2493] print_req_error: I/O error, dev loop5, sector 8 flags 0
[  432.610252][ T2493] Buffer I/O error on dev loop5p1, logical block 7, async page read
[  432.610511][ T2493] print_req_error: I/O error, dev loop5, sector 1 flags 0
10:55:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x5000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  432.625579][ T2493] Buffer I/O error on dev loop5p1, logical block 0, async page read
[  432.633793][ T2493] Buffer I/O error on dev loop5p1, logical block 1, async page read
10:55:07 executing program 5:
syz_read_part_table(0x4c04, 0x5900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:07 executing program 4:
pipe2(0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)='\n', 0x1)
r1 = accept$alg(r0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000001340)=""/239, 0xfe34}, {&(0x7f0000000280)=""/24, 0x20000298}]}}], 0x400000000000187, 0x0, 0x0)

10:55:07 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={<r4=>0xffffffffffffffff}, 0x13f, 0xd}}, 0x20)
write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000100)={0xf, 0x8, 0xfa00, {r4, 0x10}}, 0x10)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:07 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:07 executing program 4:
pipe2(&(0x7f0000000080), 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)='\n', 0x1)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x10)
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
init_module(0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000001340)=""/239, 0xfe34}, {&(0x7f0000000280)=""/24, 0x20000298}]}}], 0x400000000000187, 0x0, 0x0)

10:55:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:08 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={<r1=>0x0, 0x373cc4e2}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000001c0)={r1, 0x3, 0x8001}, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000080)={<r4=>0x0, 0x7}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000100)={r4, 0x8, 0x4, 0x10001}, 0x10)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  433.251756][T18726] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  433.332583][T18726] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  433.380976][T18736] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  433.400870][T18726]  loop5: p1
[  433.416338][T18726] loop5: p1 size 2047 extends beyond EOD, truncated
[  433.416368][T18736] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  433.461333][T18736]  loop0: p1
10:55:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xa000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  433.491065][T18736] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffe)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
write$nbd(r1, &(0x7f0000000380)={0x67446698, 0x0, 0x0, 0x2, 0x2, "82505de931737efd5aa067b6e7bdafa453c5ff97331412e20ff4a3f26f8551d4423bbf7961ce2a0a248e4584e325fa549902c559ead9ab10f13dc454209cf5757f7e8e2d9b4dd0bac7c1e82a217814ed4028406cb0b1a69aa1c3445f1f5dacae863d3a5eb39b2e98ffa7af2481fd77270bb9d662f7a762c380e521c8e535827ea2a83aa3bf05b4cdabdd18c8a30a37bf7825076342d2bdc3b4bbd0477d3a44982d0c592fe34f1d7d921440ecd4e4d999927029a8517e6a7a34b35dc7e2244d"}, 0xcf)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:08 executing program 4:
pipe2(&(0x7f0000000080), 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)='\n', 0x1)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x10)
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
init_module(0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000001340)=""/239, 0xfe34}, {&(0x7f0000000280)=""/24, 0x20000298}]}}], 0x400000000000187, 0x0, 0x0)

10:55:08 executing program 5:
syz_read_part_table(0x4c04, 0x5a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:08 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:08 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x400000000)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xe000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:08 executing program 4:
accept(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0)
timerfd_create(0xf, 0x80000)
recvfrom(r1, &(0x7f0000000140)=""/163, 0x100000345, 0x0, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000140), 0x14ded905162a6a4b, 0x0, 0x0, 0x429)
recvfrom(r1, &(0x7f0000003240)=""/4096, 0x100000205, 0x0, 0x0, 0x415)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f00000003c0)={0x0, 0x46}, 0x0, &(0x7f0000000400)="f02609afe36a9375fff58d0640f98a7b46fbb518cc5306e72e3273b31379515751515bfbc37de245dbb6370a75abaf8cedc78ca84e9a8001137a241d29b7631578a77c131ad9", 0x0)
sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="28d298acc615c140ef"], 0x1}}, 0x0)

10:55:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x8000, 0x240)
ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000040)={<r4=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000000080)={<r5=>0x0, 0x0, 0x936})
ioctl$DRM_IOCTL_GEM_FLINK(r3, 0xc008640a, &(0x7f0000000140)={r4, r5})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r6 = syz_open_dev$swradio(&(0x7f0000000180)='/dev/swradio#\x00', 0x0, 0x2)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000380)='TIPC\x00')
sendmsg$TIPC_CMD_SET_NETID(r6, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1004}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, r7, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, 0x0, 0x800b, 0x0, {0x8, 0x2, 0x4}}, ["", "", "", "", ""]}, 0x24}}, 0x4000000)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  434.102497][T18766] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:08 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vfio/vfio\x00', 0x301000, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffc2)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
fsetxattr$trusted_overlay_upper(0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x0, 0xfb, 0x15, 0x0, 0x0, "7b9b11dfa5492e3bc57584f8b4acbaa7"}, 0x15, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005840)=[{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000000500)="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", 0xffc}], 0x1}], 0x1, 0x0)
accept4$packet(r0, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000001c0)=0x14, 0x80000)
setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, &(0x7f0000000040)={0x0, @multicast2, 0x0, 0x0, 'none\x00'}, 0x2c)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000002100000127bd7000ffdbdfa244250b1ce67e80cf5d55545b3c339309d6d3a800182503001408030000000f000000dacb232008000f000000000008000200e000000000000000071414aa"], 0x1}}, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r4, 0x0, 0x60, &(0x7f0000000000)={0x0, @empty, 0x0, 0x0, 'dh\x00', 0x0, 0x0, 0x400}, 0x2c)
io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000200)=r0, 0x1)
syz_kvm_setup_cpu$x86(r0, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000080)="66b94308000066b80400000066ba000000000f300f01cfd8990060dc7001660f3802cad9e10f0966b8008800000f23d00f21f86635000000020f23f8b800058ed8baf80c66b812aac68966efbafc0ced", 0x50}], 0x1, 0x10, &(0x7f0000000140), 0x0)

[  434.155285][T18766] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  434.187889][T18766]  loop5: p1
[  434.198155][T18766] loop5: p1 size 2047 extends beyond EOD, truncated
[  434.224370][T18772] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x20000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  434.276016][T18772] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  434.318873][T18772]  loop0: p1
[  434.352039][T18772] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:09 executing program 5:
syz_read_part_table(0x4c04, 0x5b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  434.431728][T18796] validate_nla: 9 callbacks suppressed
[  434.431737][T18796] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:09 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000000), 0x10)

10:55:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3a020000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:09 executing program 2:
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0xfff, 0x6, 0x4, {0xd, @vbi={0x3, 0x9, 0x3, 0x7f73737f, [0x1, 0xef], [0xa5f6, 0x4], 0x108}}})
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vfio/vfio\x00', 0x60200, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  434.866188][T18813] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  434.932687][T18804] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  434.956918][T18804] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  434.977380][T18804]  loop5: p1
10:55:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3f000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  434.986703][T18804] loop5: p1 size 2047 extends beyond EOD, truncated
[  434.999265][T18803] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  435.041234][T18803] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:09 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000080)={0x3, 0x2000, "3f2a126df36ccf3cfdbd2e874e5a21bee0389d2ce7843a63", {0x800, 0x5}, 0x6})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fd2000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  435.083537][T18803]  loop0: p1
[  435.130668][T18803] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:09 executing program 4:
accept(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0)
timerfd_create(0xf, 0x80000)
recvfrom(r1, &(0x7f0000000140)=""/163, 0x100000345, 0x0, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000140), 0x14ded905162a6a4b, 0x0, 0x0, 0x429)
recvfrom(r1, &(0x7f0000003240)=""/4096, 0x100000205, 0x0, 0x0, 0x415)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f00000003c0)={0x0, 0x46}, 0x0, &(0x7f0000000400)="f02609afe36a9375fff58d0640f98a7b46fbb518cc5306e72e3273b31379515751515bfbc37de245dbb6370a75abaf8cedc78ca84e9a8001137a241d29b7631578a77c131ad9", 0x0)
sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="28d298acc615c140ef"], 0x1}}, 0x0)

10:55:09 executing program 5:
syz_read_part_table(0x4c04, 0x5c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  435.202763][T18825] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  435.232309][T18803] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
10:55:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x40000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:10 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:10 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
write$P9_RCLUNK(r0, &(0x7f0000000080)={0x7, 0x79, 0x1}, 0x7)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  435.604995][T18841] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  435.614415][T18832] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  435.646552][T18832] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  435.688932][T18832]  loop5: p1
10:55:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x48000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  435.711228][T18832] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r3, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000180))
listen(r3, 0x5)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = accept4(r3, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x1000000000054}, 0x98)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  435.882600][T18845] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:10 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1f, &(0x7f0000000080)=""/187, &(0x7f0000000140)=0xbb)

10:55:10 executing program 5:
syz_read_part_table(0x4c04, 0x5d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  435.927250][T18854] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  435.940199][T18845] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  435.951911][T18845]  loop0: p1
[  435.969755][T18845] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4c000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:10 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:11 executing program 4:
accept(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0)
timerfd_create(0xf, 0x80000)
recvfrom(r1, &(0x7f0000000140)=""/163, 0x100000345, 0x0, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000140), 0x14ded905162a6a4b, 0x0, 0x0, 0x429)
recvfrom(r1, &(0x7f0000003240)=""/4096, 0x100000205, 0x0, 0x0, 0x415)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f00000003c0)={0x0, 0x46}, 0x0, &(0x7f0000000400)="f02609afe36a9375fff58d0640f98a7b46fbb518cc5306e72e3273b31379515751515bfbc37de245dbb6370a75abaf8cedc78ca84e9a8001137a241d29b7631578a77c131ad9", 0x0)
sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="28d298acc615c140ef"], 0x1}}, 0x0)

[  436.263978][T18868] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x60000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:11 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  436.544225][T18861] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  436.612468][T18861] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  436.680697][T18861]  loop5: p1
[  436.684394][T18861] loop5: p1 size 2047 extends beyond EOD, truncated
[  436.704216][T18883] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  436.713630][T18872] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  436.750302][T18872] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  436.791552][T18872]  loop0: p1
[  436.801054][T18872] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:11 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x101400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
accept$alg(r0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000080)={0x0, 0x6, 0x5, 0x5, 0x5, 0x0, 0x38d6})
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x68000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:11 executing program 5:
syz_read_part_table(0x4c04, 0x5e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:11 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  437.144333][T18897] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6c000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:12 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000080)={<r1=>0x0, 0x1, 0x1, [0x2]}, &(0x7f00000000c0)=0xa)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000100)={0xfffffffffffffff8, 0x8008, 0x0, 0x1000, r1}, &(0x7f0000000140)=0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fcntl$notify(r0, 0x402, 0x8000003b)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0xfffffffffffffffd, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
pipe2(&(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r3, 0xc0a85352, &(0x7f0000000380)={{0x401, 0x80000000}, 'port0\x00', 0x88, 0x100000, 0x4, 0x8, 0x2, 0x7f, 0x6, 0x0, 0x7, 0x100000001})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="58131196a3f4bacac688c69133ba7d3629738c80409c93d132d815466bcb3df37b89f6858daa021e42dfb544a17d659ce0bbd80d3a1b3d86d3fa33ad2e19697e748445236a3e2f821be3df2962214d89c18e883a2fa39437a84276a652768cb6d50dac39455529dec2e77344370307b80a3d3289caf7e82e08d757e0e9b19210bc3061fa427987aeecab76ea41717c100f3b0206fe3b73a14e1d2ea520db36dcf6ae64d1d095f4d06d1acd1fc13890eb3ead", 0xb2)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000440)={0x0, 0x0, @pic={0xfffffffffffffffe, 0x3, 0x1, 0x400, 0x2, 0x7fff, 0x5, 0x9, 0x0, 0x2, 0x4, 0x1, 0x1, 0x0, 0x5, 0xe9}})

10:55:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0)
ioctl$KVM_GET_LAPIC(r2, 0x8400ae8e, 0x0)
ioctl$DRM_IOCTL_MAP_BUFS(0xffffffffffffffff, 0xc0186419, 0x0)
dup2(r1, r2)
ioctl$BLKBSZGET(0xffffffffffffffff, 0x80081270, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0)

[  437.487499][T18912] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:12 executing program 2:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x8000)
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
setsockopt$packet_buf(r1, 0x107, 0xf, &(0x7f0000000080)="bc9712c1b2551488f44c8fcb87359cbcc6f22acd3378c07aed1b3b97a7bcef6bf82b6a9b439c12cfb3bde8e068382952dd09dfb9ea74f38992ed1a4e29f69437e3a11c5adc5cb80c0f907fb90edf2f1603e3af7679527926191e48e03ccaff41bf48760b9dfa16759f4d060545fc737f8d688a7ae7c26720894f1a14defc4d27d9bafdecc084bcbdbd402b", 0x8b)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000180)=0x9, 0x4)

[  437.528976][T18903] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  437.555075][T18903] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  437.595596][T18903]  loop0: p1
[  437.602046][T18900] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  437.651755][T18903] loop0: p1 size 2047 extends beyond EOD, truncated
[  437.664889][T18900] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x74000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  437.713632][T18900]  loop5: p1
10:55:12 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x1000100)
lseek(r0, 0x0, 0x3)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
sched_setaffinity(0x0, 0x9b3e9963f8bd99b, 0x0)
r2 = fcntl$getown(r1, 0x9)
sched_getaffinity(r2, 0x8, &(0x7f0000000000))
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc))

[  437.737326][T18900] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:12 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x6f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:12 executing program 5:
syz_read_part_table(0x4c04, 0x5f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
write$binfmt_misc(r2, &(0x7f0000000000)={'syz1', "c268098cd363225b157f9e66e657d688cf46cab6cccd07a169c80a9202107b366514570a5bacfce9d200616461d698d9bb5109dbfb0c0d9ff5e540dc3b8b115870dbc20f7286af64b979378decf601095f70df0d17cf5572efe98ca14ffcb09b6366d413af676754675d68c9b1f15ddc290cc681f13f3669b53f57c04840fdfa9544ac946635e8a4b84dd72876b49ddc8a760c859f43148d"}, 0x9c)

10:55:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7a000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:12 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$RTC_PIE_OFF(r0, 0x7006)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:12 executing program 4:

[  438.310812][T18944] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  438.341681][T18944] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:13 executing program 4:

[  438.363728][T18955] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  438.385877][T18944]  loop0: p1
10:55:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x9effffff, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  438.423920][T18944] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:13 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f0000000180))
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000080)=<r3=>0x0)
prlimit64(r3, 0x7, &(0x7f00000000c0)={0x7, 0x992}, &(0x7f0000000100))
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r2, 0x4010ae74, &(0x7f0000000140)={0x1, 0x1000, 0x10001})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:13 executing program 4:

10:55:13 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r2, 0x40505331, &(0x7f0000000140)={{0x7fffffff, 0x1}, {0x10000, 0x200}, 0xfffffffffffffff7, 0xffffffffffffffff})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x404000, 0x0)
ioctl$EVIOCSABS2F(r3, 0x401845ef, &(0x7f0000000040)={0x1f, 0x0, 0x14, 0x7605, 0x5, 0x9})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000380)={{0xa, 0x4e23, 0x6b2, @mcast2, 0x7ff}, {0xa, 0x4e21, 0x3, @mcast2, 0x8}, 0x1, [0x9, 0x3, 0x7, 0x55c, 0x3f, 0x81, 0xfffffffffffffff7, 0xffff]}, 0x5c)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[], 0x4000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf0ffffff, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  438.873858][T18957] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  438.938184][T18957] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  438.991019][T18957]  loop5: p1
[  438.994689][T18957] loop5: p1 size 2047 extends beyond EOD, truncated
[  439.051965][T18974] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  439.079463][T18974] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  439.152742][T18974]  loop0: p1
[  439.168573][T18974] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:13 executing program 5:
syz_read_part_table(0x4c04, 0x6000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:13 executing program 4:

10:55:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xfffff000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:13 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0x8, &(0x7f00000000c0)=0x2)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:14 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:14 executing program 4:

10:55:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xffffff7f, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:14 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vfio/vfio\x00', 0x800002802, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r2, 0xc0105303, &(0x7f0000000000)={0xc6, 0x5ef, 0xffffffffffffff81})
r4 = request_key(&(0x7f0000000040)='blacklist\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000100)='/dev/vfio/vfio\x00', 0xfffffffffffffffe)
keyctl$describe(0x6, r4, &(0x7f0000000140)=""/111, 0x6f)
fcntl$getflags(r3, 0x1)

10:55:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x9532)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x20000, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:14 executing program 4:

[  439.677159][T19012] validate_nla: 3 callbacks suppressed
[  439.677169][T19012] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  439.751132][T19006] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  439.776398][T19006] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xffffff9e, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  439.808534][T19006]  loop0: p1
[  439.837435][T19006] loop0: p1 size 2047 extends beyond EOD, truncated
[  439.840654][T19002] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  439.903554][T19002] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  440.006266][T19002]  loop5: p1
[  440.016598][T19002] loop5: p1 size 2047 extends beyond EOD, truncated
[  440.051211][T19030] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:15 executing program 5:
syz_read_part_table(0x4c04, 0x6100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:15 executing program 4:

10:55:15 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xfffffff0, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

10:55:15 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x40000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x400, 0x0)

[  440.318859][T19039] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:15 executing program 4:

[  440.365031][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  440.569190][T19041] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:15 executing program 4:

[  440.654819][T19058] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  440.694848][T19041] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:15 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0x40405515, &(0x7f0000000080)={0x7, 0x0, 0xe4, 0x4d334c3c, 'syz1\x00', 0xffffffffffffff01})
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  440.721094][T19041]  loop0: p1
[  440.724753][T19041] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x40030000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  440.783560][T19049] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  440.820190][T19049] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mixer\x00', 0x100, 0x0)
ioctl$UI_SET_ABSBIT(r3, 0x40045567, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
socketpair(0x2, 0x8000e, 0x5, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
sendmsg$TIPC_NL_PUBL_GET(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0xdc, r5, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0xc8, 0x5, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf27}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xab}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc0e6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4000000}, 0x400c001)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  440.860254][T19049]  loop5: p1
[  440.883614][T19049] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:15 executing program 5:
syz_read_part_table(0x4c04, 0x6200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:15 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$packet(0x11, 0x200000000000002, 0x300)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000580)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000001c0)={'veth0\x00', 0x201a})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'veth0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000000c0)={@rand_addr="489592572ca0aed6de1b4bc6da12572c", 0x0, r3})
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000280)={@rand_addr="4a77bd490e4e0f3d2728a5a0164f5f97", @initdev, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3})

10:55:15 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  441.165002][T19077] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf0ffffffffffff, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:16 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0xffffffffffffffff, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000040)={'icmp\x00'}, &(0x7f0000000080)=0x1e)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)={0x3ff})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:16 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000cd0fc8)={0x0, 0x0, &(0x7f0000ca6000)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @dev}}}, @sadb_address={0x5, 0x6, 0x0, 0xffffff80, 0x0, @in6={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}}}]}, 0x60}}, 0x0)

10:55:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
socket$inet(0x10, 0x0, 0x4000000009)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='/\x00~WM\x00\x030\x80\x90\"\xcf\xde&U]\xc9\xec\xfe\x19t@n\xda\xd3\x83dx-c\xb6a(T\xb9\xe4\x9d\xbd\xca\xefq\x81\x97\xe3~\x87\n0\x8b\x1e:y\x8f\xa7\x88\xa4m0%\xef\x93>Q\x82\x8a\xb6u\x06N*\xdb\xe9\x12d#\xb4\xa7=h\xfb\xe9\x9cm\xb2\xf1`\xd4\x9c\xb6\xcc\xe7l\'(\x9aO\x9d\tsT\xaa\xa5\x86\r#\x83\xdf\x87Rk\xaa\x18M\x90\xbbw)6l\x17\xbc3\xd7e\xe9\xbc/\x88*\x13\xf3\xa9\xc1\xf6\x06`\xbdO\xd2\xfa1\xd2\xc0\xa7u$\"\x89\xbc\xe0b\xd1\r$\xde\xd5@i\x18\xa6k,u\xc4?\xe1\xffE\x8a\xe5\xcd\x9f\xecc\x03\x9b\xa5\xa7\xb6j`\xed\xe5\xcc\xda\xbc~\xe7v`\xef#X\xcc\xdf\xf0\"&\x02\x13\x84\xb0\xc25\xf1\x14\xed\x9a\xde\x92vz\xec\xc2V\xac\xde\xb6\x10\xdfB\xe7\x16\x9f$\x03W\xf75\xae_\xe2\x90\x17\xe5\x1e\'%/H\xb9[\xfb\xbb:\x86U5)\x8b\xdc6\xd7\x1d\xb65\xf4\x1cWw\x1d\xb7z\xea\xff\x88?\xeb=\xc3\xcc$\xbd<\x03n9j\xd3\xaf7\x94PX\x83\x9e\x81\"p\xbc@\x90\x1f\xa6T\xe7\xcc2\x92\xa8/\xc8\f7M\xc0qB\xa1\xc2\xe9\xd3\xe2R\x8eO\xda\xc3+\xca\xef\xe9\x10\xeb\xd3\xb9H\xa3\xbf\xeb\xef_\xa8\xd8$s\xc7\xfb\xf3\xec', 0x0, 0x0)
getdents(r2, &(0x7f0000000280)=""/135, 0x74f)
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x843, 0x0, 0x0, 0x0, 0x3, 0x0, 0x34dc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xee6b}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000002200)=""/190, &(0x7f0000000280)=0xbe)
close(0xffffffffffffffff)
r3 = syz_open_dev$loop(0x0, 0x0, 0x105082)
prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000600)='IPVS\x00')
socket$inet6_udplite(0xa, 0x2, 0x88)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
readv(r3, &(0x7f0000000180)=[{0x0}], 0x1)
getsockopt$IP_VS_SO_GET_VERSION(r2, 0x0, 0x480, 0x0, &(0x7f00000003c0))
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  441.522809][T19095] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  441.541430][T19078] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  441.560132][T19078] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  441.582784][T19078]  loop0: p1
[  441.600761][T19085] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x10400, 0x2)
faccessat(r2, &(0x7f0000000100)='./file0\x00', 0x18, 0x400)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000080)={0x5})
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)=@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x100000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  441.630346][T19078] loop0: p1 size 2047 extends beyond EOD, truncated
[  441.647474][T19085] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  441.688172][T19085]  loop5: p1
[  441.715089][T19085] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

10:55:16 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  441.888870][T19112] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:16 executing program 5:
syz_read_part_table(0x4c04, 0x6300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x102000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:17 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f0000000080))
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  442.214686][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  442.274613][T19131] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x200000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  442.423601][T19121] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  442.456885][T19121] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  442.500733][T19121]  loop0: p1
[  442.508864][T19121] loop0: p1 size 2047 extends beyond EOD, truncated
[  442.536291][T19129] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:17 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  442.599900][T19129] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  442.619499][T19145] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  442.666308][T19129]  loop5: p1
10:55:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x300000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  442.721514][T19129] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:17 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f0000000080)=0x2)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:17 executing program 5:
syz_read_part_table(0x4c04, 0x6400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  442.935083][T19156] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x400000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  443.030297][T19151] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  443.037477][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  443.070469][T19151] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  443.098815][T19151]  loop0: p1
[  443.113724][T19151] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:17 executing program 2:
r0 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x1f, 0x10300)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f00000000c0)=0x796, 0x4)
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:18 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x500000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  443.379562][T19164] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  443.430155][T19164] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  443.506505][T19164]  loop5: p1
[  443.515859][T19164] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x600000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:18 executing program 2:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x20000, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f00000000c0)={0x30, 0x28, 0xb, 0x15, 0x2, 0x0, 0x6, 0xed, 0xffffffffffffffff})
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x700000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  443.788185][T19193] QAT: Invalid ioctl
10:55:18 executing program 5:
syz_read_part_table(0x4c04, 0x6500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  443.902416][T19183] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  443.937769][T19193] QAT: Invalid ioctl
10:55:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  444.012405][T19183] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xa00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:18 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendto$rxrpc(r0, &(0x7f0000000080)="36c3edcffc150e8bcb571583be425c5f26982bb2c462092c757e244a4f9e92c84bda7fba7e168cae40e94adb23337e4c6f6c33da6eb4f665cc46c9304eb77ccec95dd067f3c860aa3efc8e95a53d86f62b6f85318dd119758bf9dd99788aa1521de556b7eaf611dcd3c8fb098ee49f3d16891ca2c1f4f29c0363067882f3f81653f2af695d9f5c9937a893ea5b971b1c4e120fa4c9c0b9d79e976b0c35ecb0a8544ca2", 0xa3, 0x40, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  444.130640][T19183]  loop0: p1
[  444.134125][T19183] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:19 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xe00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:19 executing program 1:
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000040)={0x3, 0x9})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x4, 0x200)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  444.341393][T19208] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  444.415982][T19208] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  444.500237][T19208]  loop5: p1
[  444.502785][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:19 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
getsockopt$packet_int(r0, 0x107, 0x10, &(0x7f0000000280), &(0x7f00000002c0)=0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000080)=0x1, 0x4)
r2 = request_key(&(0x7f00000001c0)='.request_key_auth\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)='/dev/vfio/vfio\x00', 0xfffffffffffffffe)
add_key(&(0x7f00000000c0)='rxrpc\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)="438e68d6a657957036804f761abb9c4ec68938c4a26d70be53804c6f0f15c5fc946309671776ca92e4462e5b2a720a8564d77ce5bc305c7f279da09dcdf703cce51977dafe62c0", 0x47, r2)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  444.556601][T19208] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:19 executing program 5:
syz_read_part_table(0x4c04, 0x6600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  444.802084][T19230] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  444.861996][T19245] validate_nla: 6 callbacks suppressed
[  444.862005][T19245] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  444.886693][T19230] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  444.931115][T19230]  loop0: p1
[  444.947601][T19230] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:19 executing program 2:
r0 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000140)={0xa00000, 0x9, 0x2, [], &(0x7f0000000100)={0x9909ef, 0xd19, [], @p_u8=&(0x7f00000000c0)=0x4}})
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_open_dev$usb(&(0x7f00000012c0)='/dev/bus/usb/00#/00#\x00', 0x0, 0x18003)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
sendmsg$nl_route(r1, &(0x7f0000001300)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x41200}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)=@ipv4_delrule={0x68, 0x21, 0x700, 0x70bd28, 0x25dfdbff, {0x2, 0x80, 0x14, 0x1, 0x7, 0x0, 0x0, 0xb, 0x9}, [@FRA_DST={0x8, 0x1, @multicast1}, @FRA_SRC={0x8, 0x2, @loopback}, @FRA_SRC={0x8, 0x2, @local}, @FRA_SRC={0x8, 0x2, @loopback}, @FRA_DST={0x8, 0x1, @broadcast}, @FRA_DST={0x8, 0x1, @local}, @FRA_FLOW={0x8, 0xb, 0x25}, @FRA_FLOW={0x8, 0xb, 0x8}, @FRA_SRC={0x8, 0x2, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$GIO_FONT(r0, 0x4b60, &(0x7f0000000180)=""/4096)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff6c, 0x2000000000, 0x0, 0x234)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000001180)={0x4, 0x80, 0x5, 0x0, 0x2004, 0x81, 0xffffffffffffffe8, 0x2, 0xb, 0x9, 0x1, 0x800, 0x0, 0x0, 0x4, 0x1, 0x176, 0x7ff, 0x5})
sendmsg$kcm(r1, &(0x7f0000001680)={&(0x7f0000001340)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e24, @rand_addr=0x7fffffff}, 0x0, 0x4, 0x1, 0x1}}, 0x80, &(0x7f0000001500)=[{&(0x7f00000013c0)="1294e97a5af524df0a98cc9f5962ab04868b7502a2547e4dcb45e7ee69f804233c7fbac661", 0x25}, {&(0x7f0000001400)="930562aa61d332be0a1f2ef1e6a4190032f56bebe11a64154d62e153cb450858446cb7a4c14f84946531bed7212f48a013f827b42c54a29649d59a922c175f59ba82bfbbb863c5f8a19ee890fd652ff893ec93eecf5dd28478f8045fccd74769e626f145377f6faf9b5f38b705", 0x6d}, {&(0x7f0000001480)="511f85023226ad82a1afc98d95954031b15bf50a94a71fe0acd7327ac0b321e7943d163bbaeb21dc6c596994a276f3669046bc83ce230c1a81abfe708bab2189bfa542aad9c98dd82f3faaf95e51aeb7d1327dbc85b06ac15e6a862736ba43fba1", 0x61}], 0x3, &(0x7f0000001540)=[{0x80, 0x115, 0x1f, "dd5b539304a19a490f87037180005242b001857ebdc7fdd570f8a6aca904ef015f0fe6dcaf0900292e73ff7676da0c4f483a92de511df2da15dce14a86a76b8724335685a3b324167625d3ba6c68d193dcc9a496a7e24e232eec7b835b1aba3bff33466518a78112af1b7ec867f0"}, {0x58, 0x11f, 0x2e3a, "8b85c5b6abf5cd099ad2bbb61ea4d90f7701e82f3084a4be1e7e7a5766fdb85d5ffa2fbef442c9cf74ba039645f1e4235dbcab56868c0e7873c291bc1a164ffa286e"}, {0x50, 0x102, 0x2b9, "86decafe4f76e150ae3c3190a25ef5d900580613deac0550f239fead99a9a938a4ab7569c1c25fe945dbfe8bee99b4291129b3f860be5531e5156bf59dab"}], 0x128}, 0x800)

10:55:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})

10:55:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000000)="0f0f6e0ab60f06baf80c66b82c83e98e66efbafc0ced0f236566b9800000c00f326635002000000f3066b9150101c00f3266b9620b00000f3226d9f1660faf090f23b2", 0x43}], 0x1, 0xa, &(0x7f0000000140), 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x2000000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:19 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  445.256094][T19260] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  445.359774][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  445.393943][T19248] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3a02000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:20 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  445.446868][T19248] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  445.503071][T19248]  loop5: p1
[  445.511522][T19248] loop5: p1 size 2047 extends beyond EOD, truncated
[  445.613745][T19273] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  445.671282][T19267] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  445.700835][T19267] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:20 executing program 5:
syz_read_part_table(0x4c04, 0x6700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  445.722551][T19267]  loop0: p1
10:55:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x3f00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1000, 0x20000)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
setxattr$security_smack_transmute(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000500)='TRUE', 0x4, 0x3)
write$vnet(r3, &(0x7f0000000400)={0x1, {&(0x7f0000000380)=""/89, 0x59, &(0x7f0000000780)=""/4096, 0x3, 0x3}}, 0x68)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r4, 0x500, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x24, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)

[  445.762147][T19267] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:20 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  445.934847][T19285] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:20 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ASHMEM_GET_PIN_STATUS(r0, 0x7709, 0x0)

10:55:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4000000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})

[  446.230912][T19287] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  446.262598][T19303] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x9], 0xd000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  446.301120][T19287] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  446.337102][T19287]  loop5: p1
[  446.358579][T19287] loop5: p1 size 2047 extends beyond EOD, truncated
[  446.369082][T19294] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:21 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={<r4=>0x0, 0x7}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000100)={r4, 0x7875, 0xf9, 0x5}, &(0x7f0000000140)=0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={r0, r0, 0x1d, 0x1}, 0x10)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  446.402986][T19294] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  446.434656][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4800000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  446.451087][T19294]  loop0: p1
[  446.474944][T19294] loop0: p1 size 2047 extends beyond EOD, truncated
[  446.583955][T19316] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:21 executing program 5:
syz_read_part_table(0x4c04, 0x6800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:21 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x4c00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})

10:55:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x1f, 0x3ff, 0x0, 0x2, 0x5, 0x3, 0xc80b, 0x8, 0xff, 0x40, 0x400, 0x9, 0x7, 0x1, 0x3f, 0x2], 0x102000, 0x1})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x434c00, 0x0)
ioctl$TUNDETACHFILTER(r3, 0x401054d6, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:21 executing program 2:
r0 = shmget(0x0, 0x3000, 0x20, &(0x7f0000ffb000/0x3000)=nil)
shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/143)
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
accept$packet(r1, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000000c0)=0x14)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  447.040164][T19339] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  447.082557][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  447.117833][T19330] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  447.153470][T19330] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  447.186493][T19330]  loop5: p1
[  447.194511][T19338] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6000000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  447.273766][T19330] loop5: p1 size 2047 extends beyond EOD, truncated
[  447.282319][T19338] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  447.331512][T19338]  loop0: p1
[  447.336382][T19338] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x8000, 0x4)
ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  447.413253][T19356] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:22 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000000040)=0x10001)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x80, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:22 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6800000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:22 executing program 5:
syz_read_part_table(0x4c04, 0x6900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  447.691756][T19370] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x6c00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  447.950909][T19365] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:22 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x5, 0x5, 0x1, 0x7f, 0x1, 0x7, 0x8, {<r4=>0x0, @in6={{0xa, 0x4e24, 0x0, @remote, 0xd90e}}, 0x8000, 0x9, 0x6, 0x0, 0x8}}, &(0x7f0000000140)=0xb0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000540)=ANY=[@ANYRES32=r4, @ANYBLOB="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"], &(0x7f0000000240)=0xb3)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000280)={r4, 0xaf59}, 0x8)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  448.015952][T19365] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  448.020391][T19372] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  448.040585][T19365]  loop0: p1
[  448.056046][T19383] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  448.068838][T19365] loop0: p1 size 2047 extends beyond EOD, truncated
[  448.079763][T19372] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  448.115045][T19372]  loop5: p1
[  448.124478][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  448.149320][T19372] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7400000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:23 executing program 5:
syz_read_part_table(0x4c04, 0x6a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:23 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:23 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'syz_tun\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000040)={0x11, 0x4, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x1b, r2}, 0x14)
syz_emit_ethernet(0xe, &(0x7f0000000080)={@empty, @remote}, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x6, 0x0, 0x1fa)

10:55:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
fcntl$setstatus(r0, 0x4, 0x400)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x7a00000000000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  448.810849][T19407] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x9effffff00000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  448.872095][T19411] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  448.881288][T19407] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  448.912485][T19411] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  448.942238][T19411]  loop0: p1
[  448.954060][T19407]  loop5: p1
10:55:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  448.967240][T19411] loop0: p1 size 2047 extends beyond EOD, truncated
[  448.992942][T19407] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xf0ffffff00000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:23 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
write(r0, &(0x7f00000001c0)="998b44cb922d06b94e0f3169befbb1e7396d338de38634d4c311c0726d6b497ad7392497306c69bf30bc319e6b95e6180d502d5928438e09e0399c167a4e3bcd08c50bb54918315f40e4121160ccb0471b8214ccdf4f6772", 0x58)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00')
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1480000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r3, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000080)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={<r5=>0x0, <r6=>0x0})
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS(r0, 0xc0385720, &(0x7f0000000280)={0x0, {r5, r6+30000000}, 0x2, 0x400000000000000})
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:23 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:24 executing program 5:
syz_read_part_table(0x4c04, 0x6b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xffffff7f00000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  449.411679][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xffffffff00000000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  449.630743][T19437] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  449.650106][T19437] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  449.663763][T19437]  loop0: p1
10:55:24 executing program 1:
getuid()
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  449.688372][T19437] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:24 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000080))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0xfffffffffffff000, 0x0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:24 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  449.875179][T19442] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  449.924675][T19442] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  449.960161][T19442]  loop5: p1
[  449.973139][T19442] loop5: p1 size 2047 extends beyond EOD, truncated
[  450.118912][T19473] validate_nla: 6 callbacks suppressed
[  450.118923][T19473] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  450.197899][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:25 executing program 5:
syz_read_part_table(0x4c04, 0x6c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:25 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x207ffc, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x2, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  450.350424][T19469] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  450.410300][T19469] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  450.424392][T19469]  loop0: p1
[  450.443074][T19469] loop0: p1 size 2047 extends beyond EOD, truncated
[  450.589280][T19469] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
[  450.590161][T19490] print_req_error: 904 callbacks suppressed
[  450.590172][T19490] print_req_error: I/O error, dev loop0, sector 1 flags 80700
[  450.601424][T19492] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  450.669438][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  450.676839][ T2492] buffer_io_error: 902 callbacks suppressed
[  450.676851][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
10:55:25 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x7f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  450.721292][ T2492] print_req_error: I/O error, dev loop0, sector 2 flags 0
[  450.728543][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  450.736955][ T2492] print_req_error: I/O error, dev loop0, sector 3 flags 0
[  450.744345][ T2492] Buffer I/O error on dev loop0p1, logical block 2, async page read
[  450.752735][ T2492] print_req_error: I/O error, dev loop0, sector 4 flags 0
[  450.759926][ T2492] Buffer I/O error on dev loop0p1, logical block 3, async page read
[  450.768212][ T2492] print_req_error: I/O error, dev loop0, sector 5 flags 0
[  450.775482][ T2492] Buffer I/O error on dev loop0p1, logical block 4, async page read
[  450.784691][ T2492] print_req_error: I/O error, dev loop0, sector 6 flags 0
[  450.792209][ T2492] Buffer I/O error on dev loop0p1, logical block 5, async page read
[  450.803998][ T2492] print_req_error: I/O error, dev loop0, sector 7 flags 0
[  450.811247][ T2492] Buffer I/O error on dev loop0p1, logical block 6, async page read
10:55:25 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  450.812210][ T2492] print_req_error: I/O error, dev loop0, sector 8 flags 0
[  450.829839][ T2492] Buffer I/O error on dev loop0p1, logical block 7, async page read
[  450.830544][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  450.845160][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  450.854348][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  450.935007][T19487] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  451.053114][T19487] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  451.098087][T19512] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  451.150993][T19487]  loop5: p1
[  451.165135][T19487] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:26 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  451.321866][T19506] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  451.350284][T19506] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:26 executing program 5:
syz_read_part_table(0x4c04, 0x6d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:26 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00')
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x34}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="b4000000ca2bad31247c8097518bd4ee84bce7980faac6ba", @ANYRES16=r4, @ANYBLOB="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"], 0x250}, 0x1, 0x0, 0x0, 0x1}, 0x4)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f0000000080)={0x2, 0x9000000000, 0x3, 0x7ff, 0x2, 0x10001})

[  451.393721][T19506]  loop0: p1
[  451.399897][T19506] loop0: p1 size 2047 extends beyond EOD, truncated
[  451.477278][T19524] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  451.536247][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:26 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:26 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x5, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  451.854336][T19545] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:26 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x44000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r1, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x38, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6000000000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xa9f0}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4010}, 0x44000)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:26 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  452.010980][T19540] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  452.051632][T19540] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  452.072193][T19540]  loop0: p1
[  452.080219][T19536] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  452.100468][T19540] loop0: p1 size 2047 extends beyond EOD, truncated
[  452.119750][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  452.154805][T19536] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  452.206489][T19536]  loop5: p1
[  452.212860][T19561] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$DRM_IOCTL_FREE_BUFS(r2, 0x4010641a, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[0x1b37]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x202, 0x22)
ioctl$VHOST_GET_VRING_BASE(r3, 0xc008af12, &(0x7f0000000040))
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  452.258200][T19536] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:27 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

10:55:27 executing program 5:
syz_read_part_table(0x4c04, 0x6e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:27 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$VIDIOC_G_MODULATOR(r0, 0xc0445636, &(0x7f00000000c0)={0x3f, "c779d8a0c14c439b0f042d62c10026163327ae13b477158935b6a635a0f9c5e9", 0x1b08, 0x4221, 0x101, 0x0, 0x3})
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, &(0x7f0000000080)=0xfffffffffffffffe)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  452.581858][T19575] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xa, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  452.783401][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  452.861757][T19573] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  452.893849][T19573] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  452.931553][T19592] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  452.961340][T19580] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  452.978271][T19573]  loop0: p1
[  452.991111][T19580] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  452.998539][T19573] loop0: p1 size 2047 extends beyond EOD, truncated
[  453.029392][T19580]  loop5: p1
[  453.057604][T19580] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xe, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

10:55:27 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000300)={0x9, 0x1, 0x2df, 0x85, &(0x7f0000000080)=""/133, 0xd9, &(0x7f0000000140)=""/217, 0xb5, &(0x7f0000000240)=""/181})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:27 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:28 executing program 5:
syz_read_part_table(0x4c04, 0x6f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  453.392400][T19611] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  453.445268][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:28 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffffffffffe)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  453.685264][T19612] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  453.731381][T19614] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  453.737230][T19612] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  453.784577][T19629] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  453.806431][T19612]  loop0: p1
[  453.820603][T19612] loop0: p1 size 2047 extends beyond EOD, truncated
[  453.822654][T19614] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x48, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  453.890520][T19614]  loop5: p1
[  453.894117][T19614] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:28 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:28 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x0, 0x0)

10:55:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x4, 0x3, 0xf002, 0x2000, &(0x7f0000000000/0x2000)=nil})

10:55:28 executing program 5:
syz_read_part_table(0x4c04, 0x7000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4c, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  454.232657][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x60, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  454.492073][T19645] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:29 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000080)={<r1=>0x0, 0x2, 0x10000, 0x4, 0x3, 0xa27, 0x6, 0x1, {0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x10}}}, 0x8001, 0x7, 0x5, 0x800, 0x873}}, &(0x7f0000000140)=0xb0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000180)={r1, 0x5}, &(0x7f00000001c0)=0x8)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  454.560147][T19645] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  454.581843][T19645]  loop0: p1
[  454.597093][T19645] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x68, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:29 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  454.770703][T19661] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
sendto$inet6(r2, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r2, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r4 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r4, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  454.839251][T19661] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6c, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  454.909114][T19661]  loop5: p1
[  454.936573][T19661] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:29 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, &(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x74, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:29 executing program 5:
syz_read_part_table(0x4c04, 0x7100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  455.199779][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  455.330825][T19676] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  455.374525][T19697] validate_nla: 5 callbacks suppressed
[  455.374535][T19697] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  455.406346][T19676] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  455.432015][T19676]  loop0: p1
10:55:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x7, 0x101000)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000380)={0x7, {{0xa, 0x4e22, 0x3ff, @mcast1, 0x6b}}, {{0xa, 0x4e22, 0x81, @local, 0x55}}}, 0x108)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7a, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  455.469719][T19676] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:30 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:30 executing program 2:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x100000000)
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001180)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000080)=0x10000, 0x4)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000001340)={0x3, &(0x7f0000001300)=[{0x3, 0xffffffff, 0x4, 0x8}, {0x4, 0x61, 0x5, 0xfff}, {0x1, 0x0, 0x8}]})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001100)={&(0x7f0000fed000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fe7000/0x3000)=nil, &(0x7f0000feb000/0x2000)=nil, &(0x7f0000fee000/0x3000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fed000/0x1000)=nil, &(0x7f0000000100)="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", 0x1000, r2}, 0x68)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000001280)=""/76, &(0x7f0000000040)=0x4c)
mincore(&(0x7f0000fea000/0x4000)=nil, 0x4000, &(0x7f00000011c0)=""/171)

10:55:30 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  455.694772][T19709] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  455.770963][T19700] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  455.833729][T19700] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  455.897400][T19700]  loop5: p1
[  455.938738][T19700] loop5: p1 size 2047 extends beyond EOD, truncated
[  455.956689][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  456.158951][T19718] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  456.198138][T19730] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:31 executing program 5:
syz_read_part_table(0x4c04, 0x7200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:31 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  456.235544][T19718] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  456.290328][T19718]  loop0: p1
10:55:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x102, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:31 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
sendmsg$unix(r0, &(0x7f0000001200)={&(0x7f0000000080)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f00000011c0)=[{&(0x7f0000000100)="22d26d31b02a39428e0bec9702b4fce2ac5be433bc6706c97363781f2d56f8ae6dd710db69a311984dba3954c0842b15a8f9f1844707663d8b8e3f204b05ec7a44886ac22c18415b16a086afc3f3f5749f81d1a46992284669599d033e198cf2d8e6d130f5293549bc5206476bf9101a2cc6df1f700181ff369cdcbf2f73e777b1322657bece3efdd8199408de0b043d34eccd0ead93ec1109012f911c2d8a99cbe7a06b833004543c6cbb215ae2763a05af4eed", 0xb4}, {&(0x7f00000001c0)="94570dbd121e7eeaebe8666f7e3f7819be4e2be25a3122be8cb785e5dc80c9dcef879ef2f6fc4ab81d71623d3be50b09dd3f1c78ebd0e6f8ebe66733c5bfe112546bbdda41489e4ef4607e2419cf6250be65380c78fb562f2d3f6883df901e1fdc110cdaeabd9979d7d2c4d45f996776871555dd308fd8ee52391013e616710da684da6fb79c0116985835d3cf5bedf85ea871d659c2a23e971f72a22b8383e9bacedb4c2705afa827d84fa585c889f99e2ac113f90b6b6229fbae1917cfc5dc42b2fc3303ad44b2dc8def8697af62bca387ce710f2055998864bd95a0a98207e413d205d1e4dd33a30e127e31b46854540b57c692d2e1a1ab530ab211fad5f5e4dd5d13ad2b524c96930aac2fe0897c0d87d39b21844947e0518381ea866e1b29c8e77ffd49d343b0112e138de7a41275639e0d9d9a7665ab0eda50e6e54c54b6f290bfc54679e62615ba245cf4c137ea8ef0397a5f6df09baf1d626c9b4f7e9d5af23971d885a8e1d73d928364520c7f383fd7042413a61c430d8e63e608baec644e603ce1d65793173fd87ba212ca7b3e93c63c51cb2c125aeb3d655dc990bf86342ce9826d5760698ca45356bcc578c5ba734fdb01925583bc8262eccf526c01a2e1414f0419cf000b8983bae15e2afdeb51f488d95a5bd57e74cd9f159f4832c7eebd140ccfdd11ce7fc2b8eadd1e849982c9c5da51d324e0b6e7c4dcafbeada95b05ac5fd37992253ba83a301fb136e3a57ea63c6c785d732a1d306288b3a96492cb946cc1f91378db3fb9c46cf3435def5d084e11779ddf3dc120d4b51b7693302aca250f3093af46d416e9a19123aeb219a8bdb3ebd563a88b5bbb558ef84b0258f84959d9021e9ba2e5b40dcdc83d4d6b9397126066bc19134d4142931e2a35d44fdd30177e8048746eefe5fa08dc393022dac23efa4a04975cb567363918d50edb9fbf8d917e040cc7ad88f6f893ad283fb29b96c8ec6c35717599d784a0a430e855d86519581c1cc9625668c1dfd270193e5753df13f19ff4c887e2056ca3eef59f71b290a94ecfba977348b90821b15f52a4ee50b4fa0245a2a5acf9d1c187796e012a23ca657f71bd7ad980c1a366700e88ce27ab3c0a6e1673d1ae6ae753c35918f968e30bda80ed0510811b73b2202ef525b6a91984c2c1a87fc6482fd43b3cf120891c11f22a7528c1733d25020b6bd0633b46c041a90ccd7fef365bde6bf45447f682938815d7c8dc62946c87a1402aab5c8309221000ddd6b4483a963fd648238f794901b75fb6a6322cc7d04ab4893ff2cf672dc1c3a6d88bc7a280aa0800d7f91fa7f858949ff6277293347ccb3b6eabf3eaa05c464ae3e9320486ade89373d35b70d0877ef5d1165ca4c9438f721c72a8bb0224844ebbb7211bb44671d26e92b88f94b2bf43c675cba9f4b922b1cc9dce0eab994b57fa7de6f1a31fb6b20d7bf40750bf0b1b6a666d209c890bc385e7a52c524ec42a7c7c6203f36b89dd89dab12ff7ebcc4170bd005e6f2c1db5ee77dcb0aaef1f3637d870d888bff00b06f3356bd26fa0df2d184812f4ae8d1016004004d5ced934d66bce42d162dee5638877eefb71c9be046395b5021ad76cb1ba20a0c4ea9e8a7241f45f01f463393e2338c3c3e67cf42033a4a642e4514de602cc3a6ad66c7b2d39625692f55ae51dee38a47e166255c9873de04a3e5df4d63aa2ab03b3ad2398412acb8c7ed6a43d8d4796d05469141320369d971dbf48fa2fed6ebd12ca1214fc4c30f4a674a6f19cbb1c2af20a7f5698f0523e8e08b0cdb9974fec491af67cde4bda849478b0424aa2dbd65821414f8d2a0f3155ba4d7bfae72979c659e29f0b0a9d08f26270dddd03c2f6b5a52ceb5c4fd21d31c2ddbd9dcc5123bf73af46dc60ef540e9ecf4598c6ac6b426368f040f92238da63de5cbaed38b174144cd9fed9d08b63afb833e065bf759349b3b4980e35b2e0eaad0d0ec4815c11e49a6d6f4ae8795c33d1d594c6fa20b1f0af0c8eb4a67f2fe988efe73cbd85848ffbbb696278e17fd671d70313be64e0ff2eee6b5e6561fec6bd2163af794e8ae4e24500e21b4c3e92a5ea58ce2ac0da7c8a852cadb16dcca98101c19769a7d03240c95c5acddd6e66e3d77379ef261dc9704440c41c7ba830b398c104e8dded99e20b1e3a71fc478fe0a9ec6090a780e9101def7280564fcfe75b363542371ca3042b8292b0bd19e92d21d76ab8b1f7bb2bf9fcb0d4e197647ee3859906e67b0460e30d7703198e03306f752c6003e3023925118655a876c06a6d14a67145b6995ee6d7329d41ef8d715a50c23df8bc8f7fb2461e76599727359fd90cb80e39bdc62f169b01a03cbd7488be3dbb6d295255586dceba1496112149b14570ea40e828877d673c666f3aef7c25520e2c2664bd14047c57266f8fec711807e98d3e14d699bdad30c740e429469851aaeb1749e845dab5e53624ab43600bf892155f65efcb798bafa5d005e7a53a845a5023c553736d029db22ebb4ce5a4aee4c69398f6a9a7965612d68e4da2d16582ff4043626948ff84af5a3b651b4c97644455a3815247bafefe2df40d75a2cd0597a130b625621f29ce7d62e35d0e4627ca7c0acf27452da47b553e561b9ea2c3f8f0fa5bf8d460b592223fd0e907c418aa1ed97f1870eb0ae9212603b410ef7cc966f8e9ec10e664f3fc3c096b427a3b04529f2f8abde32768bb080413a39b026db366a9227ee9b83363197b11540f617ae1d89932b85c22c9b26657b90f5eb1b24ea8d869819fa017c94e96aa695e048340723dbcedd408bad627c3cdd7d77d7cd7f1c86ea8f36011b2eef1380a19aebcd0b2b65890c22f4269f580d826061844060e727e7f200ade8f58f5cee2f70adfdf1f80bdd6e5e41d88a0934ff96313c4c6c18761080df855d894afb0514ab40ce32289634c644bc3420025bee976583fc0df28ad00f928cba7aef6cf0c0c74d6cae1fa12802ffd9734603957d7fe6c4494ec4f10eb61a84cab09d7171f867fb191d3057932465dfc2102e9bd4a976c99932ef76e8bf0425ab909823ae95326996c6b246b7ec1a47edd2a5ee1d5fa2c33bf7d982c3a91c4bfcd3aeb89aca9817d71134ab799820247379389f03db413457d1afdaab80e05988a1cd46b6080a3684cad8eaf9c1fe08fa43aa9e76da756c013bf2584db642e9fe10bc69cd990e6b7399d21df0aaa949ccf2676af76c687d70f250a24264bd7c5538a3e321d97f0582c2f95efe5bc867a197fd41b21f12430449d3484392d0b53ad7512ab57e2f051d89c5b450f39d5383901da4702fc36cb56cc686319329a706e856130b77b8cb7a4b0aba239af9ff8d18f543054675c989b1e5567151de12c538146de06bbc5ffdd8b96f6a642737fdbf8aba87ca185c0f4f43d4e78b6f5b837871d3555aedbc23c15813e2989ef6f4ec77e2408efebc8ca2390868ba88f22e0c1886c27fdc5a83d8fa4dd59de0c1afd2355892c6fa27278cc0b1f174f142587087d90b5565e311ffc336e95c2f726bf8dd1e45add490961359a9f960012ddccaea6eb62a8aba85f434ae36802cceaa7e61f6a37dcfd991de2c0a0c9c2ddf7b54a38cbbfd84168b0a857c3804814892cab444d90cf4a3f010498178f85d350c8b02a3e79257564a38259215941e8e17a7042e983d45ec743a10b03386f4b88272b3ae561b1b8067e0c24f82648740365ef5e8736d0bf93c5172e2bc3438d2e51c65d36285e473cb81cdb2b4cf93b6acce7d14041197f8bc164ed9f049e984c148aa9fdf330ae69e27d588ab2c47a38b85d4507acaeed9ca265c381385255971e45968b317cc5b5a9c43510b68840c4821a185f6b944259958ca0903f022bb823d53a7410ab2034467e453e65754b362770c5c72822eff260166bbe5ed81cb13041c8bb378177b67485a119613a7ef0072a8f7ce68edc6b26f86f84742dc29a249270cb13b95a6fad68995923cc0a158a3f3a7580d21dbe83ad520fd186e19ea60016a5cd343796ed90b434366f15788b719797e6d0e58824c906348687e1caed410d1c79698b9765658115adcc0c1aaf9ddbb0abe888c72b88304b43fd0ec88ea4227c1f2729ecc25b0713e74abea6ae26e27e274c8f8bd9eca01559584ce8dfde932822316b57271ca9fcd9dad7d24eeed1acf929fc04364ae171bc4c34e8bd198efc823966924c4d08fc30d74a26267275eaf38d1560d3ff2b4a2e97b59445c9f81f1a309420e42b8346d3b38106b0cf7db715966b152984cdbef55a2d83bd45a61b7603e42c08e15595484e476b78ae66d0aa224941d9050b2cc1f05c5fb18f97b779ab3719fbcbd5c8638147c0be791c9c3ab62cd33bb987b1a938f1911d07cff0ccdf033cbbb61be8d1c9ada02c77e57183173d98cc87304a34484de126325df940927945cc6eac6f37537189b00cab45f87702a97a25064ad88bc3c264e7699a88ed50396f834bb19358873a73d3f1b34b69672bf05a729699ba9b8656d8645ca39cb1330d320efa57423ac75921c816fd80f9aff93220e26c2462fefd88d4325db1307a115b4307ba315099d81ba1c5cc42cc2ba97a78cb40bd069bed83a99e483acacd7caf2a78446901827b170939399abb5684d2cb87e56bff95915acc70e8c4ff4e93810f7f826f93e6e0034c52c9639f8691cb628de79de566b00e39974d6fd8f3060f15c2b502b5df79caef034cbc05cca59b5b15ca8f396b95f9ee2c475bea735181f7ec26f46e1902e3cff712bbd1645327757ac1ee7adde1f5321cf3facdb21d6da09185b338540cb6ae43881cfd9f3d3bf3219cf9ed961c20d8bfff52e6b011137f2916e2a04e019f5de96ca6abd4e6c2921d3774f72e3b8978bfe782ff54bba48ea806af3226f8ee6f4b2c8925d6fc14679481380c2808673d427f89185e147a47cdae783e119cd838801be6795c0341a68705c8f9de3efa97c0edf52e8e87b08e5f15fe64b4c1cf02d1ead8c6a3ba1dc484d19052e1610e3f2b6ba4f2e3732ecea461bd3d4d846206c59ae4c9369975f3cbccb65850ff6fffce8b2ff6ebd49ac7926532c30bd926f82c2562d0acf2325a44596b96fba972e90a33e0dceaf829e22ec84c96ea3a12b004c2b37113f71e40ec4753782c5ea8ff45fbf7e7d946a9bcbec80859f28b48c5dd3f3c3ba7b8299a6182e212eae4a36d28eec035f86b130456a2e4baac0f38bc13752b26226999c528610874be56d18f29c870e3668a02ab64e6e51424a520fbfbd7251bccdbecefc3f15390585855e8afdda6cef144a9839ee7f3c1bc35b4ac36ba823292831bc41f59723aa3f90573c16d6b1fe9df4ef339df8d036cb12faee32a54201fe8fa46281ab185bb8d262ba56e9c0bd4d6c8171bc60b57ab022a253dac6554eb1693103ac8c4bb3bd559956477ca5eda91dc7dadfd1c50306ca134cc11575b9f664c6508506ccdb08e82c44167ef304c5c1daa9ead5bed1212b2ac22a4ef3661bcc3b0c79ac7e22744068398c8c2020595069ec25cda39592faafbc8a99b7e79a4a837a45cad6f0a01c5df124c183042b6ceeb506438c28cb4d3a6b9e4f48cdb93c628cfe6dc504fa5fd64046f5f9f77a46085eb1cd02176a126c9a1e499d5378e007d6c5360c2f619d83deef5a5d7393a7b7e74772aa79d0e079871cbda460c2d37ca2098d589dddc0d73ab89a13244a60344db02f9c13c4256efdf68183f06ab726b2aaed7bb3ef62aef956529a9dcc377a24dd74cd77ea9fc71582f937208e83d5d9954d2346012406ca5c6c5c369665d61", 0x1000}], 0x2, 0x0, 0x0, 0x8000}, 0x800)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  456.321022][T19718] loop0: p1 size 2047 extends beyond EOD, truncated
[  456.452034][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:31 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  456.504731][T19742] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x201, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x891b, &(0x7f0000000000)={'rose0\x00', {0x2, 0x4e21, @loopback}})
ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f0000000040)={0x3, 0xfffffffffffffc00, [{0x6}, {0x7, 0x0, 0x8}, {0xffffffff7fffffff, 0x0, 0x1}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:31 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  456.731624][T19740] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  456.766013][T19740] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  456.796111][T19740]  loop5: p1
[  456.834931][T19740] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:31 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x80000, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  456.855477][T19756] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  456.942261][T19750] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  456.964483][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  457.019498][T19750] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x23a, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  457.061240][T19750]  loop0: p1
[  457.067112][T19750] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:31 executing program 5:
syz_read_part_table(0x4c04, 0x7300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:31 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x20000)
ioctl$TIOCGPTPEER(r2, 0x5441, 0x5)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[0x0, 0x0, 0x3, 0x0, 0x0, 0x80, 0xff, 0x0, 0x8001, 0x8, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x200000000000], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  457.246616][T19768] print_req_error: 447 callbacks suppressed
[  457.246628][T19768] print_req_error: I/O error, dev loop0, sector 1 flags 80700
[  457.251616][T19750] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
[  457.257624][ T2492] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  457.280115][ T2492] buffer_io_error: 446 callbacks suppressed
[  457.280127][ T2492] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  457.297099][ T2492] print_req_error: I/O error, dev loop0, sector 2 flags 0
[  457.304407][ T2492] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  457.312738][ T2492] print_req_error: I/O error, dev loop0, sector 3 flags 0
[  457.320003][ T2492] Buffer I/O error on dev loop0p1, logical block 2, async page read
[  457.330442][ T2492] print_req_error: I/O error, dev loop0, sector 4 flags 0
[  457.337629][ T2492] Buffer I/O error on dev loop0p1, logical block 3, async page read
[  457.344444][T19772] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  457.347744][ T2492] print_req_error: I/O error, dev loop0, sector 5 flags 0
[  457.361153][ T2492] Buffer I/O error on dev loop0p1, logical block 4, async page read
[  457.370505][ T2492] print_req_error: I/O error, dev loop0, sector 6 flags 0
[  457.377701][ T2492] Buffer I/O error on dev loop0p1, logical block 5, async page read
[  457.385994][ T2492] print_req_error: I/O error, dev loop0, sector 7 flags 0
[  457.393234][ T2492] Buffer I/O error on dev loop0p1, logical block 6, async page read
[  457.420255][ T2493] print_req_error: I/O error, dev loop0, sector 8 flags 0
[  457.427480][ T2493] Buffer I/O error on dev loop0p1, logical block 7, async page read
[  457.436238][ T2493] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  457.443481][ T2493] Buffer I/O error on dev loop0p1, logical block 0, async page read
10:55:32 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x300, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  457.463944][ T2493] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  457.550124][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:32 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$PPPIOCGIDLE(0xffffffffffffff9c, 0x8010743f, &(0x7f0000000080))
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='trusted.overlay.upper\x00', &(0x7f0000000140)={0x0, 0xfb, 0x89, 0x2, 0x89a9, "86f89f8752136c3b9cd61fb84830f9f2", "1cc52274111245bbfa336bfe9dddda9ac1de840475f5f01c7cc68a62550127b8e0739796e44dcd3f95fc7f1fa06bc599cc731be04abe4575ad534e3edeb57c2b314c9063d4dd005789148c407c2f873100d3b11f328e6d05528199169920e9d7afc39cdd6c2ba6e376b7170dd17fb7504b7fca09"}, 0x89, 0x2)

[  457.699834][T19789] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x400, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r3, 0x800448d3, &(0x7f0000000140)={{0x4, 0x1, 0x4, 0x0, 0xffffffffffff8000, 0x2}, 0x9, 0x1, 0x200, 0x7, 0x9, "a1971e22ee8eb15231ffc1d99ca6332af89123b1811a6f303fefb0cd27202197968e6408b14040ffb273eede3279b68de374039b88fb55fe952824d4b2f33aae88a708784f41d52e08ed9241f308374162029601328b6b0edeb19c6edbaccada650846a2182821006b6743369261ada6e1378a4ee9b6e7b44fb2864904c31dfb"})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1fd, 0x0, 0x3, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x10f000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x500, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  457.850923][T19779] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  457.908735][T19779] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  457.959858][T19779]  loop5: p1
[  457.964465][T19787] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  457.974942][T19779] loop5: p1 size 2047 extends beyond EOD, truncated
[  458.003176][T19787] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  458.054572][T19787]  loop0: p1
[  458.063962][T19787] loop0: p1 size 2047 extends beyond EOD, truncated
[  458.076479][T19804] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:32 executing program 2:
r0 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x1, 0x40000)
ioctl$LOOP_CLR_FD(r0, 0x4c01)
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$TIOCLINUX6(r1, 0x541c, &(0x7f0000000080)={0x6, 0x3f})
ioctl$KVM_XEN_HVM_CONFIG(r3, 0x4038ae7a, &(0x7f00000001c0)={0x9, 0xaff, &(0x7f00000000c0)="2b7dba32eeaacf5e87d0461c69da06b00e7043107963acbed9e78b76e35ecedd971dc62c8c70aeb6ab36c14b250169b2813c688886ab3f78468f8b7c1b83e93da0c630d74013eac020af43e8db6b8979f835d087cae598dafcfb8bde543fed9f79758b09a4d047caf43b5af4a46921401fafc0a1a80d451eaabf82cad1229b48b53d90b8", &(0x7f0000000180)="91e6eecae9bae6089d35a6", 0x84, 0xb})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$vfio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x40000, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x7)

10:55:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x600, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:33 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:33 executing program 5:
syz_read_part_table(0x4c04, 0x7400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r2, 0x409, 0x4)
r3 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x80, 0x2)
ioctl$EVIOCGABS20(r3, 0x80184560, &(0x7f0000000040)=""/64)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
syz_mount_image$hfs(&(0x7f0000000080)='hfs\x00', &(0x7f0000000140)='./file0\x00', 0x5, 0x1, &(0x7f0000000180)=[{&(0x7f0000000380)="8a4ff00f3c7aefe536e491b0878dddfe858149d0de9ce68dbb8abb7c5ccd1df10bd35f59443aa8422e8978ccfa7f12a517fb3c3d5f51e2372c76d687a3aa2998ff0996bf23412e4fee91631a0360326d658ae42cb0ac50550e5fae553c838e247b3b06b8b6c6874ee59daf1de9d06682856efcb7f3ed0210e6a63c4f25723af02c005ab581235f299cd7226c3503a8607758d21a1d098ec3550489b6731f1cd9a19f31db99f69c0bda", 0xa9, 0x2}], 0x800000, &(0x7f00000004c0)={[{@part={'part', 0x3d, 0x8}}, {@creator={'creator', 0x3d, "5b8f37fa"}}, {@codepage={'codepage', 0x3d, 'cp852'}}, {@creator={'creator', 0x3d, "5b85a5f9"}}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}], [{@obj_user={'obj_user', 0x3d, '/dev/amidi#\x00'}}, {@obj_role={'obj_role', 0x3d, ']\'\x8c@wlan1'}}, {@fsname={'fsname'}}, {@uid_gt={'uid>', r4}}, {@fsuuid={'fsuuid', 0x3d, {[0x77, 0x65, 0x37, 0x7b, 0x73, 0x0, 0x77, 0x30], 0x2d, [0x38, 0x0, 0x33, 0x77], 0x2d, [0x39, 0x35, 0x77, 0x67], 0x2d, [0x77, 0x67, 0x3e, 0x30], 0x2d, [0x31, 0x0, 0x62, 0x64, 0x7d, 0x38, 0x0, 0x66]}}}, {@appraise='appraise'}]})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:33 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  458.391619][T19816] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x700, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  458.631508][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:33 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000080)={0x2, 0x200, 0x555d3466, 0x5, <r2=>0x0}, &(0x7f00000000c0)=0x10)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000100)={r2, 0x72692173}, 0x8)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  458.778735][T19839] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  458.802033][T19825] hfs: unable to change iocharset
[  458.861955][T19825] hfs: unable to parse mount options
10:55:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xa00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  458.911552][T19827] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  458.943903][T19827] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:33 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  458.983669][T19827]  loop0: p1
[  458.987332][T19827] loop0: p1 size 2047 extends beyond EOD, truncated
[  459.079753][T19834] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  459.120158][T19847] hfs: can't find a HFS filesystem on dev loop1
[  459.126649][T19834] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  459.158340][T19834]  loop5: p1
[  459.186454][T19834] loop5: p1 size 2047 extends beyond EOD, truncated
[  459.218918][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xe00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$VT_GETSTATE(r2, 0x5603, &(0x7f0000000040)={0x7fff, 0x6, 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:34 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:34 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = shmget$private(0x0, 0x3000, 0x1430, &(0x7f0000ff3000/0x3000)=nil)
shmat(r4, &(0x7f0000ff8000/0x3000)=nil, 0x2000)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:34 executing program 5:
syz_read_part_table(0x4c04, 0x7500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x2, 0x2)
ioctl$EVIOCGPROP(r3, 0x80404509, &(0x7f0000000380)=""/85)
prctl$PR_CAP_AMBIENT(0x2f, 0x5d4bdf5af0df8577, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200000, 0x0)
getdents(r4, &(0x7f0000000140)=""/162, 0xa2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  459.813854][T19869] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  459.843302][T19869] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x2000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  459.899559][T19869]  loop0: p1
10:55:34 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vfio/vfio\x00', 0x200000, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$VIDIOC_DECODER_CMD(r0, 0xc0485660, &(0x7f0000000080)={0x792cfb37b27bfcdd, 0x1, @raw_data=[0x7, 0x6b, 0x1934, 0x1, 0x9, 0x1, 0x80, 0x400, 0x41, 0x80000000, 0x2, 0x8, 0xdf, 0xaad, 0xfffffffffffffffa, 0x100000001]})

[  459.922697][T19869] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:34 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3a02, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:34 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  460.102000][T19874] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  460.210253][T19874] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  460.224327][T19874]  loop5: p1
[  460.263727][T19874] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3f00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:35 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000080)={'icmp\x00'}, &(0x7f00000000c0)=0x1e)

10:55:35 executing program 5:
syz_read_part_table(0x4c04, 0x7600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  460.501073][T19913] validate_nla: 5 callbacks suppressed
[  460.501083][T19913] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  460.529087][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  460.719539][T19907] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  460.755325][T19907] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  460.778972][T19907]  loop0: p1
10:55:35 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_rose_SIOCRSCLRRT(r0, 0x89e4)

[  460.802744][T19907] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:35 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  461.029517][T19936] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  461.039596][T19922] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  461.092008][T19922] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  461.130243][T19922]  loop5: p1
10:55:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000400)='/proc/capi/capi20\x00', 0x80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x101000, 0x0)
ioctl$TCGETS2(r4, 0x802c542a, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x2]})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r2, 0xc08c5334, &(0x7f0000000580)={0x200, 0x100, 0x5, 'queue1\x00', 0x8})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000440)=ANY=[@ANYRES32=<r5=>0x0, @ANYBLOB="1f00636f70c3ad5e73e955beef31b1b2c703006a8300000600"], &(0x7f0000000140)=0xe)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000480)='TIPC\x00')
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000540)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x9000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r6, 0x300, 0x70bd29, 0x25dfdbff, {}, ["", "", "", ""]}, 0x1c}}, 0x4000080)
listen(r2, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000380)={r5, 0x78, &(0x7f0000000640)=[@in6={0xa, 0x4e21, 0x4, @rand_addr="fced9888883077a4ca65c0b825880f1e", 0xfffffffffffffa14}, @in={0x2, 0x4e23, @multicast2}, @in={0x2, 0x4e22, @multicast2}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e22, 0x2, @remote, 0x1f}, @in={0x2, 0x4e23, @remote}]}, &(0x7f00000003c0)=0x10)

10:55:35 executing program 2:
openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x60, 0x0, 0x0)

[  461.181927][T19922] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:36 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4800, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  461.408009][T19952] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  461.421182][T19941] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  461.446847][T19941] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:36 executing program 5:
syz_read_part_table(0x4c04, 0x7700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  461.476494][T19941]  loop0: p1
[  461.507751][T19941] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4c00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  461.582784][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:36 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x48fd, 0x400000)

[  461.826510][T19972] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:36 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:36 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  462.042416][T19968] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  462.070732][T19968] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  462.092192][T19968]  loop5: p1
[  462.110594][T19968] loop5: p1 size 2047 extends beyond EOD, truncated
[  462.183415][T19990] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  462.225008][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  462.230881][T19977] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6800, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:37 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x5, 0x0)
syz_kvm_setup_cpu$x86(r0, r0, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  462.305353][T19977] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:37 executing program 1:
r0 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x80000)
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000080)={0x1000, 0x0, 0x7ff, 0x10001, 0x7, 0x65b08036, 0xd82, 0xe2a0, 0x7, 0x9, 0x200000000000}, 0xb)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  462.356605][T19977]  loop0: p1
10:55:37 executing program 5:
syz_read_part_table(0x4c04, 0x7800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  462.390403][T19977] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:37 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  462.537679][T20000] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:37 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6c00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:37 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000080)={<r3=>0x0, 0x9, 0x40d, 0x5, 0xaa}, &(0x7f00000000c0)=0x14)
ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f0000000140))
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000100)={r3, 0x40000000}, 0x8)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  462.709446][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  462.850994][T20004] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  462.896319][T20004] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  462.910651][T20022] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:37 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  462.946082][T20004]  loop5: p1
[  462.974290][T20004] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7400, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:37 executing program 5:
syz_read_part_table(0x4c04, 0x7900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  463.273783][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  463.281167][T20024] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:38 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syncfs(r3)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  463.333121][T20039] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  463.351404][T20024] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  463.418788][T20024]  loop0: p1
[  463.442398][T20024] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:38 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7a00, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
r3 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7, 0x10940)
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:38 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x8f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:38 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:55:38 executing program 2:
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f0000000100)=@add_del={0x2, &(0x7f00000000c0)='irlan0\x00'})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x20002, 0x0)
sync_file_range(0xffffffffffffffff, 0x6, 0x6000000000, 0x6)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe2000/0x18000)=nil, 0x0, 0x199, 0x5, 0x0, 0x0)

[  463.766209][T20046] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:38 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  463.816176][T20046] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  463.854825][T20046]  loop5: p1
[  463.884193][T20046] loop5: p1 size 2047 extends beyond EOD, truncated
[  464.081620][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:38 executing program 5:
syz_read_part_table(0x4c04, 0x7a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0xfffffffffffffffa, 0x0)
ioctl$BLKPG(r3, 0x1269, &(0x7f0000000140)={0x16, 0xfffffffffffffffd, 0x69, &(0x7f0000000040)="f7432021fa626f22251bd13ca168bec3c5322ef2ac6686bfa5286a113023bd4cf3c87cc1bfbe509d2b00e68ab444a32ee59330738f262f71df2bcdbc57ea49935225c7f24582a8940cf895493258c145883804b00bc62a7453e0bd71be0993008975125ecb944d8e2c"})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  464.141606][T20082] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  464.176129][T20068] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x30000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  464.210890][T20068] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  464.248040][T20068]  loop0: p1
[  464.297904][T20068] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:39 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$x25(r0, &(0x7f0000000080)={0x9, @remote={[], 0x0}}, 0x12)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f00000000c0)=0x3, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:39 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  464.383830][T20090] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x34000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:39 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x400300, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  464.721030][T20092] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x8)
sendmsg$inet(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000380)="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", 0xfa}, {&(0x7f0000000040)="2d85dc8a2ce1d944db0f0f477941d15309633a6081ca66389178f3584c183167bbc59d32383be2f60ff86df24ab3270d2f0074fe58b85574626cdf2cc971d9f900", 0x41}], 0x2}, 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  464.799460][T20092] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  464.874680][T20092]  loop5: p1
10:55:39 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000080)={0x68000000, 0x47, 0x13})
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  464.902280][T20092] loop5: p1 size 2047 extends beyond EOD, truncated
[  464.966332][T20107] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  465.028676][T20107] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  465.068559][T20107]  loop0: p1
10:55:39 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r3 = socket$inet_tcp(0x2, 0x3, 0x6)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  465.083994][T20107] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf0ffff, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:39 executing program 5:
syz_read_part_table(0x4c04, 0x7b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:40 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:40 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000080)=0x3ff)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = syz_open_dev$sndpcmc(&(0x7f00000004c0)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x101000)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r3, 0x84, 0x74, &(0x7f0000000500)=""/177, &(0x7f00000005c0)=0xb1)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  465.379311][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x1000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  465.671230][T20138] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  465.697874][T20138] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:40 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$rose(r0, &(0x7f0000000080)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c)
sendmsg$alg(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000000c0)="cc1681dfe89e9a5cbda0a2a3f0138177499f7facd9291cab1c3b5ddd67be82c472d0efd5be6e66b8541c941253acc382fb54c8c673e38ece62042e0cdf6b4b78a93a39491208e4a9d1f1000c5ded1d650071f03650cb363542ddab04", 0x5c}, {&(0x7f0000000140)="6f3ede27f79875c795403faf5a9b5a74f1bff3ac3e381a1f69457ccbda52273c931d57ca36669adfa6e284197d6fa4a1a99dd441e4479e3d9874e24a77c00c6ba33b34f52ba66266a6124941053c7890ca8d4649cf8620714e71de7a19315284f2d1033c84a12a5aec215aa89052dd5cf378db8a02d811238bcb1aa816b5500548a7936274cb81082e9a92b046cdf9c8945479a20d64e41173e45dce609733d95b3f8c9367b724d803aab867e97f7dc28859dbf6705a728edcb13beac6085c30f1ec7128be4d76b0d4", 0xc9}, {&(0x7f0000000240)="fce1e475a9137872dc1c86da36111a5dbbfd971751355284487d67", 0x1b}, {&(0x7f0000000280)="5d8feb75ea5f4355339b50549a84a2b195223696a79fc02225317dd848c1c1cb5cdc9c2179603c5ba941b307ee3a73883333886a67f9241924b2a962aef824e38d208af8e28271aa0149789d285660130da59a16c03ed6d70450b2d79c03ab0a5bd47f602bceb128de5bafe57d565b25d50827f5223edadabe4e9fae8d0e644d13589b35cc7ceba3fd1c1e412a0700bd1f8e7a5eb54ac94028aa2c49469f88eaaf", 0xa1}, {&(0x7f0000000340)="4f86a2cc908a38e35629dcffb6d7bdcc60c86ad96c7be35739799f7fb4ad0ab773b8e0229a5e121c1a6fb198b6ad8d109349469b5a502c1e05e6242e214a70a65586cd474cee013e73fc7d2bb26f33497e89256b327948d8a1d407e3e58c656640eb1f1c07687f8d6bea70ec69d45bd413472c59d61283eeeef6414354381249171fe860a2d10ba6f4f3ddfc283a435aa33dd30d4b7e00226ea78e901c4686352ee9f479e1ea268cf07d5b281199fff6445a2babe34a5b8081d228511419038733253f48c83aa07d0ed14588b660b8c42a9b0d", 0xd3}, {&(0x7f0000000440)="f325ad12969ad52fa4816a14fdcd87fd87bacdf754e019edabc372609a426e3483b821d1e985d79dfe1fff5ee79e810df2ca86de136a3526d3243ff3c2d7c1bb309a4afd3b2640bc14355c2b55b0223c0204c887ea7df9cddf5c3c6589e45e1fff3d7706910c4046006a6c87c222265d293d4291b13fd637ffc0ac9d2e60a9c1b98347a1970fdbf93c2d1112de9f0e3fde2de915b864b1462498409c2bacb06f1fa3656e9528545253d9969ba00750476df57dcaa87d2d1a416f7a090c5a88611f8156c9f2e618251b28d04d504c7f279a86fda4b8", 0xd5}], 0x6, &(0x7f00000005c0)=[@iv={0x1018, 0x117, 0x2, 0x1000, "801f47fe29688e45881eb8b8fd0fea5687af5e46349ff6052483bd734aafab27f348647a4513e93fcf9da2645281322566f6b7d203dde25f209bc9cd5d9a0b7b8f2d2280306035b2f2dae101a4e68d45e30a9b8ce6d1ab0f81e4f62b71b3be5dd636ebee34e48ece32e96e3fb487fef3f11ba03371a1aef0a522112e68b13673370614ffc2ea8f122cd4fed69503abd9270987017c602a4477c4b19bbba4b6b535c7eacd52a66fddca7c6152ef0b4f474f6abeeae2a410ac23a14de798c59df57ceb4a1af29717a689946c12bbfe975120bec60bc28c3a1317064bd6e162e723dd36fb587d6573dba1f9c9c79ec196f5475059488aa0937dd4f5a5554b6e99b1f5b983c5c7ff3c5b04889e36533f84096c9c27af7db7d378b574878c14d2223182e08671ca238ded4667d7f68694c7cb1054eb3685eb07dd1dccc5dca8ad256ff8734235d3254b89eeb1b8105492c8f570080e0ca6bd50b30d1bec7a019a2ae8718feee6e867527d37d2f80f2ef9e7e49d1efe268fb2f36013bb9fcef878b19a01826b7627964ec0873ff740d2ea1c4a71048d12867cb786660deeeb8159750b736a77bb843581fb2dfc9b4f99daa4159cd449f7bf1c2d4df135b18826134b420a262b7a1b7cee0de849e209fcce22c84b2d0e861cf65f9e90078e3af1183afcdb051ce50bff0341a5234792d74ccf6fe5005c5881bba7048de1d001c75f6d3423a7fa1a010de73515e4d09f927880ac8f95c7c3a4f4e95113683ae45aec7f2035194d96cf211c420edec9dae0ed68bdd28931cddfbfa05895c395f137f50ed1d76adc4d560642d0d003e4ebf8d07e72c044f369d05a23f042979f905372df4914b70738743402d8d2c5d3e98aebf0b198d0d62385de6c7701f54643bfda20db2d0199433978f1c2fdb520f2502a9d1890b8556e5309f66f5b510d55dbde65ab779484be72bc2eaa61470e92d20f9e59160ef75d8c304403e024270d0258387b4b88c27edc4eea5f376074650f25063c5daa599d1bc96d9430fa774abb334259ce602cd070ac098c738edd243d9cf162066206994635447b0556bf03378d010537d0cdaefef1997280ef33bf0c16a7bc9ee292ddbf12b90bd662cb6964306efd98daafb95abb9a73e5807bf5e2f13da0defb240f230934334959b5aa3dc81146f4cde2ae33529b42525f8a33b3cdea562230b266ede98417c675592f5a9282732b440abb690db52779e0cdf2d0d77c4ce63b6784ef48adb84d5a52e7bcac1d73921e41a04713ccb2ded8ebccd787a5302f19381e2f41550e8ec392c9a0759a958bd2ee28949f93e420146161e8a4d3d6b486a02b7bc36f3bc54dc20f2dfdf70fe904f4dfc5dfae7cd5d8345607ea3cd59a4aaf5230cfaffe1bd62f6dddc0bf07bfc8208034698af5d3273a4a35d77db45d5c72b34c28326f9a617a5f7db3a865cc7d1d8acec8317177a1a558dddca39ed981c78ccb2c3f8aa731775ad25858b1e3c95cae5aae1fa254b96cc83887f8b92aa760ccb0ba5a2b7a74ba6c0e1cee19a5fbe12f0f264bda5791ec8df60c37f6465126636ada5729242260529320010efe1d4ab474d51e99fb9714eca8db3e1108f307aeb0535ec990b3c528df4ff8b16533d236a60c8bbb97163432d5246af0fcc4eb2160e86b627673ca22c2e6587c9b0c668e257212261273af8b991ee75bda7f3cbe83b790d67bc0a5b5d4c8ede78dbbbf155f7d9b410198374cfb1eae8fe0bf287abe3156af711c1cf43027c56ad7338ee8ca2192adb43bc87f987ad850bf1437748a2ad9e647e07d16289a83f548e21ae46f7bd293b7a8f44d6e1c0dbf73c3dba9bb13cb11969faea8b01657ee269cffa4dbb68c76ea1c97877fd995b65b3c677878c7424f9ccc0427fb7ae0c71a5677d179b947cdba5898f809007ff47bac94276553a150301694231af8116ec613ff2554034dd81858e26d683add9ff091fa09c62ee0f5fcc700791c16d8d6ebb8ac62694ac644490ba9a7191df0d6ad8a43f540da40d4154dc172fae66b5ebddf731f74fb2bbec101a77df0ad3d7aac4d735478a989d89b6ca3091d1b92139fe43aa6cc38de09b649b2758d5014d322f440af5e0c36e99b537ff3f9189141ad22606f8d8ae434885de9f47bd558f5831052be2a202f2171470468f432106423ae3dcc141e0ef9faa94265bafc70377ce90d95a7dfb698e17ab8224a652bf6c368a3a089698fa1eacbf5b593edebf239d6ee2f748ab5a74c198974473ee1547f7cbd9be203bd1577d71639ff792f3e248c09c4faab29e12f35b715abb2654b72983763ef96c519f1d66f7200be96ebef8ea0cb51938df40a90b2b5c5c1ecc0694d3f54b7e6d035ae688f390015d0027e4c855d1cc37641b80477b7c4083696d28fb9521b8bb4976501dab87e32dcb1afe443ddfacb244fe121533b9ef1bb3b97f702e72a9643856fb0584be45c2d9a06a792eaf92a016ebc7c7192c585027a07f42be6bbe9c8cd00d086551863088e069943c057f9ec5aa8537fabdad351f301e99e77303c46429420d29e86dc8eeae45f6dc084a4f48ab99f5e162ea7e3fef33cff6c134320b83018c6b340f9f40cb6ebe261d2df1801bd06bf26dd5957c325c7beb950063769e3159921ef208ea169b7f147c5bbe904f6f4ed3fd4826f77203e717940cd3fe08a24822531b871d90f4d42f276bba85cb8a07f1f8858adbd87ee327b81dd0a7810a117318e5a7747fcd0c6b81cfa356d01b3908ab4e1dcea59f51efe166391319951fd80b744fdb14267b61ea6bddbe5aef925f5b090a0a3c5af0998e147a43da7c38ebc767b91accc9101c9150a8b404c702a7561bd331953b30afc35bf6f4b7a65248bafb55cb0044aea6bc1fbbede1ac142813b83c2c66d79b8b8bc82b7ad5c50d16f58184dfe41753e1620ba14e2ae372af0ba19f02ece1e0539f963aeabd36c15eb66427b06f333eb5d794a2dbc0cb00cc0ccd23aa22e165b6febb614a15ea6fb3afb354edad37785e9d98027a8b0e87d8d54ff85b14fa6830565d4b5e4ad385aa83b45baeb612ed41958f765205a4246cd8a5daf3441b2eecb5b065c9327ae55130c744ae693761da7063685569299165f7070aff7c4b96ca8bbda10ad4418ec8f03e31f017763ba18aa4045c0675067a8321c8f6f4a79caa6b56bd6cdbc1d6b25b3467b9032667a5a2c6f3baecd5978547d623cfafa0ce6b9afe53f3aa8dba92a8a31c0b165d91126c0ac012750f11de994e54b2e3fbe9d05f6759323dff57ac0b3183572aab157b383e1d198ceaf8b6f611453e5f6445c68ad6440849307820f4ce7b4f7d66108ff63fad16b2745feda7169bd82fb1f19a64742182d8d92052424d560403b71d7b269d811bdf5de52d60e4d2950c472efb62520c2bcc98386046ae2ea6911bc6707aa5a5e6f840c4e884f1f43ad27609ae85c79af953921f687c67f6965202413c0ab74071a9ae6d4336c643770ae522f6ead3da0686b2bbb0580fe1118aeb5013163a5de06a23257c012735a403fe8ddfae6ea20cfe5ea769861a3f69fbd8c6b40615ec88f6e3c3df47d6004027e65e2fc3836e74c4fe48b07aef5aa39cbc0c403b3e55341ed39665d0c671c19a683d8288a51dd9a794d72d52d91968d96f5dd43c2d25b421d05ea2a5154bbfb22b34938fa271f795c5d6b02ebf2c01f77f70d717339a48cf4bd7ce4cc7f0007abe05d3ebfd2464cd14cd0ad8fcd19c1cde58adaa2052032efcf1440a8e69bcebaf429943520856d0dc64eaaee5b4c6ac5038910713a0271f3f373401d5b11b88817f5606a590632db99f7b5cbcb2537e113be14328936bb4646e1c3590021987b7c94ff77bf1566c19521d068bb3e0be8333b09efd5e65050e9b90f0505b060bf31bb670619898c3efcda9305cc5ebc6e140135f14b0a7b112bb701f610d83852ab58c646bef1ef3ec44f4968c84697789c0ce833bd8c7ae66543fb775eec6ef2376880ddc3929759dac86a402b68937d619c8268cf1245eae0f6a4f2bd01e006609c93af99a0185f892b9d71cce4ee629c0e75a736d6ecd3d5b2e96427edbb2c5db1bd57b3734d689ee807158c3066e1bc071deac0fa963dee356592dafc58806aeb8150362900286990c759de59467f11a7ad7606b9541d9936afbe414042ae226b3674b1bf96787602bf28d152e7199116595b3cc42e78da73681e884d2156fbba05574ab7c34e4c6b0698ba415d09532efdd7887c0a45136b2f1e920b037dd7ea6129b291afd4d7ee24f2ef6fc11c273966c164880e988d852ab24979861c09fc5eafa1e1449c08b27d806075f95c656c033b4ed88cd612f7bcaea038f4e9a80bb926d326f8a5a16bc3fa89779a24f469cc25bcc934cab19adadd9b6ba87c5a5c836c889ff72f61795748e85cbf6d72a1fef177280e549c7da9fd75cf6253449947ac8f8225d15edd60de0e60b97bf16064a2aaf46186cefbf46e31a6d7e9b9e4926ec85a74e4afc362f62968924d5daeae54ac7846051294e11b14da7bfac949a1d5958015b2889b21a27f61b73abc93df6f193eb353f55acf3e28d9fdc777cfd52ba288967a49880336374a1a06e1d65d0b777da793628d13ed3488fc5133e8631e5df68ad193be598b6afdd10606e75b9b2c2385a347180c7f03a8f7d91187a3bfc79763a7904351f5d8805b9ada1e2fe8e65d288a7ecb0c7ea2f8f175f165e3c251b49921f7e36077ecab202825b1fa8e0c2477e15fb171c9aae936ccdf5b6fe5af480831a444a0a73c57d9bc7e904ece7704b023e66270682120ae6bc538e7bce36767d3a4e6e671440d48ff5f2ccc043809688b145a55bfca7c53f1e4713d2835424d3b4f393c1fd6c52338863c4c62810d4554da54b51ff80a6ef3eaf05e47f5c4d8cf30af06adff033c18093ff1d8ab8153eb64710049903a8d15eb79eb92e366a6513cfc705b6f8fbbbace94b9952638c685afae1bde328fcb85f26326933478a511232ae6f2467a080df9e15e6ad7b1132407437d9bccadabf3723d5b0d5bc29cfca60740ded1eac288ef6be3e084f60f3e1bf962da43f9d75654e075799fa9ab74f58464c6c0ff0245a4ef3c6b3f5cfaad8d2701f283f029f81386dbac20bcf84ed083a461386c065d05451dd46dbde196b7cef7e921c374e3b9dc3fefb0bca0b9d564e3d0de1b7d14d7c97436956f3d79ca609486a939f6f00a1853a02b31af0af7d854de3665a0485bb197faf2690cfed62a16d88b7f417d9509a8d501783ca6cd319d9e7cb777e094e8e2d6700419754dd9ad7b7d625680b150eb805ad153b2c8c5500eaa49b67e76501c958745ed754d306ba2014679749e600382ef9a1c754812a54446c5dd2833a0b7d30c7b7db7a50546fbccc275d2579bb6f4eaed649cbf29e5fcfd84e8688751ad754b0e169156754569b8cfb23958c49685681a7059c61e2f9a255d00b82cb1ecedf7473c0e010971984ebc51352d080d9962ca2d8d6be7b26cef54f730df6f2208cfa5604067dc02a809304518e5a905e56cd16571da08c4cf6a7c5d4f01e8c5264cd8471f85e1e285c9d0916f79ba8bc5ea2f91355d2ad78132ca621ba204a75fc4a2130ebc69a2ffc76c3180a3ca964742fb9bb04376d15230653bbf0de3d820d9b29b23093e9abebf2b223d197ba5c53dd7d7be5c334bf288c562b5ad7e54248ac25d680d1d841b8bfe3b9bf0b47951d8d4813cae8a504267247fffb0ebc2858f35eff7cafe329d4eb5b8c81992e8ac98e54bae67abb345fe08da7e11497362763ed8c80ebf7375378a99"}], 0x1018}, 0x800)

10:55:40 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  465.724684][T20138]  loop0: p1
[  465.730964][T20139] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  465.751977][T20138] loop0: p1 size 2047 extends beyond EOD, truncated
[  465.758870][T20155] validate_nla: 3 callbacks suppressed
[  465.758879][T20155] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  465.803449][T20139] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  465.842461][T20139]  loop5: p1
[  465.849653][T20139] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:40 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x1020000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  466.086146][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:40 executing program 5:
syz_read_part_table(0x4c04, 0x7c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  466.166608][T20169] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:41 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x2000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:41 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$VIDIOC_RESERVED(r0, 0x5601, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  466.497005][T20185] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  466.550978][T20167] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f0000000000)={0xcb, &(0x7f0000000380)=""/203})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xff, 0xfffffffffffffffe], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x82800, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000480)={<r4=>0x0, 0xd7, "c5cf5c3ca293cf0be82e8dfcfe25b9597a0bd7ac3962cf0746952f6c7a6c574c55aa54fd5347d9f16c36ad46672b9817cf6fdc52a9cb8a5eb8a45472d61a85612580e9bacf174358a368ab2dd6a226c4589dbcae4e40c2a446fb1f615c12b100ce4cd5ff93a8bc440d2e6d694697b12d0264edf0ec0e40e12ca9e12867a3170cae5706b17cbfaa4ce7449cba33d9ebfa3f8ba3b834fa6f5bf15a02af2ab13d15e4530a1460e8d5fde9a0cf6120aa94a38a735678b14861a5df8f6e6d9c8dad313cf253e42e40bbf954306738cd9f76e0ebaa5f5387e0a9"}, &(0x7f0000000080)=0xdf)
getsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000140)={r4, 0x2}, &(0x7f0000000180)=0x8)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r3, 0x84, 0x74, &(0x7f0000000580)=""/79, &(0x7f00000001c0)=0x4f)

10:55:41 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  466.597168][T20167] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  466.648996][T20167]  loop0: p1
[  466.653173][T20175] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  466.695237][T20167] loop0: p1 size 2047 extends beyond EOD, truncated
[  466.705801][T20175] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  466.741978][T20175]  loop5: p1
[  466.760358][T20175] loop5: p1 size 2047 extends beyond EOD, truncated
[  466.800874][T20197] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:41 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:41 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:41 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:41 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket$bt_hidp(0x1f, 0x3, 0x6)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000080))

10:55:41 executing program 5:
syz_read_part_table(0x4c04, 0x7d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  467.065914][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  467.181445][T20210] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x5000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:42 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  467.370332][T20211] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  467.410195][T20211] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  467.433332][T20211]  loop0: p1
[  467.436929][T20211] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:42 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0xfffffffffffffffe)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  467.544524][T20232] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  467.661526][T20227] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
r3 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x78, 0x2000)
fstat(r3, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x100, 0x80)
setsockopt$inet6_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000180), 0x4)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  467.705997][T20227] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:42 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  467.765504][T20227]  loop5: p1
[  467.769045][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  467.789440][T20227] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:42 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0xfffffffffffffff9, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:42 executing program 5:
syz_read_part_table(0x4c04, 0x7e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  468.000190][T20255] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:42 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000140)='/dev/nbd#\x00', 0x0, 0x420000)
ioctl$NBD_CLEAR_SOCK(r2, 0xab04)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = creat(&(0x7f0000000080)='./file0\x00', 0x30)
ioctl$TIOCSSERIAL(r4, 0x541f, &(0x7f0000000380)={0x0, 0x800, 0x0, 0x40, 0x91, 0x4, 0x401, 0x1, 0x7f, 0x2, 0x9, 0x9, 0xffff, 0x0, &(0x7f0000000180)=""/35, 0x81, 0x100, 0x6b1b})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x400, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x2, 0x4, 0x1000, &(0x7f0000015000/0x1000)=nil})
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f0000000780))
ioctl$RNDZAPENTCNT(r5, 0x5204, &(0x7f0000000040)=0xffffffffffffffed)

[  468.320516][T20253] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:43 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000080)='/dev/kvm\x00', 0x0, r2)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  468.373861][T20253] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  468.385119][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  468.451022][T20253]  loop0: p1
[  468.454636][T20253] loop0: p1 size 2047 extends beyond EOD, truncated
[  468.546753][T20278] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  468.592764][T20267] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:43 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  468.658632][T20267] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xa000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  468.716030][T20267]  loop5: p1
10:55:43 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  468.742723][T20267] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:43 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/exec\x00', 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  469.017679][T20294] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  469.065681][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:43 executing program 5:
syz_read_part_table(0x4c04, 0x7f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xe000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fanotify_mark(r2, 0x8a, 0x10, r2, &(0x7f0000000080)='./file0\x00')
ioctl$KVM_NMI(r3, 0xae9a)
inotify_init()
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:44 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  469.390401][T20298] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  469.411893][T20312] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  469.459934][T20298] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:44 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video36\x00', 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0xc5, 0x9, 0xc62a, "62dbc1a9a2140959c0c4feccdbbd29679dae55c6964cb1fb6859b0b25a9888152730a854898ccefccacd34c9f0a08d5ece1dbfee090f24fe086bd6c867ae82f969d2fb71e728e2d2944a57dba5e832ac26432807181793d326519ce354fd657fe2c87a882921e6cd805ed3af12ad5eb6e57f030204cfbb1ab0c88ce1fef87b8d1272a3450511fa1a4ff2a44bd5d59f9bd70865c9fafe631c6459ac0c074e461681f65fd601433e6c5088954e7247050fcb0daf698ba2e4c485806d7cfd58c09408d40bb2e6"})
ioctl$KVM_NMI(r3, 0xae9a)

10:55:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  469.540351][T20298]  loop0: p1
[  469.543959][T20298] loop0: p1 size 2047 extends beyond EOD, truncated
[  469.560951][T20309] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  469.596072][T20309] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  469.637009][T20309]  loop5: p1
[  469.654500][T20309] loop5: p1 size 2047 extends beyond EOD, truncated
[  469.797413][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:44 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x20000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000380)={{{@in=@initdev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@loopback}}, &(0x7f0000000000)=0xe8)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000480)={{{@in=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@dev}, 0x0, @in=@multicast2}}, &(0x7f0000000040)=0xe8)
r5 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000005c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r5, 0x40045532, &(0x7f0000000600)=0x9)
stat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x40000, 0x0)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r7, 0x84, 0x8, &(0x7f0000000580)=0x200, 0x4)
setresuid(r3, r4, r6)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:44 executing program 5:
syz_read_part_table(0x4c04, 0x8100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:44 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x800004000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3a020000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:44 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  470.280753][T20338] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  470.336317][T20338] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf002, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:45 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000080)={0x0, 0x3, 0x7b93, 0x1, <r4=>0x0}, &(0x7f00000000c0)=0x10)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={r4, 0x3, 0x1, 0x8, 0x1, 0x6}, &(0x7f0000000140)=0x14)
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000180)='sit0\x00')
ioctl$KDMKTONE(r0, 0x4b30, 0x0)

10:55:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3f000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  470.382851][T20338]  loop0: p1
[  470.401146][T20338] loop0: p1 size 2047 extends beyond EOD, truncated
[  470.410832][T20346] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  470.419818][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  470.473409][T20346] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  470.484720][T20346]  loop5: p1
[  470.497164][T20346] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:45 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x40000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:45 executing program 5:
syz_read_part_table(0x4c04, 0x8200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:45 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000080)={[0x8001, 0x30b, 0xffff, 0x9, 0x0, 0x2, 0xfffffffffffff001, 0xb9, 0x80000000000000, 0xffffffffffff5d81, 0x8000, 0x1ff, 0x4, 0x1, 0x7fff, 0x2], 0x1f000, 0x800})

[  470.917789][T20382] validate_nla: 4 callbacks suppressed
[  470.917800][T20382] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x100000000001, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/fib_trie\x00')
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x300, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000380)={{{@in=@loopback, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@dev}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, <r5=>0x0}, &(0x7f0000000140)=0xc)
write$P9_RGETATTR(r3, &(0x7f0000000480)={0xa0, 0x19, 0x1, {0x10, {0x2, 0x1, 0x2}, 0x8, r4, r5, 0x1, 0x0, 0x100000000, 0x7fff, 0x4, 0x1490, 0x3ff, 0x401, 0x400, 0x400, 0x4, 0x8001, 0x9ca6, 0x0, 0x80000001}}, 0xa0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_NMI(r7, 0xae9a)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r7, 0xae80, 0x0)

10:55:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x48000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  471.140968][T20376] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:45 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  471.197314][T20376] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  471.240054][T20383] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  471.268390][T20376]  loop0: p1
10:55:46 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000080)=0x5)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  471.305002][T20376] loop0: p1 size 2047 extends beyond EOD, truncated
[  471.324735][T20383] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  471.372079][T20400] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  471.406936][T20383]  loop5: p1
[  471.417645][T20383] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4c000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  471.487412][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:46 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x400000000000)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = socket$inet(0x2, 0x80001, 0x400)
getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000000)={<r4=>0x0, 0x2}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000080)={r4, 0x0, 0xd9, 0x1f, 0x3, 0xd32}, 0x14)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  471.711423][T20418] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:46 executing program 5:
syz_read_part_table(0x4c04, 0x8300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x60000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:46 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uhid\x00', 0x0, 0x0)
write$UHID_INPUT2(r3, &(0x7f0000000080)={0xc, 0x15, "af7827616c789c800069ccb73424d4f420ca5efd71"}, 0x1b)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x18200, 0x0)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000140)=""/129)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  472.061433][T20425] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  472.076474][T20438] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  472.087660][T20425] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:46 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000080)={<r4=>0x0, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, [0x7, 0x3, 0xffffffffffffffff, 0x401, 0x9, 0x9, 0x0, 0x800, 0x0, 0x6, 0x9, 0xfff, 0x0, 0x2e, 0x120000000000000]}, &(0x7f0000000180)=0x100)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000001c0)={0x6, 0x0, 0x100000001, 0xa374, r4}, 0x10)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  472.131510][T20425]  loop0: p1
[  472.147351][T20425] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:47 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x68000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:47 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  472.360587][T20440] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  472.410218][T20440] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  472.457386][T20440]  loop5: p1
[  472.477780][T20440] loop5: p1 size 2047 extends beyond EOD, truncated
[  472.487978][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  472.538960][T20459] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$RTC_IRQP_SET(r3, 0x4008700c, 0x104c)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000040))

10:55:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6c000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:47 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000080)={<r4=>0x0, @in={{0x2, 0x4e22, @local}}, 0x5, 0x2, 0xd91, 0x6, 0x9}, &(0x7f0000000140)=0x98)
read$FUSE(r0, &(0x7f00000002c0), 0x1000)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000180)={0x8, 0x8a, 0x4, 0x8001, 0x0, 0x5b, 0x5, 0xfffffffffffffffd, r4}, 0x20)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in6={{0xa, 0x4e24, 0x2, @empty, 0x10000}}, 0x0, 0x3, 0x0, "72ebcd7aaed25ee142e2846b44d3279b9117fcbdd332f6851a7288c0cb02ea4e960cc5e0d6e6a555c17cf5ac314bf2b9526370605a2b7da6f32ef0f9e34a865d6b6fdfefe040ffbffde0ed183e3ef6d8"}, 0xd8)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:47 executing program 5:
syz_read_part_table(0x4c04, 0x8400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  472.924027][T20482] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  472.949694][T20468] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x74000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  473.127411][T20468] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  473.151741][T20481] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  473.154951][T20468]  loop0: p1
[  473.190131][T20481] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  473.206191][T20468] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:48 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
setxattr$security_selinux(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='security.selinux\x00', &(0x7f0000000280)='system_u:object_r:systemd_notify_exec_t:s0\x00', 0x2b, 0x2)
getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={<r2=>0x0, 0x101}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000100)=ANY=[@ANYRES32=r2, @ANYBLOB="2d000000be1be3bb6678c84b141ed43aa8d77e3c383973289a813ff9591c91307fed8d77bb6033ea22ef3f94ed"], &(0x7f0000000140)=0x35)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfe5b)
symlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00')

[  473.231487][T20481]  loop5: p1
[  473.242602][T20481] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:48 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  473.397509][T20494] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:48 executing program 5:
syz_read_part_table(0x4c04, 0x8500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:48 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7a000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  473.623022][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  473.814597][T20517] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  473.820928][T20505] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:48 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  473.878516][T20505] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  473.915220][T20505]  loop5: p1
10:55:48 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  473.928004][T20505] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0)
ioctl$VIDIOC_G_DV_TIMINGS(r2, 0xc0845658, &(0x7f0000000140)={0x0, @bt={0xc00000000, 0x4f, 0x0, 0x1, 0x10001, 0x9, 0x81, 0x0, 0x3, 0x60d4, 0x7417, 0xfffffffffffffffb, 0x3a4, 0xffffffff, 0x11, 0x20}})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
socketpair(0x0, 0x80001, 0x10000, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb7]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x9effffff, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  474.040897][T20514] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  474.128112][T20514] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  474.166193][T20514]  loop0: p1
10:55:48 executing program 5:
syz_read_part_table(0x4c04, 0x8600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  474.186742][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  474.209779][T20535] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  474.241068][T20514] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:49 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000100)={<r2=>0x0, 0x2dc000000000}, &(0x7f0000000140)=0x8)
ioctl$KVM_SET_TSS_ADDR(r0, 0xae47, 0xd000)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={r2, 0x7ff}, 0xc)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000080)={{0x0, 0x3, 0xef, 0x1, 0x74}, 0x100, 0x5, 0x8})
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:49 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf0ffffff, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:49 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  474.625600][T20549] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  474.670776][T20544] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  474.725996][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:49 executing program 1:
rt_sigreturn()
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r3, 0x6, 0x3, &(0x7f0000000040)=0x1c, 0x4)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xfffff000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  474.770460][T20544] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  474.823372][T20544]  loop5: p1
[  474.833950][T20544] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:49 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  475.010329][T20561] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:49 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xffffff7f, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x100, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000040)={0x1, r3, 0x1})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  475.070359][T20561] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  475.102293][T20561]  loop0: p1
10:55:49 executing program 5:
syz_read_part_table(0x4c04, 0x8700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:49 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  475.120564][T20561] loop0: p1 size 2047 extends beyond EOD, truncated
[  475.201919][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xffffff9e, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:50 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:50 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x8)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

10:55:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xfffffff0, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  475.541690][T20591] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  475.581026][T20591] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  475.629335][T20591]  loop5: p1
[  475.647826][T20591] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  475.888097][T20603] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:50 executing program 5:
syz_read_part_table(0x4c04, 0x8800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  475.963732][T20603] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  476.029511][T20603]  loop0: p1
[  476.050882][T20603] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:50 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  476.198697][T20620] validate_nla: 4 callbacks suppressed
[  476.198720][T20620] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:51 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000140)={0x3, 0x2, 0x6, 0x3})
syz_open_dev$rtc(&(0x7f0000000180)='/dev/rtc#\x00', 0x5a5c, 0x424002)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0xfffffffffffffd7e, 0x20000000000, 0x0, 0x0)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000080)={[0x81, 0x2, 0x1, 0x5, 0xc3, 0x5, 0x4, 0x1ff, 0x0, 0x3, 0xfffffffffffffffc, 0xd78, 0x7, 0x3, 0x4, 0x1], 0xd004, 0x4810})

10:55:51 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
prctl$PR_SET_ENDIAN(0x14, 0x3)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000000)=""/174)

10:55:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x40030000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  476.677383][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  476.681048][T20627] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  476.741993][T20644] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:51 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x42000, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000080)=0xab1)

[  476.833662][T20627] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf0ffffffffffff, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  476.882573][T20627]  loop5: p1
[  476.924125][T20627] loop5: p1 size 2047 extends beyond EOD, truncated
[  476.961494][T20638] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:51 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  477.041848][T20661] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  477.042437][T20638] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  477.116241][T20638]  loop0: p1
10:55:51 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x7f, 0x800)
ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000040))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000], 0x0, 0x882})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  477.139094][T20638] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:51 executing program 5:
syz_read_part_table(0x4c04, 0x8900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:52 executing program 2:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00')
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf2501000000000000001800170000001a000000067564703a73797a310900000000000000007866aa92731b900394d2de526d07a74a8ae5e0c77d714211171e3fb3278c7063740e1fb4dd1321a94591febace0b004c8f86c4e9f271cd3cdd9ecdb2cb3c4ec334eeae5dc70bc07ca8bb08b0402704"], 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f00000001c0))

10:55:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x100000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  477.316782][T20671] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  477.351186][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:52 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x102000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000380))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  477.604550][T20690] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:52 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup2(r0, 0xffffffffffffff9c)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x281, 0x0)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000000c0)={0x3, r2})
r3 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r5, &(0x7f0000000100)={0x2})
ioctl$sock_bt_cmtp_CMTPCONNADD(r1, 0x400443c8, &(0x7f0000000140)={r1, 0x8})
syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  477.740906][T20680] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x200000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  477.800005][T20680] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  477.808248][T20688] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  477.844367][T20680]  loop5: p1
[  477.847859][T20680] loop5: p1 size 2047 extends beyond EOD, truncated
[  477.860066][T20688] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  477.915371][T20688]  loop0: p1
[  477.958897][T20688] loop0: p1 size 2047 extends beyond EOD, truncated
[  477.993575][T20704] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:52 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x300000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:52 executing program 5:
syz_read_part_table(0x4c04, 0x8a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:52 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0x9f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:52 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  478.361130][T20725] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  478.410334][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  478.494210][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x400000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  478.652236][T20721] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  478.710464][T20726] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  478.734005][T20721] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="baa100ecf20f0966b96d0b00000f320fc75cc00f30660f3a216300650f8d01000f01ca262fbaf80c66b850dd408f66efbafc0cb89422ef", 0x37}], 0x1, 0x0, &(0x7f0000000080), 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  478.765717][T20726] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  478.786282][T20721]  loop5: p1
[  478.806926][T20721] loop5: p1 size 2047 extends beyond EOD, truncated
[  478.816277][T20726]  loop0: p1
[  478.826855][T20726] loop0: p1 size 2047 extends beyond EOD, truncated
[  478.838068][T20745] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:53 executing program 5:
syz_read_part_table(0x4c04, 0x8b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x500000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:53 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:53 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  479.211396][T20755] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:54 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x600000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  479.444461][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  479.560766][T20763] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  479.621077][T20763] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  479.650250][T20756] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  479.659522][T20779] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  479.678801][T20763]  loop0: p1
[  479.682937][T20763] loop0: p1 size 2047 extends beyond EOD, truncated
[  479.725657][T20756] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  479.772399][T20756]  loop5: p1
[  479.777313][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  479.804516][T20756] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:54 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x700000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:54 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:54 executing program 5:
syz_read_part_table(0x4c04, 0x8c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:54 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xa00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r3=>0x0)
ptrace(0x10, r3)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  480.406542][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  480.420843][T20795] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xe00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  480.524041][T20795] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:55 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  480.597241][T20795]  loop0: p1
[  480.632856][T20795] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
fstatfs(r1, &(0x7f0000000780)=""/4096)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  480.680924][T20806] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:55 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  480.749395][T20806] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  480.835809][T20806]  loop5: p1
10:55:55 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  480.870923][T20806] loop5: p1 size 2047 extends beyond EOD, truncated
[  481.028505][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  481.068242][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x2000000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:56 executing program 5:
syz_read_part_table(0x4c04, 0x8d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:56 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:56 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  481.388908][T20854] validate_nla: 4 callbacks suppressed
[  481.388918][T20854] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  481.516095][T20844] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3a02000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  481.567305][T20844] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  481.621648][T20844]  loop0: p1
[  481.645262][T20844] loop0: p1 size 2047 extends beyond EOD, truncated
[  481.663311][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  481.678171][T20856] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  481.690010][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  481.775740][T20856] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:56 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  481.841544][T20856]  loop5: p1
[  481.845147][T20856] loop5: p1 size 2047 extends beyond EOD, truncated
10:55:56 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  481.928439][T20878] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x83ffd, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xfffffffffffffffc], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xfff]})
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000000)={0x3ff, 0xfffffffffffffff8, 0x20, 0x100000001, 0x4b8b70cc})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x3, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil})

10:55:56 executing program 5:
syz_read_part_table(0x4c04, 0x8e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x3f00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  482.167532][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:57 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000, 0x100000000, 0x0, 0x0, 0x2]})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  482.274803][T20896] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  482.300968][T20883] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4000000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  482.385783][T20883] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:57 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:57 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  482.480557][T20883]  loop0: p1
[  482.487597][T20883] loop0: p1 size 2047 extends beyond EOD, truncated
[  482.539911][T20909] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  482.560399][T20898] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:57 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4800000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  482.600469][T20898] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  482.689210][T20898]  loop5: p1
[  482.720450][T20898] loop5: p1 size 2047 extends beyond EOD, truncated
[  482.784967][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  482.871146][T20926] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  482.914028][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:55:57 executing program 5:
syz_read_part_table(0x4c04, 0x8f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x4c00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:57 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000080)={<r3=>0xffffffffffffff9c})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4842e}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x34, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040000}, 0x4080)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r5 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r5, 0x8918, &(0x7f0000000040)={'syz_tun\x00', {0x2, 0x4e22, @multicast1}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap$perf(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000002, 0x10, r0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)

[  483.134605][T20924] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  483.177015][T20924] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  483.201663][T20940] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  483.207254][T20924]  loop0: p1
[  483.230489][T20924] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6000000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  483.441160][T20938] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  483.456102][   T27] audit: type=1400 audit(1560596158.207:59): avc:  denied  { map } for  pid=20937 comm="syz-executor.1" path="/dev/kvm" dev="devtmpfs" ino=16184 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:kvm_device_t:s0 tclass=chr_file permissive=1
10:55:58 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  483.520050][T20938] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  483.581029][T20938]  loop5: p1
10:55:58 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:55:58 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  483.610334][T20938] loop5: p1 size 2047 extends beyond EOD, truncated
[  483.640486][T20954] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  483.690106][   T27] audit: type=1400 audit(1560596158.437:60): avc:  denied  { ioctl } for  pid=20937 comm="syz-executor.1" path="socket:[123763]" dev="sockfs" ino=123763 ioctlcmd=0xae46 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
10:55:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6800000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  483.931141][T20958] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  483.984766][T20958] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x10000000)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$vfio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vfio/vfio\x00', 0x400, 0x0)
ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r3, 0x800443d2, &(0x7f00000005c0)={0x1, &(0x7f0000000580)=[{}]})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:55:58 executing program 5:
syz_read_part_table(0x4c04, 0x9000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  484.030237][T20972] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  484.056628][T20958]  loop0: p1
10:55:58 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  484.096121][T20958] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x6c00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:59 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:59 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  484.489424][T20993] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:55:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000000000)={0x8, 0xffffffffffffff80, 0x4, 0x2, 0x112})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  484.562372][T20983] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:55:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7400000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  484.641272][T20983] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:55:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  484.688426][T20983]  loop5: p1
[  484.725126][T20983] loop5: p1 size 2047 extends beyond EOD, truncated
[  484.740875][T20991] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  484.788090][    C1] net_ratelimit: 1 callbacks suppressed
[  484.788103][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  484.795283][T21005] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  484.834724][T20991] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  484.872673][T20991]  loop0: p1
[  484.876266][T20991] loop0: p1 size 2047 extends beyond EOD, truncated
10:55:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x7a00000000000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:55:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0xff], 0x1f004})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000540)={{{@in6=@local, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@empty}, 0x0, @in=@local}}, &(0x7f0000000280)=0xe8)
setuid(r3)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000640)='/dev/sequencer2\x00', 0x80400, 0x0)
r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
ioctl$PPPIOCATTACH(r4, 0x4004743d, &(0x7f0000000040)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000240))
ioctl$PIO_UNIMAPCLR(r4, 0x4b68, &(0x7f0000000200)={0x8, 0x10, 0x1})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f0000000080)={0xa, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {<r5=>0x0}]})
ioctl$DRM_IOCTL_DMA(r4, 0xc0406429, &(0x7f0000000440)={r5, 0x1, &(0x7f00000001c0)=[0x100000000], &(0x7f0000000380)=[0x6, 0x0, 0xf1, 0x5], 0x46, 0x4, 0xdd3, &(0x7f00000003c0)=[0x5, 0xfff, 0x1, 0x3], &(0x7f0000000400)=[0x60000, 0x7, 0x7]})

10:55:59 executing program 5:
syz_read_part_table(0x4c04, 0x9100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:59 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:55:59 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:00 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x9effffff00000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  485.541635][T21026] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xf0ffffff00000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  485.613486][T21026] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  485.651910][T21029] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  485.687529][T21026]  loop0: p1
[  485.696361][T21029] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  485.710486][T21026] loop0: p1 size 2047 extends beyond EOD, truncated
[  485.732798][T21029]  loop5: p1
[  485.765170][T21029] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:00 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:00 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xffffff7f00000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x5, 0x2, 0xf002, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000380)={{{@in6, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@empty}, 0x0, @in=@dev}}, &(0x7f0000000180)=0xe8)
bind$can_raw(r3, &(0x7f00000001c0)={0x1d, r4}, 0x10)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:00 executing program 5:
syz_read_part_table(0x4c04, 0x9200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:00 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  486.425370][T21058] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  486.477143][T21058] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  486.520726][T21058]  loop0: p1
[  486.524313][T21058] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xffffffff00000000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:01 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x80000, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f0000000040)={0x223, 0x7fffffff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:01 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  486.718035][T21089] validate_nla: 4 callbacks suppressed
[  486.718045][T21089] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  486.775939][T21071] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:01 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xa900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  486.827976][T21071] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:01 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0xfffffffffffff000, {0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  486.891654][T21071]  loop5: p1
[  486.938389][T21071] loop5: p1 size 2047 extends beyond EOD, truncated
[  487.080866][T21104] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  487.401312][T21098] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x4}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x1f68, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd], 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:02 executing program 2:
semctl$SETVAL(0x0, 0x0, 0x10, 0x0)
semctl$SETVAL(0x0, 0x0, 0x10, 0x0)

10:56:02 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  487.462367][T21098] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  487.504199][T21098]  loop0: p1
[  487.531209][T21098] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:02 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x5}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:02 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xaa00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:02 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x400, 0x0)
ioctl$TIOCOUTQ(r3, 0x5411, &(0x7f0000000040))

[  487.916324][T21141] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:02 executing program 5:
syz_read_part_table(0x4c04, 0x9300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x5a}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  488.194244][T21143] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:03 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  488.246306][T21143] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  488.274165][T21143]  loop0: p1
[  488.288534][T21143] loop0: p1 size 2047 extends beyond EOD, truncated
[  488.742205][T21158] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  488.820831][T21158] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  488.840537][T21158]  loop5: p1
[  488.844176][T21158] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:03 executing program 5:
syz_read_part_table(0x4c04, 0x9400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:03 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xab00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x2}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:03 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
setxattr$security_evm(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)='security.evm\x00', &(0x7f0000000700)=@md5={0x1, "33987489a23f9a119ac7e4e0536400d0"}, 0x11, 0x2)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r3, 0x28, 0x1, &(0x7f0000000040)=0x5, 0x8)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000780))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
fsetxattr$trusted_overlay_origin(r1, &(0x7f0000000600)='trusted.overlay.origin\x00', &(0x7f0000000640)='y\x00', 0x2, 0x3)
ioctl$KVM_NMI(r4, 0xae9a)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00')
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r4)
sendmsg$TIPC_NL_MEDIA_GET(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x254, r5, 0x200, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x144, 0x4, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8e2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1c72}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfc7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x74fc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x99}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}]}, @TIPC_NLA_MEDIA={0x18, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}]}, @TIPC_NLA_NET={0x44, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80000000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xff}]}, @TIPC_NLA_LINK={0xa0, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7df3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x42}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}]}, 0x254}, 0x1, 0x0, 0x0, 0x4000}, 0x84)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:03 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  489.236658][T21196] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  489.442328][T21189] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  489.460143][T21189] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x3}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  489.483268][T21189]  loop0: p1
[  489.504975][T21189] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:04 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(0xffffffffffffffff, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  489.631250][T21189] __loop_clr_fd: partition scan of loop0 failed (rc=-16)
[  489.632084][T21210] print_req_error: 447 callbacks suppressed
[  489.632096][T21210] print_req_error: I/O error, dev loop0, sector 1 flags 80700
[  489.688605][ T2493] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  489.691101][T21215] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  489.695838][ T2493] buffer_io_error: 446 callbacks suppressed
[  489.695849][ T2493] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  489.718591][ T2493] print_req_error: I/O error, dev loop0, sector 2 flags 0
[  489.726000][ T2493] Buffer I/O error on dev loop0p1, logical block 1, async page read
[  489.736253][ T2493] print_req_error: I/O error, dev loop0, sector 3 flags 0
[  489.743572][ T2493] Buffer I/O error on dev loop0p1, logical block 2, async page read
[  489.752208][ T2493] print_req_error: I/O error, dev loop0, sector 4 flags 0
[  489.759382][ T2493] Buffer I/O error on dev loop0p1, logical block 3, async page read
[  489.768124][ T2493] print_req_error: I/O error, dev loop0, sector 5 flags 0
[  489.775326][ T2493] Buffer I/O error on dev loop0p1, logical block 4, async page read
10:56:04 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xac00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  489.784100][ T2493] print_req_error: I/O error, dev loop0, sector 6 flags 0
[  489.791364][ T2493] Buffer I/O error on dev loop0p1, logical block 5, async page read
[  489.799550][ T2493] print_req_error: I/O error, dev loop0, sector 7 flags 0
[  489.806783][ T2493] Buffer I/O error on dev loop0p1, logical block 6, async page read
[  489.815658][ T2493] print_req_error: I/O error, dev loop0, sector 8 flags 0
[  489.822887][ T2493] Buffer I/O error on dev loop0p1, logical block 7, async page read
[  489.831944][ T2493] print_req_error: I/O error, dev loop0, sector 1 flags 0
[  489.839115][ T2493] Buffer I/O error on dev loop0p1, logical block 0, async page read
[  489.847724][ T2493] Buffer I/O error on dev loop0p1, logical block 1, async page read
10:56:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x4}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  489.930019][T21206] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  489.981962][T21206] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  490.020097][T21206]  loop5: p1
10:56:04 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(0xffffffffffffffff, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:04 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

[  490.040030][T21206] loop5: p1 size 2047 extends beyond EOD, truncated
[  490.135038][T21228] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:05 executing program 5:
syz_read_part_table(0x4c04, 0x9500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x880, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS(r3, 0x80605414, &(0x7f0000000140)=""/129)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x5}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:05 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(0xffffffffffffffff, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  490.371354][T21225] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  490.423329][T21243] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  490.432125][T21225] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  490.494543][T21225]  loop0: p1
[  490.550309][T21225] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x6}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:05 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:05 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xad00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  490.763884][T21257] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  490.785471][T21245] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  490.818936][T21245] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x7}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  490.900566][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  490.921888][T21245]  loop5: p1
[  490.928075][T21245] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:05 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

[  491.170925][T21265] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  491.175048][T21275] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:05 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  491.223278][T21265] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  491.259599][T21265]  loop0: p1
10:56:06 executing program 5:
syz_read_part_table(0x4c04, 0x9600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  491.270397][T21265] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000380)={0x334, r2, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x44, 0x5, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffff9}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_BEARER={0x14, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_NET={0x14, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xecd}]}, @TIPC_NLA_LINK={0x24, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}, @TIPC_NLA_LINK={0xcc, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffff000}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x411a}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9332}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe71}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_PROP={0x4}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0x54, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x81}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x53}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffffffffff7f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1e}]}, @TIPC_NLA_BEARER={0x58, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x8b, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x401}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x4, @loopback, 0x6}}}}]}, @TIPC_NLA_SOCK={0x1c, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0xc8, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_NET={0x34, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xf69}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1ff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3ff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xeda}]}]}, 0x334}, 0x1, 0x0, 0x0, 0x810}, 0x8c0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xa}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  491.424562][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:06 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xae00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  491.624326][T21289] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  491.654624][T21289] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  491.671302][T21302] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  491.689438][T21289]  loop5: p1
[  491.697974][T21289] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xe}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = memfd_create(&(0x7f00000001c0)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0)
pwrite64(r2, &(0x7f000003bfff)='/', 0x1, 0x0)
sendfile(r2, r2, 0x0, 0x20)
sendfile(r2, r2, &(0x7f0000000100), 0x7f8)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x3, 0x0, 0x3000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x8000)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x341200, 0x0)
ioctl$sock_rose_SIOCRSCLRRT(r5, 0x89e4)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10:56:06 executing program 5:
syz_read_part_table(0x4c04, 0x9700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  491.996391][T21314] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  492.081281][T21311] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:06 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
sendfile(r0, r1, 0x0, 0x1)

10:56:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xf}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  492.138580][T21311] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  492.217037][T21311]  loop0: p1
[  492.230826][T21311] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:07 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  492.376319][T21332] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x48}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:07 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xaf00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  492.454155][T21325] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  492.480120][T21325] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  492.497955][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:07 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
sendfile(r0, r1, 0x0, 0x1)

[  492.581376][T21325]  loop5: p1
[  492.610728][T21325] loop5: p1 size 2047 extends beyond EOD, truncated
[  492.627516][T21344] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x4c}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  492.832198][T21342] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:07 executing program 5:
syz_read_part_table(0x4c04, 0x9800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:07 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
sendfile(r0, r1, 0x0, 0x1)

[  492.926387][T21342] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x3162, 0x400000)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000040)=0x10000, 0x4)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  493.000364][T21342]  loop0: p1
[  493.005323][T21355] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  493.033102][T21342] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x60}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:07 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
exit(0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1)

10:56:08 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:08 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  493.396479][T21376] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  493.423487][T21362] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  493.493235][T21362] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x68}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  493.541796][T21362]  loop5: p1
[  493.559030][T21362] loop5: p1 size 2047 extends beyond EOD, truncated
[  493.637357][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:08 executing program 5:
syz_read_part_table(0x4c04, 0x9900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  493.784222][T21393] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:08 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  493.851030][T21384] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  493.882241][T21384] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x6c}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  493.941051][T21384]  loop0: p1
[  493.974338][T21384] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:08 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  494.182348][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:09 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
exit(0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1)

[  494.248973][T21413] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x74}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:09 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  494.547972][T21405] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  494.616730][T21405] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  494.621480][T21429] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  494.678205][T21405]  loop5: p1
[  494.680903][T21420] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  494.693310][T21405] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x7a}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  494.732812][T21420] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  494.767432][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  494.787029][T21420]  loop0: p1
[  494.815837][T21420] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)

[  494.938639][T21446] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:09 executing program 5:
syz_read_part_table(0x4c04, 0x9a00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xf0}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:09 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  495.260505][T21459] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:10 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
exit(0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1)

10:56:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x10000, 0x0)
ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000380)="cfd88abbbce88417b189f5332f1a257fb3f89ed340a148c7147b6a6ccb8b6da6c95e39c2d7d9a2c9a8ff19ad991c9f529c20a36cc4a1cb2480be78922ac943090145ebb7eeac603b763ca23bc2fa660471ef4002fb754379210999a1ccfac3c4e6cef366e70fc2ae8d6250ba5ad6f2e588a1580bfb13b3eaccb1edff8ce571270ded8810a3a078be941bfca7b21d6f95037addf62b409cea122c31f60e2522f8204ddeafaa312c692552fb3d82296a52f75504226a0bb713e58c2d7224a8ee78269f183091f970973e0c3957df6908a98da755d537d37f33651e087644f0faa05d31070f357c50479da104d1e46ac9f6e6c76d")
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r2, 0x4040ae75, &(0x7f0000000040)={0xf615, 0xab0, 0x5, 0x2})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:56:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x102}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  495.480399][T21455] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:10 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  495.532500][T21455] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  495.550536][T21455]  loop5: p1
[  495.557538][T21455] loop5: p1 size 2047 extends beyond EOD, truncated
[  495.640315][T21465] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  495.703392][T21465] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  495.767313][T21465]  loop0: p1
10:56:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x201}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:10 executing program 5:
syz_read_part_table(0x4c04, 0x9b00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  495.802754][T21465] loop0: p1 size 2047 extends beyond EOD, truncated
[  495.819207][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:10 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0xfffffffffffffff8, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cachefiles\x00', 0x44000, 0x0)
ioctl$KDGKBDIACR(r3, 0x4b4a, &(0x7f0000000180)=""/38)
r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0)
getsockopt$inet_dccp_int(r4, 0x21, 0x6, &(0x7f0000000040), &(0x7f0000000080)=0x4)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x23a}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  496.211058][T21493] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  496.270266][T21493] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  496.333307][T21493]  loop5: p1
[  496.350391][T21493] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:11 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1)

10:56:11 executing program 5:
syz_read_part_table(0x4c04, 0x9c00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x300}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$amidi(&(0x7f00000003c0)='/dev/amidi#\x00', 0x5, 0x40)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f0000000780))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000080), &(0x7f0000000140)=0x4)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000))
sendto$inet(r1, &(0x7f0000000180)="b4c61b1e8cf3464da84a053e04c2dd095c5bc1b006e50efd8e0e44b16a87d4699425153081a1f70a803cb15453", 0x2d, 0x800, &(0x7f00000001c0)={0x2, 0x4e24, @loopback}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  496.591082][T21504] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:11 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  496.657062][T21504] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  496.697180][T21504]  loop0: p1
[  496.712371][T21504] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x500}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:11 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  497.032543][T21526] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  497.053899][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  497.081836][T21526] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  497.098678][T21538] validate_nla: 4 callbacks suppressed
[  497.098688][T21538] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  497.137703][T21526]  loop5: p1
[  497.159655][T21526] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x600}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:12 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1)

10:56:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x101000, 0x0)
write$UHID_CREATE(r2, &(0x7f0000000380)={0x0, 'syz0\x00', 'syz1\x00', 'syz1\x00', &(0x7f0000000140)=""/189, 0xbd, 0x7f, 0x9, 0x9, 0x1e77, 0x7}, 0x120)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x6e, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f0000000040)=@sack_info={<r4=>0x0, 0x5, 0x4}, &(0x7f0000000080)=0xc)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000540)=ANY=[@ANYRES32=r4, @ANYBLOB="068312cd32e5cae75f6bf56f5ebbe42e4d62ce"], &(0x7f0000000500)=0xa)
prctl$PR_SET_KEEPCAPS(0x8, 0x0)

10:56:12 executing program 5:
syz_read_part_table(0x4c04, 0x9d00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  497.482580][T21554] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  497.492844][T21544] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  497.523926][T21544] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  497.564019][T21544]  loop0: p1
[  497.580670][T21544] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x700}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:12 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:12 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000000)={[{0x7, 0x5b37, 0x20, 0x5, 0x40, 0x0, 0xffff, 0x10000, 0x7, 0x6, 0xfffffffffffffff8, 0x58, 0x3}, {0x795, 0xfffffffffffffff7, 0x6, 0x7, 0xff, 0x7, 0x0, 0x8, 0x7fffffff, 0x7, 0x5, 0x101, 0x7}, {0x6b, 0x0, 0x8, 0x800, 0x0, 0x4, 0x5, 0x4, 0x4, 0xa072, 0x2, 0x7fff, 0x3}], 0x7})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80, 0x0)
ioctl$KDSETLED(r3, 0x4b32, 0x3)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@random={'os2.', '/dev/kvm\x00'}, &(0x7f0000000380)=""/221, 0xdd)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  497.947452][T21577] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  498.011465][T21570] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xa00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  498.137784][T21570] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  498.156072][T21570]  loop5: p1
[  498.191659][T21570] loop5: p1 size 2047 extends beyond EOD, truncated
[  498.202042][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  498.276706][T21593] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  498.313722][T21580] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:13 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1)

10:56:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xe00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  498.430428][T21580] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:13 executing program 5:
syz_read_part_table(0x4c04, 0x9e00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  498.493081][T21580]  loop0: p1
10:56:13 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  498.519445][T21580] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[0x0, 0x0, 0x0, 0x8000000, 0x8000000000000, 0x0, 0x103], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl(r2, 0x1, &(0x7f0000000380)="dcccb64dbdd6603c5b7c304422d12821ad9baee276f4bc3b7cae8b0c1a33740f343f7224637399ce9cec5f1482f3838566225e1bfc9f2fdf4a4c1fd6ef13cc73ea4630a0b88a39fd546d0e98fc561b4af02173657f74cb26d58633ec3fd4506178362f7d65dc2701101b9b7797dd1992802e9c71df3585fabc6ff2e280f1bf73181da6ac4fe0899efdfa21211678057edab434de18453f0d6737943bcfc23a4ff4e9408de6d27012a7f12d9abc15b514f0023d691bb639f48f8e89caafd654c232f372248c039c7af028b98635147856929ec13f")
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  498.579887][T21605] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  498.688077][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xf00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:13 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  498.875160][T21609] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  498.891688][T21609] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:13 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  498.942564][T21609]  loop5: p1
[  498.960378][T21609] loop5: p1 size 2047 extends beyond EOD, truncated
[  498.967677][T21627] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x2000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:13 executing program 5:
syz_read_part_table(0x4c04, 0x9f00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/softnet_stat\x00')
setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f0000000040)=0x5c3, 0x4)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  499.247668][T21629] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  499.293445][T21629] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  499.295844][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  499.345454][T21629]  loop0: p1
[  499.381416][T21646] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  499.393456][T21629] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:14 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x3a02}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:14 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  499.670826][T21649] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x8000, 0x0)
ioctl$VIDIOC_ENUMINPUT(r3, 0xc050561a, &(0x7f0000000040)={0x8, "b928573dc7eb29a6110e140b0f727a8f6cf03c3c8188d30ed88ce84d434d9362", 0x3, 0x1, 0x5, 0xff0000, 0xc20, 0x8})
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r3, 0xc008551a, &(0x7f0000000140)={0x1, 0x4, [0x6]})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  499.731755][T21649] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  499.747642][T21664] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  499.767589][T21649]  loop5: p1
[  499.775064][T21649] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x3f00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:14 executing program 5:
syz_read_part_table(0x4c04, 0xa000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  500.041139][T21667] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:14 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  500.095494][T21677] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  500.104883][T21667] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  500.126122][T21667]  loop0: p1
[  500.129718][T21667] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x4000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  500.321595][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = fcntl$dupfd(r0, 0x0, r2)
read$rfkill(r3, &(0x7f0000000040), 0xffffffffffffff20)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x9, {0x9, 0x23, 0x9, 0x9, 0x100, 0x1f}, 0x3, 0x4}, 0xe)

10:56:15 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  500.405540][T21690] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x4800}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:15 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:15 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  500.550695][T21686] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  500.593516][T21686] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  500.629896][T21686]  loop5: p1
10:56:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x4c00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  500.649006][T21686] loop5: p1 size 2047 extends beyond EOD, truncated
[  500.739433][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  500.852957][T21696] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:15 executing program 5:
syz_read_part_table(0x4c04, 0xa100, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  500.909592][T21696] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x6000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  500.957254][T21696]  loop0: p1
10:56:15 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  500.979279][T21696] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:15 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xb900, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:15 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x6800}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  501.286032][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x3, 0x10080)
connect$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x2710, @hyper}, 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x6c00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  501.473363][T21726] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  501.513047][T21726] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:16 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
sendto$inet6(r1, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r1, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  501.556385][T21726]  loop5: p1
10:56:16 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

[  501.577411][T21726] loop5: p1 size 2047 extends beyond EOD, truncated
[  501.631829][T21735] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  501.697720][T21735] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  501.735276][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  501.756126][T21735]  loop0: p1
[  501.774375][T21735] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x7400}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:16 executing program 5:
syz_read_part_table(0x4c04, 0xa200, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:16 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xba00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:16 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x424000, 0x0)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r1, 0x6, 0x15, &(0x7f00000003c0)=0xffffffffffff8000, 0x4)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000180)=ANY=[@ANYBLOB="0004000000000000070000000000000004000000000020000100000000000000f1000000000000000200000000000000050000000080000000000000000000000000000000000000002100"/88])
write$UHID_CREATE2(r0, &(0x7f0000000780)={0xb, 'syz0\x00', 'syz0\x00', 'syz0\x00', 0x1000, 0xef, 0x7, 0x81, 0xc73f, 0x3, "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"}, 0x1118)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x200, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', r4}, 0x10)
ioctl$KVM_NMI(r3, 0xae9a)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000140)={0x9}, 0x4)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  502.111364][T21767] validate_nla: 5 callbacks suppressed
[  502.111374][T21767] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x7a00}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  502.374563][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  502.391163][T21770] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  502.420496][T21770] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  502.446176][T21770]  loop5: p1
[  502.466144][T21788] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  502.478457][T21770] loop5: p1 size 2047 extends beyond EOD, truncated
[  502.486008][T21773] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  502.559206][T21773] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  502.578866][T21773]  loop0: p1
[  502.611738][T21773] loop0: p1 size 2047 extends beyond EOD, truncated
10:56:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xf000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:17 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, 0x0)
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/capi/capi20\x00', 0x521002, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r2, 0x4010aeab, &(0x7f0000000580)={0x9, 0x1000})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffd)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = add_key(&(0x7f0000000040)='ceph\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000140)="6681b5a01ced031395941b8b3b88cc8355cf536d5e09f7c46c76", 0x1a, 0xfffffffffffffffb)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000180)={r4, 0x46, 0xda}, &(0x7f0000000380)={'enc=', 'oaep', ' hash=', {'nhpoly1305-sse2\x00'}}, &(0x7f0000000400)="13452cf8908b2c0abd339ccad6efd07d4927878d2f604ba48f1ce0e7dae497bee848f5cf85f502b0fec778672f260a32b92ca8839b31049cd6b80c519bf8a32e9ece9553234e", &(0x7f0000000480)="da692ae7471de4066997bb5b2010534864bcddadd5c640c50746763e14fd726435c3841bd27418387a4eec19a96f990480760321c2980c18a8dccb31155b324ce5428ff09cceb90d7e325beed4fa9bb2bf7c0db97c5b7ae7d5279afba4228fb57e99e637372fe813562a2458b23cca1e72c8b9b03923b0ae71f03d26211c6639d41a39a27da09d902242258a9640ec26b913ac64d1a08a6eafc60de3b17f18c182c15c24edde80ff508816b8d546e94845ccdff4e06dba70efcefb42238e5e000e7d7df66e496cffeda16681c6907e48ab02a98fd2600bd23141")
ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000000)={0xf95})

10:56:17 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:17 executing program 5:
syz_read_part_table(0x4c04, 0xa300, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:17 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xbb00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  502.856705][T21798] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  502.906101][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x30000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:18 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, &(0x7f0000000140))
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  503.240734][T21821] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000040)={0x7b, 0x0, [0x0, 0xd3c, 0x1000, 0x3fe]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x7)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x0, 0x0)
ioctl$ION_IOC_HEAP_QUERY(r3, 0xc0184908, &(0x7f00000001c0)={0x34, 0x0, &(0x7f0000000180)})
ioctl$TIOCNOTTY(r3, 0x5422)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000380)='/selinux/mls\x00', 0x0, 0x0)

[  503.291546][T21804] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  503.314456][T21804] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  503.335115][T21804]  loop5: p1
10:56:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x34000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  503.355867][T21813] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  503.375960][T21804] loop5: p1 size 2047 extends beyond EOD, truncated
[  503.406216][T21813] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  503.438359][T21813]  loop0: p1
[  503.471905][T21813] loop0: p1 size 2047 extends beyond EOD, truncated
[  503.554600][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  503.576270][T21835] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:18 executing program 5:
syz_read_part_table(0x4c04, 0xa400, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x400300}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:18 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, 0x0)
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:18 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xbc00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:18 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000015000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  503.909273][T21847] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0xf0ffff}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  504.085510][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  504.161004][T21850] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  504.180323][T21850] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  504.192900][T21850]  loop0: p1
[  504.204501][T21850] loop0: p1 size 2047 extends beyond EOD, truncated
[  504.234683][T21854] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  504.269643][T21854] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
10:56:19 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:19 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xbd00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  504.311559][T21854]  loop5: p1
[  504.325545][T21854] loop5: p1 size 2047 extends beyond EOD, truncated
[  504.386509][T21869] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:19 executing program 1:
socketpair$unix(0x1, 0x400000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'eql\x00', 0xd102})
preadv(r1, &(0x7f0000000200)=[{&(0x7f0000000ec0)=""/202, 0xca}], 0x1, 0x0)
dup2(r0, r1)
ioctl$sock_ifreq(r0, 0x8914, &(0x7f0000000080)={'eql\x00i\x0e\xa9[\x00\xce\x00', @ifru_mtu=0x1})
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")

10:56:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x1000000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:19 executing program 5:
syz_read_part_table(0x4c04, 0xa500, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  504.656826][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  504.689538][T21883] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:19 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r1 = syz_open_procfs(0x0, 0x0)
exit(0x0)
sendfile(r0, r1, 0x0, 0x1)

10:56:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x1020000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  504.810825][T21877] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:19 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0)
socket$rxrpc(0x21, 0x2, 0x0)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  504.890461][T21877] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  504.947621][T21877]  loop0: p1
[  504.964903][T21877] loop0: p1 size 2047 extends beyond EOD, truncated
[  505.011101][T21891] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  505.027944][T21899] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  505.038278][T21891] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  505.063045][T21891]  loop5: p1
[  505.077428][T21891] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:19 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xbe00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  505.230547][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
10:56:20 executing program 5:
syz_read_part_table(0x4c04, 0xa600, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:20 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, &(0x7f0000000140))
socket$rxrpc(0x21, 0x2, 0x0)
symlink(0x0, &(0x7f0000000200)='./file0\x00')
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  505.663662][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  505.711233][T21913] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
10:56:20 executing program 2:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1)

[  505.755064][T21913] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  505.781186][T21915] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  505.831977][T21915] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  505.838964][T21913]  loop0: p1
[  505.856449][T21913] loop0: p1 size 2047 extends beyond EOD, truncated
[  505.878740][T21915]  loop5: p1
[  505.894364][T21915] loop5: p1 size 2047 extends beyond EOD, truncated
10:56:20 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, &(0x7f0000000140))
socket$rxrpc(0x21, 0x2, 0x0)
symlink(0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x2000000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  506.161069][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  506.295274][T21945] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
10:56:21 executing program 1:
socketpair$unix(0x1, 0x400000000003, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'eql\x00', 0xd102})
preadv(r1, &(0x7f0000000200)=[{&(0x7f0000000ec0)=""/202, 0xca}], 0x1, 0x0)
dup2(r0, r1)
ioctl$sock_ifreq(r0, 0x8914, &(0x7f0000000080)={'eql\x00i\x0e\xa9[\x00\xce\x00', @ifru_mtu=0x1})
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")

10:56:21 executing program 5:
syz_read_part_table(0x4c04, 0xa700, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:21 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xbf00, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:21 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, &(0x7f0000000140))
socket$rxrpc(0x21, 0x2, 0x0)
symlink(0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffe32, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0xc498ead121f97dd6)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "d44eb8c7308ec7c4", "442065238929350ade91900b51fc9534", "6bdda720", "7ee51430da3f51b3"}, 0x28)
sendto$inet6(r0, &(0x7f00000005c0), 0xffffffffffffffc1, 0x0, 0x0, 0x1201000000003618)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)=""/68, &(0x7f0000000080)=0x44)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f00000004c0)='_', 0x1}], 0x1)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x4, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:56:21 executing program 2:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1)

10:56:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x3000000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

[  507.129233][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  507.230424][T21979] validate_nla: 1 callbacks suppressed
[  507.230435][T21979] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  507.345907][T21967] ==================================================================
[  507.354445][T21967] BUG: KASAN: use-after-free in tls_write_space+0x150/0x170
[  507.361742][T21967] Read of size 1 at addr ffff8880a5f31df8 by task syz-executor.4/21967
[  507.370060][T21967] 
[  507.372453][T21967] CPU: 1 PID: 21967 Comm: syz-executor.4 Not tainted 5.2.0-rc4+ #25
[  507.380435][T21967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  507.390550][T21967] Call Trace:
[  507.393937][T21967]  dump_stack+0x172/0x1f0
[  507.398277][T21967]  ? tls_write_space+0x150/0x170
[  507.403308][T21967]  print_address_description.cold+0x7c/0x20d
[  507.409312][T21967]  ? tls_write_space+0x150/0x170
[  507.414296][T21967]  ? tls_write_space+0x150/0x170
[  507.419248][T21967]  __kasan_report.cold+0x1b/0x40
[  507.424206][T21967]  ? tls_write_space+0x150/0x170
[  507.429171][T21967]  kasan_report+0x12/0x20
[  507.433564][T21967]  __asan_report_load1_noabort+0x14/0x20
[  507.439224][T21967]  tls_write_space+0x150/0x170
[  507.444095][T21967]  tcp_check_space+0x430/0x720
[  507.448889][T21967]  tcp_rcv_established+0x98f/0x1fa0
[  507.454199][T21967]  ? find_held_lock+0x35/0x130
[  507.458992][T21967]  ? tcp_data_queue+0x4830/0x4830
[  507.464095][T21967]  ? __local_bh_enable_ip+0x15a/0x270
[  507.469514][T21967]  ? _raw_spin_unlock_bh+0x31/0x40
[  507.474646][T21967]  ? __local_bh_enable_ip+0x15a/0x270
[  507.480037][T21967]  ? lockdep_hardirqs_on+0x418/0x5d0
[  507.485420][T21967]  tcp_v6_do_rcv+0x41e/0x12c0
[  507.490198][T21967]  __release_sock+0x129/0x390
[  507.494902][T21967]  release_sock+0x59/0x1c0
[  507.499344][T21967]  tls_sk_proto_close+0x40b/0x770
[  507.504399][T21967]  ? tcp_check_oom+0x560/0x560
[  507.509188][T21967]  ? tls_push_sg+0x680/0x680
[  507.513859][T21967]  ? ip_mc_drop_socket+0x211/0x270
[  507.519001][T21967]  inet_release+0xe0/0x1f0
[  507.523492][T21967]  inet6_release+0x53/0x80
[  507.527986][T21967]  __sock_release+0xce/0x2a0
[  507.532596][T21967]  sock_close+0x1b/0x30
[  507.536825][T21967]  __fput+0x2ff/0x890
[  507.540829][T21967]  ? __sock_release+0x2a0/0x2a0
[  507.545789][T21967]  ____fput+0x16/0x20
[  507.549872][T21967]  task_work_run+0x145/0x1c0
[  507.554561][T21967]  exit_to_usermode_loop+0x273/0x2c0
[  507.559871][T21967]  do_syscall_64+0x58e/0x680
[  507.564482][T21967]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  507.570377][T21967] RIP: 0033:0x412fb1
[  507.574278][T21967] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  507.593893][T21967] RSP: 002b:00007ffccd9bf050 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  507.602409][T21967] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000412fb1
[  507.610389][T21967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  507.618371][T21967] RBP: 0000000000000001 R08: 00000000125d5493 R09: 00000000125d5497
[  507.626360][T21967] R10: 00007ffccd9bf130 R11: 0000000000000293 R12: 0000000000760f68
[  507.634348][T21967] R13: 000000000007bdb3 R14: 000000000007bde0 R15: 000000000075bf2c
[  507.642340][T21967] 
[  507.644739][T21967] Allocated by task 21971:
[  507.649288][T21967]  save_stack+0x23/0x90
[  507.653465][T21967]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[  507.659111][T21967]  kasan_kmalloc+0x9/0x10
[  507.663521][T21967]  kmem_cache_alloc_trace+0x151/0x750
[  507.668902][T21967]  create_ctx+0x46/0x1f0
[  507.673158][T21967]  tls_init+0x11d/0x510
[  507.677326][T21967]  tcp_set_ulp+0x330/0x640
[  507.681753][T21967]  do_tcp_setsockopt.isra.0+0x321/0x2320
[  507.687395][T21967]  tcp_setsockopt+0xbe/0xe0
[  507.691911][T21967]  sock_common_setsockopt+0x94/0xd0
[  507.697114][T21967]  __sys_setsockopt+0x17a/0x280
[  507.702028][T21967]  __x64_sys_setsockopt+0xbe/0x150
[  507.707168][T21967]  do_syscall_64+0xfd/0x680
[  507.711692][T21967]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  507.717589][T21967] 
[  507.719920][T21967] Freed by task 21967:
[  507.723999][T21967]  save_stack+0x23/0x90
[  507.728173][T21967]  __kasan_slab_free+0x102/0x150
[  507.733131][T21967]  kasan_slab_free+0xe/0x10
[  507.737650][T21967]  kfree+0xcf/0x220
[  507.741469][T21967]  tls_ctx_free.part.0+0x34/0x40
[  507.746421][T21967]  tls_sk_proto_close+0x3fe/0x770
[  507.751459][T21967]  inet_release+0xe0/0x1f0
[  507.755911][T21967]  inet6_release+0x53/0x80
[  507.760340][T21967]  __sock_release+0xce/0x2a0
[  507.764940][T21967]  sock_close+0x1b/0x30
[  507.769104][T21967]  __fput+0x2ff/0x890
[  507.773099][T21967]  ____fput+0x16/0x20
[  507.777094][T21967]  task_work_run+0x145/0x1c0
[  507.781697][T21967]  exit_to_usermode_loop+0x273/0x2c0
[  507.786995][T21967]  do_syscall_64+0x58e/0x680
[  507.791593][T21967]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  507.797476][T21967] 
[  507.799810][T21967] The buggy address belongs to the object at ffff8880a5f31d00
[  507.799810][T21967]  which belongs to the cache kmalloc-512 of size 512
[  507.813869][T21967] The buggy address is located 248 bytes inside of
[  507.813869][T21967]  512-byte region [ffff8880a5f31d00, ffff8880a5f31f00)
[  507.827151][T21967] The buggy address belongs to the page:
[  507.832809][T21967] page:ffffea000297cc40 refcount:1 mapcount:0 mapping:ffff8880aa400940 index:0xffff8880a5f31080
[  507.843373][T21967] flags: 0x1fffc0000000200(slab)
[  507.848338][T21967] raw: 01fffc0000000200 ffffea00025eca08 ffffea000230a4c8 ffff8880aa400940
[  507.856936][T21967] raw: ffff8880a5f31080 ffff8880a5f31080 0000000100000004 0000000000000000
[  507.869642][T21967] page dumped because: kasan: bad access detected
[  507.876488][T21967] 
[  507.878821][T21967] Memory state around the buggy address:
[  507.884454][T21967]  ffff8880a5f31c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  507.892529][T21967]  ffff8880a5f31d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  507.900603][T21967] >ffff8880a5f31d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  507.908674][T21967]                                                                 ^
[  507.918860][T21967]  ffff8880a5f31e00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  507.926929][T21967]  ffff8880a5f31e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  507.935006][T21967] ==================================================================
10:56:22 executing program 2:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='clear_refs\x00')
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
exit(0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1)

[  507.943074][T21967] Disabling lock debugging due to kernel taint
10:56:22 executing program 0:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x4c04, 0xc000, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

10:56:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x20, 0x19, 0x1, 0x0, 0x0, {0x7, 0x4000000}, [@typed={0xc, 0x4001, @u64}]}, 0x20}}, 0x0)

10:56:22 executing program 5:
syz_read_part_table(0x4c04, 0xa800, &(0x7f0000000200)=[{&(0x7f0000000080)="02006300000001000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}])

[  508.150243][T21967] Kernel panic - not syncing: panic_on_warn set ...
[  508.156979][T21967] CPU: 0 PID: 21967 Comm: syz-executor.4 Tainted: G    B             5.2.0-rc4+ #25
[  508.163450][T22008] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  508.166339][T21967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  508.166345][T21967] Call Trace:
[  508.166378][T21967]  dump_stack+0x172/0x1f0
[  508.192230][T21967]  panic+0x2cb/0x744
[  508.196143][T21967]  ? __warn_printk+0xf3/0xf3
[  508.200744][T21967]  ? tls_write_space+0x150/0x170
[  508.205792][T21967]  ? preempt_schedule+0x4b/0x60
[  508.210663][T21967]  ? ___preempt_schedule+0x16/0x18
[  508.215829][T21967]  ? trace_hardirqs_on+0x5e/0x220
[  508.220860][T21967]  ? tls_write_space+0x150/0x170
[  508.225796][T21967]  end_report+0x47/0x4f
[  508.229950][T21967]  ? tls_write_space+0x150/0x170
[  508.234904][T21967]  __kasan_report.cold+0xe/0x40
[  508.239786][T21967]  ? tls_write_space+0x150/0x170
[  508.244751][T21967]  kasan_report+0x12/0x20
[  508.249087][T21967]  __asan_report_load1_noabort+0x14/0x20
[  508.254750][T21967]  tls_write_space+0x150/0x170
[  508.259519][T21967]  tcp_check_space+0x430/0x720
[  508.264289][T21967]  tcp_rcv_established+0x98f/0x1fa0
[  508.269491][T21967]  ? find_held_lock+0x35/0x130
[  508.274262][T21967]  ? tcp_data_queue+0x4830/0x4830
[  508.279290][T21967]  ? __local_bh_enable_ip+0x15a/0x270
[  508.284659][T21967]  ? _raw_spin_unlock_bh+0x31/0x40
[  508.289860][T21967]  ? __local_bh_enable_ip+0x15a/0x270
[  508.295231][T21967]  ? lockdep_hardirqs_on+0x418/0x5d0
[  508.300519][T21967]  tcp_v6_do_rcv+0x41e/0x12c0
[  508.305198][T21967]  __release_sock+0x129/0x390
[  508.309881][T21967]  release_sock+0x59/0x1c0
[  508.314304][T21967]  tls_sk_proto_close+0x40b/0x770
[  508.319328][T21967]  ? tcp_check_oom+0x560/0x560
[  508.324269][T21967]  ? tls_push_sg+0x680/0x680
[  508.328885][T21967]  ? ip_mc_drop_socket+0x211/0x270
[  508.334001][T21967]  inet_release+0xe0/0x1f0
[  508.338420][T21967]  inet6_release+0x53/0x80
[  508.342839][T21967]  __sock_release+0xce/0x2a0
[  508.347423][T21967]  sock_close+0x1b/0x30
[  508.351576][T21967]  __fput+0x2ff/0x890
[  508.355550][T21967]  ? __sock_release+0x2a0/0x2a0
[  508.360399][T21967]  ____fput+0x16/0x20
[  508.364377][T21967]  task_work_run+0x145/0x1c0
[  508.368971][T21967]  exit_to_usermode_loop+0x273/0x2c0
[  508.374258][T21967]  do_syscall_64+0x58e/0x680
[  508.378846][T21967]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  508.384728][T21967] RIP: 0033:0x412fb1
[  508.388617][T21967] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  508.408225][T21967] RSP: 002b:00007ffccd9bf050 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  508.416641][T21967] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000412fb1
[  508.424609][T21967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  508.432595][T21967] RBP: 0000000000000001 R08: 00000000125d5493 R09: 00000000125d5497
[  508.440564][T21967] R10: 00007ffccd9bf130 R11: 0000000000000293 R12: 0000000000760f68
[  508.448529][T21967] R13: 000000000007bdb3 R14: 000000000007bde0 R15: 000000000075bf2c
[  508.457780][T21967] Kernel Offset: disabled
[  508.462133][T21967] Rebooting in 86400 seconds..